FDFuzz: Applying Feature Detection to Fuzz Deep Learning Systems

doi:10.23940/ijpe.19.10.p13.26752682

Int J Performability Eng ›› 2019, Vol. 15 ›› Issue (10): 2675-2682.doi: 10.23940/ijpe.19.10.p13.26752682

• Orginal Article • Previous Articles Next Articles

FDFuzz: Applying Feature Detection to Fuzz Deep Learning Systems

Jie Wang^a^b^*, Kefan Cao^b, Chunrong Fang^b, and Jinxin Chen^b

^aMaanshan Teacher's College, Maanshan, 243000, China
^bThe State Key Laboratory of Novel Software Technology, Nanjing University, Nanjing, 210000, China

Submitted on ; Revised on ; Accepted on
Contact: Wang Jie
About author:
* Corresponding author. E-mail address:
Supported by:
This research was supported by the National Natural Science Foundation of China (No 61802171, 61772014), the Excellent Youth Talent Support Project of University of Anhui in 2017 (No gxyq2017242), the Fundamental Research Funds for the Central Universities (No 021714380017), and the Open Foundation of State Key Laboratory for Novel Software Technology in Nanjing University (No ZZKT2017B09)

Abstract

Abstract:

In the past years, many resources have been allocated to research on deep learning networks for better classification and recognition. These models have higher accuracy and wider application contexts, but the weakness of easily being attacked by adversarial examples has raised our concern. It is widely acknowledged that the reliability of many safety-critical systems must be confirmed. However, not all systems have sufficient robustness, which makes it necessary to test these models before going into service. In this work, we introduce FDFuzz, an automated fuzzing technique that exposes incorrect behaviors of neural networks. Under the guidance of the neuron coverage metric, the fuzzing process aims to find those examples to let the network make mistakes via mutating inputs, which are then correctly classified. FDFuzz employs a feature detection technique to analyze input images and improve the efficiency of mutation by features of keypoints. Compared with TensorFuzz, the state-of-the-art open source library for neural network testing, FDFuzz demonstrates higher efficiency in generating adversarial examples and makes better use of elements in corpus. Although our mutation function consumes more time to generate new elements, it can generate 250% more adversarial examples and save testing time.

Key words: neuron network, machine learning, adversarial examples, fuzzing

Jie Wang, Kefan Cao, Chunrong Fang, and Jinxin Chen. FDFuzz: Applying Feature Detection to Fuzz Deep Learning Systems [J]. Int J Performability Eng, 2019, 15(10): 2675-2682.

Add to citation manager EndNote|Reference Manager|ProCite|BibTeX|RefWorks

References 22.

1.	M. R. Minar and J. Naher, “Recent Advances in Deep Learning: An Overview,” arXiv:1807.08169, 2018
2.	R. David, H. Geoffrey,W. Ronald, “Learning Representations by Back-Propagating Errors,”Nature, Vol. 323, pp. 533-536, 1986
3.	Y. Lecun, L. Bottou, Y. Bengio,P. Haffner, “Gradient-based Learning Applied to Document Recognition?” inProceedings of the IEEE 86.11, pp. 2278-2324, 1998
4.	A. Odena and I. Goodfellow, “TensorFuzz: Debugging Neural Networks with Coverage-Guided Fuzzing,” arXiv:1807.10875, 2018
5.	J. Guo, Y. Jiang, Y. Zhao, Q. Chen,J. Sun, “DLFuzz: Differential Fuzzing Testing of Deep Learning Systems,” arXiv:1808.09413, 2018
6.	M. Wicker, X. Huang,M. Kwiatkowska, “Feature-Guided Black-Box Safety Testing of Deep Neural Networks,” arXiv:1710.07859, 2017
7.	M. Zalewski, “American Fuzzy Lop,” (http://lcamtuf.coredump.cx/afl/
8.	D. G. Lowe, “Distinctive Image Features from Scale-Invariant Keypoints,” International Journal of Computer Vision, Vol. 60, No. 2, pp. 91-110, 2004
9.	K. Pei, Y. Cao, J. Yang,S. Jana, “Deepxplore: Automated Whitebox Testing of Deep Learning Systems,” arXiv:1705.06640, 2017
10.	G. Bradski, “The OpenCV Library,”Dr. Dobbs Journal of Software Tools, pp. 120-125, 2000
11.	Y. LeCun, “The MNIST Database of Handwritten Digits,” (http://yann.lecun.com/exdb/mnist/, 2018
12.	K. Serebryany, “Continuous Fuzzing with Libfuzzer and Addresssanitizer?” in Proceedings of2016 IEEE Cybersecurity Development (SecDev), pp. 157-157, 2016
13.	M. Bohme, V. Pham,A. Roychoudhury, “Coverage-based Greybox Fuzzing as Markov Chain?” in Proceedings of the2016 ACM SIGSAC Conference on Computer and Communications Security CCS, pp. 1032-1043, 2016
14.	S. Gu and L. Rigazio, “Towards Deep Neural Network Architectures Robust to Adversarial Examples,” arXiv:1412.5068, 2014
15.	X. Huang, M. Kwiatkowska, S. Wang,M. Wu, “Safety Verification of Deep Neural Networks?” inProceedings of International Conference on Computer Aided Verification, pp. 3-29, Springer, 2017
16.	L. Ma, F. Juefei-Xu, J. Sun, C. Chen, T. Su, F. Zhang, et al., “Deepgauge: Comprehensive and Multi-Granularity Testing Criteria for Gauging the Robustness of Deep Learning Systems,” arXiv:1803.07519, 2018
17.	Y. Sun, X. Huang,D. Kroening, “Testing Deep Neural Networks,” arXiv:1803.04792, 2018
18.	K. J. Hayhurst, D. S. Veerhusen, J. J. Chilenski,L. K. Rierson, “A Practical Tutorial on Modified Condition/Decision Coverage,” Vol. 210876, DIANE Publishing, 2001
19.	Y. Tian, K. Pei, S. Jana,B. Ray, “Deeptest: Automated Testing of Deep-Neural-Network-Driven Autonomous Cars,” arXiv:1708.08559, 2017
20.	Y. Sun, “Concolic Testing for Deep Neural Networks,” inProceedings of the 33rd ACM/IEEE International Conference on Automated Software Engineering, pp. 109-119, 2018
21.	X. Xie, L. Ma, F. Xu, M. Xue, H. Chen, Y. Liu, et al., “DeepHunter: A Coverage-Guided Fuzz Testing Framework for Deep Neural Networks,” inProceedings of the 28th ACM SIGSOFT International Symposium on Software Testing and Analysis, pp. 146-157, ACM, 2019
22.	N. Nicole, M. Raugas, R. Jasper,N. Hilliard, “Faster Fuzzing: Reinitialization with Deep Neural Models,” arXiv:1711.02807, 2017

