Resurrecting Trust in Facial Recognition: Mitigating Backdoor Attacks in Face Recognition to Prevent Potential Privacy Breaches

02/18/2022
by   Reena Zelenkova, et al.
0

Biometric data, such as face images, are often associated with sensitive information (e.g medical, financial, personal government records). Hence, a data breach in a system storing such information can have devastating consequences. Deep learning is widely utilized for face recognition (FR); however, such models are vulnerable to backdoor attacks executed by malicious parties. Backdoor attacks cause a model to misclassify a particular class as a target class during recognition. This vulnerability can allow adversaries to gain access to highly sensitive data protected by biometric authentication measures or allow the malicious party to masquerade as an individual with higher system permissions. Such breaches pose a serious privacy threat. Previous methods integrate noise addition mechanisms into face recognition models to mitigate this issue and improve the robustness of classification against backdoor attacks. However, this can drastically affect model accuracy. We propose a novel and generalizable approach (named BA-BAM: Biometric Authentication - Backdoor Attack Mitigation), that aims to prevent backdoor attacks on face authentication deep learning models through transfer learning and selective image perturbation. The empirical evidence shows that BA-BAM is highly robust and incurs a maximal accuracy drop of 2.4 attack success rate to a maximum of 20 show that BA-BAM provides a more practical backdoor mitigation approach for face recognition.

READ FULL TEXT

page 2

page 6

page 8

research
05/21/2020

Privacy Preserving Face Recognition Utilizing Differential Privacy

Facial recognition technologies are implemented in many areas, including...
research
02/23/2021

Oriole: Thwarting Privacy against Trustworthy Deep Learning Models

Deep Neural Networks have achieved unprecedented success in the field of...
research
03/10/2022

Attack Analysis of Face Recognition Authentication Systems Using Fast Gradient Sign Method

Biometric authentication methods, representing the "something you are" s...
research
03/01/2021

Am I a Real or Fake Celebrity? Measuring Commercial Face Recognition Web APIs under Deepfake Impersonation Attack

Recently, significant advancements have been made in face recognition te...
research
09/29/2022

Digital and Physical Face Attacks: Reviewing and One Step Further

With the rapid progress over the past five years, face authentication ha...
research
10/31/2020

Evaluation of Inference Attack Models for Deep Learning on Medical Data

Deep learning has attracted broad interest in healthcare and medical com...
research
12/20/2022

Efficient aggregation of face embeddings for decentralized face recognition deployments (extended version)

Biometrics are one of the most privacy-sensitive data. Ubiquitous authen...

Please sign up or login with your details

Forgot password? Click here to reset