Despite their high prediction accuracy, deep learning-based soft sensor (DLSS) models face challenges related to adversarial robustness against malicious adversarial attacks, which hinder their widespread deployment and safe application. Although adversarial training is the primary method for enhancing adversarial robustness, existing adversarial-training-based defense methods often struggle with accurately estimating transfer gradients and avoiding adversarial robust overfitting. To address these issues, we propose a novel adversarial training approach, namely domain-adaptive adversarial training (DAAT). DAAT comprises two stages: historical gradient-based adversarial attack (HGAA) and domain-adaptive training. In the first stage, HGAA incorporates historical gradient information into the iterative process of generating adversarial samples. It considers gradient similarity between iterative steps to stabilize the updating direction, resulting in improved transfer gradient estimation and stronger adversarial samples. In the second stage, a soft sensor domain-adaptive training model is developed to learn common features from adversarial and original samples through domain-adaptive training, thereby avoiding excessive leaning toward either side and enhancing the adversarial robustness of DLSS without robust overfitting. To demonstrate the effectiveness of DAAT, a DLSS model for crystal quality variables in silicon single-crystal growth manufacturing processes is used as a case study. Through DAAT, the DLSS achieves a balance between defense against adversarial samples and prediction accuracy on normal samples to some extent, offering an effective approach for enhancing the adversarial robustness of DLSS.
Download full-text PDF |
Source |
|---|---|
| http://www.ncbi.nlm.nih.gov/pmc/articles/PMC11207657 | PMC |
| http://dx.doi.org/10.3390/s24123909 | DOI Listing |
Publication Analysis
Top Keywords
Similar Publications
Our study introduces a pioneering underwater single-pixel imaging approach that employs an orbital angular momentum (OAM) basis as a sampling scheme and a dual-attention residual U-Net generative adversarial network (DARU-GAN) as reconstruction algorithm. This method is designed to address the challenges of low sampling rates and high turbidity typically encountered in underwater environments. The integration of the OAM-basis sampling scheme and the improved reconstruction network not only enhances reconstruction quality but also ensures robust generalization capabilities, effectively restoring underwater target images even under the stringent conditions of a 3.
View Article and Find Full Text PDFJoint disentangled representation and domain adversarial training for EEG-based cross-session biometric recognition in single-task protocols.
Cogn Neurodyn
December 2025
School of Computer Science, Hangzhou Dianzi University, Hangzhou, 310018 Zhejiang China.
The increasing adoption of wearable technologies highlights the potential of electroencephalogram (EEG) signals for biometric recognition. However, the intrinsic variability in cross-session EEG data presents substantial challenges in maintaining model stability and reliability. Moreover, the diversity within single-task protocols complicates achieving consistent and generalized model performance.
View Article and Find Full Text PDFImproved Grain Boundary Reconstruction Method Based on Channel Attention Mechanism.
Materials (Basel)
January 2025
Hubei Key Laboratory of Plasma Chemistry and Advanced Materials, School of Materials Science and Engineering, Wuhan Institute of Technology, Wuhan 430205, China.
The grain size of metal materials has a significant impact on their macroscopic properties. However, original metallographic images often suffer from issues such as substantial noise, missing grain boundaries, low contrast, and blurred edges. These challenges hinder the accurate extraction of complete grain boundaries, limiting the precision of grain size measurement and material performance prediction.
View Article and Find Full Text PDFIncreasing Neural-Based Pedestrian Detectors' Robustness to Adversarial Patch Attacks Using Anomaly Localization.
J Imaging
January 2025
Science and Research Department, Moscow Technical University of Communications and Informatics, 111024 Moscow, Russia.
Object detection in images is a fundamental component of many safety-critical systems, such as autonomous driving, video surveillance systems, and robotics. Adversarial patch attacks, being easily implemented in the real world, provide effective counteraction to object detection by state-of-the-art neural-based detectors. It poses a serious danger in various fields of activity.
View Article and Find Full Text PDFDeep learning enabled rapid classification of yeast species in food by imaging of yeast microcolonies.
Food Res Int
February 2025
Department of Food Science & Technology, University of California-Davis, Davis, CA 95616, USA; Department of Biological & Agricultural Engineering, University of California-Davis, Davis, CA 95616, USA. Electronic address:
Diverse species of yeasts are commonly associated with food and food production environments. The contamination of food products by spoilage yeasts poses significant challenges, leading to quality degradation and food loss. Similarly, the introduction of undesirable strains during fermentation can cause considerable challenges with the quality and progress of the fermentation process.
View Article and Find Full Text PDFWant AI Summaries of new PubMed Abstracts delivered to your In-box?
Enter search terms and have AI summaries delivered each week - change queries or unsubscribe any time!