Anomaly Unveiled: Securing Image Classification against Adversarial Patch Attacks

Adversarial patch attacks pose a significant threat to the practical deployment of deep learning systems. However, existing research primarily focuses on image pre-processing defenses, which often result in reduced classification accuracy for clean images and fail to effectively counter physically feasible attacks. In this paper, we investigate the behavior of adversarial patches as anomalies within the distribution of image information and leverage this insight to develop a robust defense strategy. Our proposed defense mechanism utilizes a clustering-based technique called DBSCAN …

accuracy adversarial anomaly attacks behavior classification cs.cr cs.cv deep learning deployment image images learning systems paper practical pre-processing processing research systems threat