Loughborough University
Browse

Countermeasures against adversarial examples in radio signal classification

Download (1.59 MB)
journal contribution
posted on 2021-07-19, 09:17 authored by Lu Zhang, Sangarapillai LambotharanSangarapillai Lambotharan, Gan Zheng, Basil AsSadhan, Fabio Roli
Deep learning algorithms have been shown to be powerful in many communication network design problems, including that in automatic modulation classification. However, they are vulnerable to carefully crafted attacks called adversarial examples. Hence, the reliance of wireless networks on deep learning algorithms poses a serious threat to the security and operation of wireless networks. In this letter, we propose for the first time a countermeasure against adversarial examples in modulation classification. Our countermeasure is based on a neural rejection technique, augmented by label smoothing and Gaussian noise injection, that allows to detect and reject adversarial examples with high accuracy. Our results demonstrate that the proposed countermeasure can protect deep-learning based modulation classification systems against adversarial examples.

Funding

Communications Signal Processing Based Solutions for Massive Machine-to-Machine Networks (M3NETs)

Engineering and Physical Sciences Research Council

Find out more...

Unlocking Potentials of MIMO Full-duplex Radios for Heterogeneous Networks (UPFRONT) EP/N007840/1

International Scientific Partnership Programme (ISPP-18-134(2)) of King Saud University

History

School

  • Mechanical, Electrical and Manufacturing Engineering

Published in

IEEE Wireless Communications Letters

Volume

10

Issue

8

Pages

1830 - 1834

Publisher

IEEE

Version

  • AM (Accepted Manuscript)

Rights holder

© IEEE

Publisher statement

Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works.

Publication date

2021-05-25

Copyright date

2021

DOI

ISSN

2162-2337

eISSN

2162-2345

Publisher version

Language

  • en

Depositor

Dr Gan Zheng . Deposit date: 17 July 2021

Usage metrics

    Loughborough Publications

    Categories

    Keywords

    Electrical and Electronic EngineeringCommunications Technologieslabel smoothingneural rejectionradio modulation classificationadversarial examplesdeep learningDistributed Computing

    Licence

    All Rights Reserved

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC