Stories
Slash Boxes
Comments

SoylentNews is people

A Simple Sticker Tricked Neural Networks Into Classifying Anything as a Toaster

posted by janrinok on Wednesday January 10 2018, @04:34PM   Printer-friendly
from the do-you-see-what-I-see? dept.

charon writes:

Image recognition technology may be sophisticated, but it is also easily duped. Researchers have fooled algorithms into confusing two skiers for a dog, a baseball for espresso, and a turtle for a rifle. But a new method of deceiving the machines is simple and far-reaching, involving just a humble sticker.

Google researchers developed a psychedelic sticker that, when placed in an unrelated image, tricks deep learning systems into classifying the image as a toaster. According to a recently submitted research paper about the attack, this adversarial patch is "scene-independent," meaning someone could deploy it "without prior knowledge of the lighting conditions, camera angle, type of classifier being attacked, or even the other items within the scene." It's also easily accessible, given it can be shared and printed from the internet.

Original Submission

 
This discussion has been archived. No new comments can be posted.
A Simple Sticker Tricked Neural Networks Into Classifying Anything as a Toaster | Log In/Create an Account | Top | 55 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Informative) by Snow on Wednesday January 10 2018, @05:00PM (3 children)

    by Snow (1601) on Wednesday January 10 2018, @05:00PM (#620513) Journal

    Like a ski mask?

    Starting Score:    1  point
    Moderation   +1  
       Informative=1, Total=1
    Extra 'Informative' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   3  

  • (Score: 2) by ese002 on Wednesday January 10 2018, @10:50PM (1 child)

    by ese002 (5306) on Wednesday January 10 2018, @10:50PM (#620695)

    Like a ski mask?

    Wearing a ski mask blocks facial recognition but will make you highly conspicuous. All the humans will be watching you and, likely, so will the cameras.

    A suitable adversarial patch might defeat facial recognition while still being inconspicuous to humans.

    • (Score: 2) by fliptop on Thursday January 11 2018, @05:13AM

      by fliptop (1666) on Thursday January 11 2018, @05:13AM (#620807) Journal

      Wearing a ski mask...will make you highly conspicuous.

      It's also illegal [thedaonline.com] in some states.

      --
      Our Constitution was made only for a moral and religious people. It is wholly inadequate to the government of any other.

  • (Score: 2) by requerdanos on Thursday January 11 2018, @12:57AM

    by requerdanos (5997) Subscriber Badge on Thursday January 11 2018, @12:57AM (#620741) Journal

    Like a ski mask?

    Well, no, not like that.

    A ski mask covers almost 100% of the face, and even afterwards, it's still completely identifiable as a face. Zoom in enough and you can even get an identifying retina scan.

    This isn't like that. Think about the differences between a ski mask (covers almost all the face and still, it's clearly a face) vs. our sticker (covers none of the whatever and still gets it misidentified as something completely different):

    - The sticker does not have to cover up the banana (or other subject) to get the image classified as a toaster.
    - The sticker does not have to cover up even a very large percentage of the image to get the image classified as a toaster.
    - The sticker does not have to convincingly depict a toaster to get the image classified as a toaster.

    Heck, you could probably wear reflective sunglasses with the toaster sticker design printed on each lens and get identified as a tall, mobile toaster. If you lived in the movie Minority Report, in fact, I'd recommend it, so department stores aren't constantly asking how you liked those jeans, Mr. Yakamoto?