[1]	C. Rohith Bhat and Madhusundar Nelson. Artificial Intelligence Based Credit Card Fraud Detection for Online Transactions Optimized with Sparrow Search Algorithm [J]. Int J Performability Eng, 2023, 19(9): 624-632.
[2]	Savita Khurana, Gaurav Sharma, and Bhawna Sharma. Hybrid Machine Learning Model for Load Prediction in Cloud Environment [J]. Int J Performability Eng, 2023, 19(8): 507-515.
[3]	K. Eswara Rao, Bala Murali Pydi, T. Panduranga Vital, P. Annan Naidu, U. D. Prasann, and T. Ravikumar. An Advanced Machine Learning Approach for Student Placement Prediction and Analysis [J]. Int J Performability Eng, 2023, 19(8): 536-546.
[4]	Babaljeet Kaur and Shalli Rani. Are the Customers Receiving Exact Recommendations from the E-Commerce Companies? Towards the Identification of Gray Sheep Users Using Personality Parameters [J]. Int J Performability Eng, 2023, 19(7): 425-433.
[5]	Kshitij Kumar Sinha, Manoj Mathur, and Arun Sharma. Suitability Index Prediction for Residential Apartments Through Machine Learning [J]. Int J Performability Eng, 2023, 19(7): 434-442.
[6]	Manpreet Kaur and Shalli Rani. Recommender System: Towards Identification of Shilling Attacks in Rating System Using Machine Learning Algorithms [J]. Int J Performability Eng, 2023, 19(7): 443-451.
[7]	Srishti Bhugra and Puneet Goswami. Exploratory Review of Machine Learning-Based Software Component Reusability Prediction [J]. Int J Performability Eng, 2023, 19(7): 452-461.
[8]	Harsha Gaikwad, Sanil Gandhi, Arvind Kiwelekar, and Manjushree Laddha. Analyzing Brain Signals for Predicting Students’ Understanding of Online Learning: A Machine Learning Approach [J]. Int J Performability Eng, 2023, 19(7): 462-470.
[9]	Rakesh Kumar, Sunny Arora, Ashima Arya, Neha Kohli, Vaishali Arya, and Ekta Singh. Ensemble Learning for Appraising English Text Readability using Gompertz Function [J]. Int J Performability Eng, 2023, 19(6): 388-396.
[10]	Pranshu Kumar Soni and Leema Nelson. PCP: Profit-Driven Churn Prediction using Machine Learning Techniques in Banking Sector [J]. Int J Performability Eng, 2023, 19(5): 303-311.
[11]	Ramneet Kaur, Deepali Gupta, and Mani Madhukar. Learner-Centric Hybrid Filtering-Based Recommender System for Massive Open Online Courses [J]. Int J Performability Eng, 2023, 19(5): 324-333.
[12]	Mahima Yadav and Ishan Kumar. Image Processing-Based Transliteration from Hindi to English [J]. Int J Performability Eng, 2023, 19(5): 334-341.
[13]	Harshita Batra and Leema Nelson. DCADS: Data-Driven Computer Aided Diagnostic System using Machine Learning Techniques for Polycystic Ovary Syndrome [J]. Int J Performability Eng, 2023, 19(3): 193-202.
[14]	Shobhanam Krishna and Sumati Sidharth. AI-Powered Workforce Analytics: Maximizing Business and Employee Success through Predictive Attrition Modelling [J]. Int J Performability Eng, 2023, 19(3): 203-215.
[15]	Bhagirath, Neetu Mittal, and Sushil Kumar. Impact of Real Time Fraud Prevention on Online Resale Platform using Machine Learning and Device Fingerprint Techniques [J]. Int J Performability Eng, 2023, 19(2): 94-104.

FDFuzz: Applying Feature Detection to Fuzz Deep Learning Systems

PDF

Knowledge

Abstract

Cite this article

share this article

References 22.

Related Articles 15

Recommended 0