Friday, May 16, 2025
LBNN
  • Business
  • Markets
  • Politics
  • Crypto
  • Finance
  • Energy
  • Technology
  • Taxes
  • Creator Economy
  • Wealth Management
  • Documentaries
No Result
View All Result
LBNN

New AI defense method shields models from adversarial attacks

Simon Osuji by Simon Osuji
March 6, 2025
in Artificial Intelligence
0
New AI defense method shields models from adversarial attacks
0
SHARES
0
VIEWS
Share on FacebookShare on Twitter


New AI defense method shields models from adversarial attacks
A futuristic neural network under intense adversarial attack; at left, distortions and corrupted data streams (in red) overwhelm a neural network, and at right, a powerful AI defense mechanism of denoising energy (in blue) dissolve interference and restore the network. Credit: Image created in DALL-E by Manish Bhattarai

Neural networks, a type of artificial intelligence modeled on the connectivity of the human brain, are driving critical breakthroughs across a wide range of scientific domains. But these models face significant threat from adversarial attacks, which can derail predictions and produce incorrect information.

Related posts

‘Fortnite’ Players Are Already Making AI Darth Vader Swear

‘Fortnite’ Players Are Already Making AI Darth Vader Swear

May 16, 2025
AI in business intelligence: Caveat emptor

AI in business intelligence: Caveat emptor

May 16, 2025

Los Alamos National Laboratory researchers have now pioneered a novel purification strategy that counteracts adversarial assaults and preserves the robust performance of neural networks. Their research is published on the arXiv preprint server.

“Adversarial attacks to AI systems can take the form of tiny, near-invisible tweaks to input images, subtle modifications that can steer the model toward the outcome an attacker wants,” said Manish Bhattarai, Los Alamos computer scientist. “Such vulnerabilities allow malicious actors to flood digital channels with deceptive or harmful content under the guise of genuine outputs, posing a direct threat to trust and reliability in AI-driven technologies.”

The Low-Rank Iterative Diffusion (LoRID) method removes adversarial interventions from input data by harnessing the power of generative denoising diffusion processes in tandem with advanced tensor decomposition techniques. In a series of tests on benchmarking datasets, LoRID achieved unparalleled accuracy in neutralizing adversarial noise in attack scenarios, potentially advancing a more secure, reliable AI capability.

Defeating dangerous noise

Diffusion is a technique for training AI models by adding noise to data and then teaching the models to remove it. By learning to clean up the noise, the AI model effectively learns the underlying structure of the data, enabling it to generate realistic samples on its own. In diffusion-based purification, the model leverages its learned representation of “clean” data to identify and eliminate any adversarial interference introduced into the input.

Unfortunately, applying too many noise-purifying steps can strip away essential details from the data—imagine scrubbing a photo so aggressively that it loses clarity—while too few steps leaves room for harmful perturbations to linger.

The LoRID method navigates this trade-off by employing multiple rounds of denoising at the earlier phases of the diffusion process, helping the model eliminate precisely the right amount of noise without compromising the meaningful content of the data, thereby fortifying the model against attacks.

Crucially, adversarial inputs often reveal subtle “low-rank” signatures—patterns that can slip past complex defenses. By weaving in a technique called tensor factorization, LoRID pinpoints these low-rank aspects, bolstering the model’s defense in large adversarial attack regimes.

The team tested LoRID using widely recognized benchmark datasets such as CIFAR-10, CIFAR-100, Celeb-HQ, and ImageNet, evaluating its performance against state-of-the-art black-box and white-box adversarial attacks.

In white-box attacks, adversaries have full knowledge of the AI model’s architecture and parameters. In black-box attacks, they only see inputs and outputs, with the model’s internal workings hidden.

Across every test, LoRID consistently outperformed other methods, particularly in terms of robust accuracy—the key indicator of a model’s reliability when under adversarial threat.

