IRIS

We study a new variant of the source identification game with training data in which part of the training data is corrupted by an adversary. In such a scenario, the defender wants to decide whether a test sequence x(n) has been drawn from the same source which generated a training sequence t(N), part of which has been corrupted by the adversary. By adopting a game theoretical formulation, we derive the unique rationalizable equilibrium of the game in the asymptotic setup. Moreover, by mimicking Stein's lemma, we derive the best achievable performance for the defender, permitting us to analyze the ultimate distinguishability of the two sources. We conclude the paper by comparing the performance of the test with corrupted training to the simpler case in which the adversary can not modify the training sequence, and by deriving the percentage of samples that the adversary needs to modify to make source identification impossible.

Barni, M., Tondi, B. (2014). Source distinguishability under corrupted training. In 2014 IEEE International Workshop on Information Forensics and Security, WIFS 2014 (pp.197-202). New York : Institute of Electrical and Electronics Engineers Inc. [10.1109/WIFS.2014.7084327].

Source distinguishability under corrupted training

Barni, Mauro;Tondi, Benedetta
2014-01-01

Abstract

We study a new variant of the source identification game with training data in which part of the training data is corrupted by an adversary. In such a scenario, the defender wants to decide whether a test sequence x(n) has been drawn from the same source which generated a training sequence t(N), part of which has been corrupted by the adversary. By adopting a game theoretical formulation, we derive the unique rationalizable equilibrium of the game in the asymptotic setup. Moreover, by mimicking Stein's lemma, we derive the best achievable performance for the defender, permitting us to analyze the ultimate distinguishability of the two sources. We conclude the paper by comparing the performance of the test with corrupted training to the simpler case in which the adversary can not modify the training sequence, and by deriving the percentage of samples that the adversary needs to modify to make source identification impossible.
2014
9781479988822
Barni, M., Tondi, B. (2014). Source distinguishability under corrupted training. In 2014 IEEE International Workshop on Information Forensics and Security, WIFS 2014 (pp.197-202). New York : Institute of Electrical and Electronics Engineers Inc. [10.1109/WIFS.2014.7084327].
4.1 Contributo in Atti di convegno
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11365/981823
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo