Adversarial Attacks and Defenses for Deep-Learning-Based Unmanned Aerial Vehicles

The introduction of deep learning technology can improve the performance of cyber-physical systems (CPSs) in many ways. However, this also brings new security issues. To tackle these challenges, this paper explores the vulnerabilities of deep learning-based unmanned aerial vehicles (UAVs), which are typical CPSs. Although many research works have been reported previously on adversarial attacks of deep learning models, only few of them are concerned about safety-critical CPSs, especially regression models in such systems. In this paper, we analyze the problem of adversarial attacks against deep learning-based UAVs and propose two adversarial attack methods against regression models in UAVs. Experiments demonstrate that the proposed non-targeted and targeted attack methods both can craft imperceptible adversarial images and pose a considerable threat to the navigation and control of UAVs. To address this problem, adversarial training and defensive distillation methods are further investigated and evaluated, increasing the robustness of deep learning models in UAVs. To our knowledge, this is the first study on adversarial attacks and defenses against deep learning-based UAVs, which calls for more attention to the security and safety of such safety-critical applications.