Venado helps unlock efficiency, results

The team ran the LoRID models on Venado, the Lab’s newest, AI-capable supercomputer, to test a range of state-of-the-art vision models against both black-box and white-box adversarial attacks.

By harnessing multiple Venado nodes for several weeks—an ambitious effort given the massive computing requirements—they became the first group to undertake such a comprehensive analysis. Venado’s power turned months of simulation into mere hours, slashing the total development timeline from years to just one month and significantly reducing computational costs.

Robust purification methods can enhance AI security wherever neural network or machine learning applications are applied, including potentially in the Laboratory’s national security mission.

“Our method has set a new benchmark in state-of-the-art performance across renowned datasets, excelling under both white-box and black-box attack scenarios,” said Minh Vu, Los Alamos AI researcher.

“This achievement means we can now purify the data—whether sourced privately or publicly—before using it to train foundational models, ensuring their safety and integrity while consistently delivering accurate results.”

More information:
Geigh Zollicoffer et al, LoRID: Low-Rank Iterative Diffusion for Adversarial Purification, arXiv (2024). DOI: 10.48550/arxiv.2409.08255

Journal information:
arXiv

Provided by
Los Alamos National Laboratory

Citation:
New AI defense method shields models from adversarial attacks (2025, March 6)
retrieved 6 March 2025
from https://techxplore.com/news/2025-03-ai-defense-method-shields-adversarial.html

This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no
part may be reproduced without the written permission. The content is provided for information purposes only.





Source link

Previous Post

DuckDuckGo leans further into GenAI as its AI chat interface exits beta

Next Post

Climate action can be gateway to new Nigerian era of growth, prosperity – Stiell – EnviroNews

Next Post
Climate action can be gateway to new Nigerian era of growth, prosperity – Stiell – EnviroNews

Climate action can be gateway to new Nigerian era of growth, prosperity - Stiell - EnviroNews

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

RECOMMENDED NEWS

OSC In Ground-Breaking Consultations With Non-State Actors Centred On A New Third Way Of Development For The Global South

OSC In Ground-Breaking Consultations With Non-State Actors Centred On A New Third Way Of Development For The Global South

1 year ago
IEEE standard offers 6 steps for AI system procurement

IEEE standard offers 6 steps for AI system procurement

1 day ago
After losing his sight, the Tijuana River Estuary offered other ways to see

After losing his sight, the Tijuana River Estuary offered other ways to see

9 months ago
Agri-processing, tourism, and marine services

Agri-processing, tourism, and marine services

10 months ago

POPULAR NEWS

  • Ghana to build three oil refineries, five petrochemical plants in energy sector overhaul

    Ghana to build three oil refineries, five petrochemical plants in energy sector overhaul

    0 shares
    Share 0 Tweet 0
  • When Will SHIB Reach $1? Here’s What ChatGPT Says

    0 shares
    Share 0 Tweet 0
  • Matthew Slater, son of Jackson State great, happy to see HBCUs back at the forefront

    0 shares
    Share 0 Tweet 0
  • Dolly Varden Focuses on Adding Ounces the Remainder of 2023

    0 shares
    Share 0 Tweet 0
  • US Dollar Might Fall To 96-97 Range in March 2024

    0 shares
    Share 0 Tweet 0
  • Privacy Policy
  • Contact

© 2023 LBNN - All rights reserved.

No Result
View All Result
  • Home
  • Business
  • Politics
  • Markets
  • Crypto
  • Economics
    • Manufacturing
    • Real Estate
    • Infrastructure
  • Finance
  • Energy
  • Creator Economy
  • Wealth Management
  • Taxes
  • Telecoms
  • Military & Defense
  • Careers
  • Technology
  • Artificial Intelligence
  • Investigative journalism
  • Art & Culture
  • Documentaries
  • Quizzes
    • Enneagram quiz
  • Newsletters
    • LBNN Newsletter
    • Divergent Capitalist

© 2023 LBNN - All rights reserved.