• 융합보안논문지
• /
• 제22권3호
• /
• pp.25-32
• /
• 2022

최근 이미지 인식 및 탐지 분야에 딥러닝 기반의 기술이 도입되면서 영상 처리 산업이 활성화되고 있다. 딥러닝 기술의 발전과 함께 적대적 공격에 대한 학습 모델 취약점이 계속해서 보고되고 있지만, 학습 시점에 악의적인 데이터를 주입하는 포이즈닝 공격의 대응 방안에 대한 연구가 미흡한 실정이다. 종래 포이즈닝 공격의 대응 방안은 매번 학습 데이터를 검사하여 별도의 탐지 및 제거 작업을 수행해야 한다는 한계가 있었다. 따라서, 본 논문에서는 포이즌 데이터에 대해 별도의 탐지 및 제거과정 없이 학습 데이터와 추론 데이터에 약간의 변형을 가함으로써 공격 성공률을 저하시키는 기법을 제안한다. 선행연구에서 제안된 클린 라벨 포이즌 공격인 원샷킬 포이즌 공격을 공격 모델로 활용하였고, 공격자의 공격 전략에 따라 일반 공격자와 지능형 공격자로 나누어 공격 성능을 확인하였다. 실험 결과에 따르면 제안하는 방어 메커니즘을 적용하면 종래 방법 대비 최대 65%의 공격 성공률을 저하시킬 수 있었다.

• 정보보호학회논문지
• /
• 제33권3호
• /
• pp.549-559
• /
• 2023

5G 네트워크의 핵심 기술로 모바일 에지 컴퓨팅(Mobile Edge Computing, MEC)이 주목받음에 따라, 모바일 사용자의 데이터를 기반으로 한 5G 네트워크 기반 에지 AI 기술이 최근 다양한 분야에서 이용되고 있다. 하지만, 전통적인 인공지능 보안에서와 마찬가지로, 에지 AI 핵심 기능을 담당하는 코어망 내 표준 5G 네트워크 기능들에 대한 적대적 교란이 발생할 가능성이 존재한다. 더불어, 3GPP에서 정의한 5G 표준 내 Standalone 모드의MEC 환경에서 발생할 수 있는 데이터 오염 공격은 기존 LTE망 대비 현재 연구가 미비한 실정이다. 본연구에서는 5G에서 에지 AI의 핵심 기능을 담당하는 네트워크 기능인 NWDAF를 활용하는 MEC 환경에 대한 위협 모델을 탐구하고, 일부 개념 증명으로써 Leaf NWDAF에 대한 데이터 오염 공격 탐지 성능을 향상시키기 위한 특징 선택 방법을 제안한다. 제안한 방법론을 통해, NWDAF에서의 Slowloris 공격 기반 데이터 오염 공격에 대해 최대 94.9%의 탐지율을 달성하였다.

• KSII Transactions on Internet and Information Systems (TIIS)
• /
• 제15권9호
• /
• pp.3243-3257
• /
• 2021

Deep neural networks provide excellent performance in pattern recognition, audio classification, and image recognition. It is important that they accurately recognize input data, particularly when they are used in autonomous vehicles or for medical services. In this study, we propose a data correction method for increasing the accuracy of an unknown classifier by modifying the input data without changing the classifier. This method modifies the input data slightly so that the unknown classifier will correctly recognize the input data. It is an ensemble method that has the characteristic of transferability to an unknown classifier by generating corrected data that are correctly recognized by several classifiers that are known in advance. We tested our method using MNIST and CIFAR-10 as experimental data. The experimental results exhibit that the accuracy of the unknown classifier is a 100% correct recognition rate owing to the data correction generated by the proposed method, which minimizes data distortion to maintain the data's recognizability by humans.

• International Journal of Computer Science & Network Security
• /
• 제22권5호
• /
• pp.193-203
• /
• 2022

After the everyday use of systems and applications of artificial intelligence in our world. Consequently, machine learning technologies have become characterized by exceptional capabilities and unique and distinguished performance in many areas. However, these applications and systems are vulnerable to adversaries who can be a reason to confer the wrong classification by introducing distorted samples. Precisely, it has been perceived that adversarial examples designed throughout the training and test phases can include industrious Ruin the performance of the machine learning. This paper provides a comprehensive review of the recent research on adversarial machine learning. It's also worth noting that the paper only examines recent techniques that were released between 2018 and 2021. The diverse systems models have been investigated and discussed regarding the type of attacks, and some possible security suggestions for these attacks to highlight the risks of adversarial machine learning.

• 대한임상독성학회지
• /
• 제2권2호
• /
• pp.83-89
• /
• 2004

Acute poisoning is one of the diseases which need the most fastest emergency measures at the very beginning. However, at present, The Korea doesn't manage the toxication all over the country, and in particular, there is no guide to medical cure paying due regard to the traits of each area. This paper focused on the issue that the necessary data in preparing the facilities for the treatment of the poisoned patients and materials for medical treatment including antidote would have to be collected, after finding the special features of the symptoms by searching the present conditions of the poisoning in small towns next to farm villages in the North area of Youngseo, Kangwon province. This study was based on the questionnaires from 111 patients who were carried into the emergency room by the poisoning in two university hospitals of the North area of Youngseo, Kangwon, for one year, 2002. Upon investigation, the patients(111) visiting emergency room by the acute poisoning during the research period was found to be 0.37 percent of all patients(30,085) visiting emergency room. Among them, the most high percentage was given in their twenties and thirties at the rate of $39.6\%$, and the ratio($40.5\%$) of the poisoned patients after their fifties was much higher than a research($10\%$) of other areas. Many poisoned patients came to their rescue in an emergency room generally in spring and in winter, from 7 a.m. to 3 p.m. Agricultural chemical of the toxic materials had a majority at a ratio of $57.7\%$, and paraquat of the agricultural chemicals was found to have a lot of toxicity by $31.7\%$. As the trace of the toxication, the oral poisoning was common by $89.2\%$, and $55.9\%$ in the case of operating gastric lavage and nasogastric irrigation, but only $14.4\%$ for prescribing antidote. The mortality of the acute poisoned patients was $17.2\%$, and the toxication by paraquat held a majority. As a result, the acute poisoning of the North area in Youngseo, Kangwon had both of the characteristics of the rural and the city, and the patients over their fifties by the population aging had more attack of the disease than other regions. Also, with the high ratio of the toxication by the agricultural chemicals, especially, the lethal agricultural chemical was used frequently. Therefore, these dangerous situations need to find the ways to cope with.