On the Vulnerability of CNN Classifiers in EEG-Based BCIs

by admin · Published 2020 20Asia/ShanghaiamTue, 18 Aug 2020 10:15:26 +0800 8 08202083110 18 18am20 · Updated 2020 20Asia/ShanghaiamTue, 18 Aug 2020 10:15:27 +0800 8 08202083110 18 18am20

Deep learning has been successfully used in numerous applications because of its outstanding
performance and the ability to avoid manual feature engineering. One such application is electroencephalogram(EEG)-based brain-computer interface (BCI), where multiple convolutional neural network (CNN) models have been proposed for EEG classification. However, it has been found that deep learning models can be easily fooled with adversarial examples, which are normal examples with small deliberate perturbations. This paper proposes an unsupervised fast gradient sign method (UFGSM) to attack three popular CNN classifiers in BCIs, and demonstrates its effectiveness. We also verify the transferability of adversarial examples in BCIs, which means we can perform attacks even without knowing the architecture and parameters of the target models, or the datasets they were trained on.
To the best of our knowledge, this is the first study on
the vulnerability of CNN classifiers in EEG-based BCIs, and
hopefully will trigger more attention on the security of BCI
systems.

On the Vulnerability of CNN Classifiers in EEG-Based BCIs

You may also like...

Multi-view broad learning system for primate oculomotor decision decoding

Empirical Studies on the Properties of Linear Regions in Deep Neural Networks