TL;DR
This paper introduces GCP, a novel framework for detecting malicious agents in collaborative perception for autonomous driving, leveraging spatial-temporal analysis to improve robustness against sophisticated attacks.
Contribution
GCP is the first to integrate spatial and temporal anomaly detection with a confidence-scaled loss and a joint statistical test for malicious agent detection in collaborative perception.
Findings
GCP achieves up to 34.69% improvement in [email protected] under BAC attacks.
GCP maintains 5-8% improvements under other typical attacks.
GCP effectively detects malicious agents using spatial-temporal anomaly analysis.
Abstract
Collaborative perception significantly enhances autonomous driving safety by extending each vehicle's perception range through message sharing among connected and autonomous vehicles. Unfortunately, it is also vulnerable to adversarial message attacks from malicious agents, resulting in severe performance degradation. While existing defenses employ hypothesis-and-verification frameworks to detect malicious agents based on single-shot outliers, they overlook temporal message correlations, which can be circumvented by subtle yet harmful perturbations in model input and output spaces. This paper reveals a novel blind area confusion (BAC) attack that compromises existing single-shot outlier-based detection methods. As a countermeasure, we propose GCP, a Guarded Collaborative Perception framework based on spatial-temporal aware malicious agent detection, which maintains single-shot spatial…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
