This post is a continuation of the previous one: “A Practical Introduction to FGSM.”

Here, we will focus on a Convolutional Neural Network. Convolutional Neural Networks (CNNs) represent one of the most significant breakthroughs in the field of artificial intelligence.

Their history began in 1998 when Yann LeCun introduced LeNet-5, the first successful CNN, used for handwritten digit recognition.

http://vision.stanford.edu/cs598_spring07/papers/Lecun98.pdf

However, the real turning point came in 2012 with AlexNet, developed by Alex Krizhevsky, which won the ImageNet competition with a staggering lead over traditional methods.

Read More

This will be our first hands-on post, and we’re starting with a very visual type of attack that we can implement for free using services like Google Colab or in local environments with Anaconda/Miniconda, a Python virtual environment, Docker, or any other setup you’re more comfortable with.

Neural networks—specifically convolutional neural networks (CNNs)—are commonly used in computer vision tasks such as image classification, object detection, facial recognition, and more.

Read More

Adversarial Machine Learning (AML) is a discipline focused on studying vulnerabilities and security flaws in machine learning models with the aim of making them more secure. It seeks to understand how these models can be deceived and manipulated.

In recent years, machine learning in particular, and artificial intelligence in general, have experienced tremendous growth and are being integrated into critical decision-making processes. Some examples include medical diagnoses and future autonomous vehicles. For this reason, it is essential to minimize the possibility that such decisions could be manipulated by malicious actors. A striking example is the Optical Adversarial Attack (OPAD), in which researchers from Purdue University demonstrated that a “stop” sign could be interpreted as a speed limit sign:

Read More