Adversarial Image Perturbation for Privacy Protection -- A Game Theory 
Perspective

Oh, Seong Joon; Fritz, Mario; Schiele, Bernt

Datensatz

DATENSATZ AKTIONENEXPORT

Zur Ablage hinzufügen

Bitte beachten Sie, dass eine neuere Version dieses Datensatzes verfügbar ist:
https://pure.mpg.de/pubman/item/item_2456708_6

DetailsÜbersicht

Freigegeben

Forschungspapier

Adversarial Image Perturbation for Privacy Protection -- A Game Theory Perspective

MPG-Autoren

/persons/resource/persons134225

Oh, Seong Joon
Computer Vision and Multimodal Computing, MPI for Informatics, Max Planck Society;

/persons/resource/persons44451

Fritz, Mario
Computer Vision and Multimodal Computing, MPI for Informatics, Max Planck Society;

/persons/resource/persons45383

Schiele, Bernt
Computer Vision and Multimodal Computing, MPI for Informatics, Max Planck Society;

Externe Ressourcen

Es sind keine externen Ressourcen hinterlegt

Volltexte (beschränkter Zugriff)

Für Ihren IP-Bereich sind aktuell keine Volltexte freigegeben.

Volltexte (frei zugänglich)

arXiv:1703.09471.pdf
(Preprint), 5MB

Ergänzendes Material (frei zugänglich)

Es sind keine frei zugänglichen Ergänzenden Materialien verfügbar

Zitation

Oh, S. J., Fritz, M., & Schiele, B. (2017). Adversarial Image Perturbation for Privacy Protection -- A Game Theory Perspective. Retrieved from http://arxiv.org/abs/1703.09471.

Zitierlink: https://hdl.handle.net/11858/00-001M-0000-002D-7CAE-2

Zusammenfassung

Users like sharing personal photos with others through social media. At the same time, they might want to make automatic identification in such photos difficult or even impossible. Classic obfuscation methods such as blurring are not only unpleasant but also not as effective as one would expect. Recent studies on adversarial image perturbations (AIP) suggest that it is possible to confuse recognition systems effectively without unpleasant artifacts. However, in the presence of counter measures against AIPs, it is unclear how effective AIP would be in particular when the choice of counter measure is unknown. Game theory provides tools for studying the interaction between agents with uncertainties in the strategies. We introduce a general game theoretical framework for the user-recogniser dynamics, and present a case study that involves current state of the art AIP and person recognition techniques. We derive the optimal strategy for the user that assures an upper bound on the recognition rate independent of the recogniser's counter measure.