Evasion attacks against on-device violent image classification deep learning models
| dc.contributor | Aalto-yliopisto | fi |
| dc.contributor | Aalto University | en |
| dc.contributor.advisor | Szyller, Sebastian | |
| dc.contributor.author | Shumilin, Anton | |
| dc.contributor.school | Perustieteiden korkeakoulu | fi |
| dc.contributor.school | School of Science | en |
| dc.contributor.supervisor | Korpi-Lagg, Maarit | |
| dc.date.accessioned | 2025-12-30T17:47:20Z | |
| dc.date.available | 2025-12-30T17:47:20Z | |
| dc.date.issued | 2025-12-12 | |
| dc.description.abstract | Deep learning models can be effectively utilized in many applications, including the detection of violent images. Unfortunately, these models can be vulnerable to attacks that introduce imperceptible modifications to the image. Such attacks can cause misclassification, which may lead to inefficiencies in public safety and to the spread of violent content. However, despite the risks, the research comparing attacks on violence detectors is limited. This thesis explores a range of attacks applicable to the on-device violence classification task. It presents a literature review that identifies various types of attacks under the threat model tailored to the task and proposes a taxonomy of the attack methods based on their scenarios and generation principles. The review complements the taxonomy with the analysis of the attack differences and recent improvements. The review is supplemented by an experiment, which evaluates a subset of the discussed attacks on lightweight violence classification models. The experiment demonstrates a significant vulnerability of undefended models and illustrates the effect of various attack constraints on the imperceptibility and generation time. | en |
| dc.format.extent | 38 | |
| dc.format.mimetype | application/pdf | en |
| dc.identifier.uri | https://aaltodoc.aalto.fi/handle/123456789/141596 | |
| dc.identifier.urn | URN:NBN:fi:aalto-202512309704 | |
| dc.language.iso | en | en |
| dc.programme | Aalto Bachelor's Programme in Science and Technology | en |
| dc.programme | Aalto Bachelor's Programme in Science and Technology | fi |
| dc.programme | Aalto Bachelor's Programme in Science and Technology | sv |
| dc.programme.major | Data Science | en |
| dc.subject.keyword | evasion attacks | en |
| dc.subject.keyword | computer vision | en |
| dc.subject.keyword | deep learning | en |
| dc.subject.keyword | image classification | en |
| dc.subject.keyword | violence detection | en |
| dc.title | Evasion attacks against on-device violent image classification deep learning models | en |
| dc.type | G1 Kandidaatintyö | fi |
| dc.type.ontasot | Bachelor's thesis | en |
| dc.type.ontasot | Kandidaatintyö | fi |
| local.aalto.openaccess | yes |
Files
Original bundle
1 - 1 of 1
Loading...
- Name:
- bachelor_Shumilin_Anton_2025.pdf
- Size:
- 1.25 MB
- Format:
- Adobe Portable Document Format