# SADA: Semantic Adversarial Diagnostic Attacks for Autonomous   Applications

**Authors:** Abdullah Hamdi, Matthias M\"uller, Bernard Ghanem

arXiv: 1812.02132 · 2020-11-30

## TL;DR

This paper introduces SADA, a framework for semantic adversarial attacks on autonomous agents, using BBGAN to generate environment perturbations that cause agents to fail across multiple navigation tasks.

## Contribution

The paper presents BBGAN, a novel method for semantic adversarial attacks that manipulate environment parameters to fool autonomous agents, extending beyond pixel-level perturbations.

## Key findings

- BBGAN successfully generates environment scenarios that cause agent failures.
- The approach applies to diverse autonomous navigation tasks.
- Semantic attacks outperform pixel-level attacks in robustness.

## Abstract

One major factor impeding more widespread adoption of deep neural networks (DNNs) is their lack of robustness, which is essential for safety-critical applications such as autonomous driving. This has motivated much recent work on adversarial attacks for DNNs, which mostly focus on pixel-level perturbations void of semantic meaning. In contrast, we present a general framework for adversarial attacks on trained agents, which covers semantic perturbations to the environment of the agent performing the task as well as pixel-level attacks. To do this, we re-frame the adversarial attack problem as learning a distribution of parameters that always fools the agent. In the semantic case, our proposed adversary (denoted as BBGAN) is trained to sample parameters that describe the environment with which the black-box agent interacts, such that the agent performs its dedicated task poorly in this environment. We apply BBGAN on three different tasks, primarily targeting aspects of autonomous navigation: object detection, self-driving, and autonomous UAV racing. On these tasks, BBGAN can generate failure cases that consistently fool a trained agent.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1812.02132/full.md

## Figures

48 figures with captions in the complete paper: https://tomesphere.com/paper/1812.02132/full.md

## References

38 references — full list in the complete paper: https://tomesphere.com/paper/1812.02132/full.md

---
Source: https://tomesphere.com/paper/1812.02132