The reviewed record of science sign in
Pith

arxiv: 2309.10243 · v1 · pith:JL4OLGKY · submitted 2023-09-19 · cs.CV · cs.CR

Transferable Adversarial Attack on Image Tampering Localization

Reviewed by Pith T0 review T1 audit T2 compute T3 formal T4 kernel pith:JL4OLGKYrecord.jsonopen to challenge →

classification cs.CV cs.CR
keywords adversarialattackgradientlocalizationtamperingblack-boxexamplesimage
0
0 comments X
read the original abstract

It is significant to evaluate the security of existing digital image tampering localization algorithms in real-world applications. In this paper, we propose an adversarial attack scheme to reveal the reliability of such tampering localizers, which would be fooled and fail to predict altered regions correctly. Specifically, the adversarial examples based on optimization and gradient are implemented for white/black-box attacks. Correspondingly, the adversarial example is optimized via reverse gradient propagation, and the perturbation is added adaptively in the direction of gradient rising. The black-box attack is achieved by relying on the transferability of such adversarial examples to different localizers. Extensive evaluations verify that the proposed attack sharply reduces the localization accuracy while preserving high visual quality of the attacked images.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.