Abstract:
The abuse of deepfake techniques has raised serious concerns about social security and ethical problems, which motivates the development of deepfake detection. However, w...Show MoreMetadata
Abstract:
The abuse of deepfake techniques has raised serious concerns about social security and ethical problems, which motivates the development of deepfake detection. However, without fully addressing the domain gap issue, existing deepfake detection methods still show weak generalization ability among datasets belonging to different domains with domain-specific characteristics like identities and generation methods, limiting their practical applications. In this article, we propose the Invariant Domain-oriented Deepfake Detection method (ID_{3}), which improves the generalization of deepfake detection on multiple domains through invariant risk minimization, a novel learning paradigm that addresses the domain gap problem by jointly training a purified invariant predictor and learning an aligned invariant representation. To train a purified invariant predictor, we design the Domain Refinement Data Augmentation strategy with self-face-swapping and region-erasing approaches, which suppresses domain-specific features and encourages the models to focus on critical domain-invariant characteristics. To learn an aligned invariant representation, we propose the Domain Calibration Batch Normalization approach with multiple BN branches, which normalizes input features from different domains into aligned representations during both training and testing. Extensive experiments on multiple datasets demonstrate that our framework can boost the deepfake detection generalization ability and outperform other baselines by large margins. Our codes can be found here.
Published in: IEEE Transactions on Multimedia ( Volume: 26)
Funding Agency:
State Key Lab of Software Development Environment, Beihang University, Beijing, China
Zixin Yin received the master's degree. His research interests include physical adversarial attacks and defenses, and trustworthy artificial intelligence.
Zixin Yin received the master's degree. His research interests include physical adversarial attacks and defenses, and trustworthy artificial intelligence.View more
Zhongguancun Laboratory, Beijing, China
Jiakai Wang received the B.Sc. (Summa Cum Laude) and Ph.D. degrees (Summa Cum Laude) from Beihang University, Beijing, China, in 2018 and 2022, respectively. He is currently a Research Scientist with Zhongguancun Laboratory, Beijing, China. His research interests include trustworthy AI in computer vision (mainly) and multimodal machine learning, including physical adversarial attacks, and defense and security of practical...Show More
Jiakai Wang received the B.Sc. (Summa Cum Laude) and Ph.D. degrees (Summa Cum Laude) from Beihang University, Beijing, China, in 2018 and 2022, respectively. He is currently a Research Scientist with Zhongguancun Laboratory, Beijing, China. His research interests include trustworthy AI in computer vision (mainly) and multimodal machine learning, including physical adversarial attacks, and defense and security of practical...View more
State Key Lab of Software Development Environment, Beihang University, Beijing, China
Yisong Xiao is currently working toward the Ph.D. degree in computer science with Beihang University, Beijing, China. His main research interests include software testing, adversarial attacks, and trustworthy artificial intelligence.
Yisong Xiao is currently working toward the Ph.D. degree in computer science with Beihang University, Beijing, China. His main research interests include software testing, adversarial attacks, and trustworthy artificial intelligence.View more
School of Cyberspace Security, University of Science and Technology of China, Hefei, China
Hanqing Zhao is currently working toward the Ph.D. degree in cyberspace science and technology with the University of Science and Technology of China, Hefei, China. His research interests include face forgery detection, AI security, and generative models.
Hanqing Zhao is currently working toward the Ph.D. degree in cyberspace science and technology with the University of Science and Technology of China, Hefei, China. His research interests include face forgery detection, AI security, and generative models.View more
Nanyang Technological University, Singapore
Tianlin Li received the B.Eng and M.Eng degrees in computer science and engineering from Beihang University, Beijing, China, in 2016 and 2019, respectively. He is currently working toward the Ph.D. degree in computer science with the CSL Lab of NTU. His research interests include AI security and interpretability, especially adversarial attack on deep learning models.
Tianlin Li received the B.Eng and M.Eng degrees in computer science and engineering from Beihang University, Beijing, China, in 2016 and 2019, respectively. He is currently working toward the Ph.D. degree in computer science with the CSL Lab of NTU. His research interests include AI security and interpretability, especially adversarial attack on deep learning models.View more
School of Cyberspace Security, University of Science and Technology of China, Hefei, China
Wenbo Zhou (Member, IEEE) received the B.S. degree from the Nanjing University of Aeronautics and Astronautics, Nanjing, China, in 2014, and the Ph.D. degree from the University of Science and Technology of China, Hefei, China, in 2019. He is currently an Associate Professor with the University of Science and Technology of China. His research interests include information hiding and AI security.
Wenbo Zhou (Member, IEEE) received the B.S. degree from the Nanjing University of Aeronautics and Astronautics, Nanjing, China, in 2014, and the Ph.D. degree from the University of Science and Technology of China, Hefei, China, in 2019. He is currently an Associate Professor with the University of Science and Technology of China. His research interests include information hiding and AI security.View more
State Key Lab of Software Development Environment, Beihang University, Beijing, China
Aishan Liu (Member, IEEE) received the Ph.D. degree from Beihang University, Beijing, China, in 2021, supervised by Prof. Wei Li and Prof. Xianglong Liu. He is currently an Assistant Professor with the State Key Laboratory of Software Development Environment, Department of Computer Science and Engineering, Beihang University. His research interests include centered around AI Safety and Security, with broad interests in th...Show More
Aishan Liu (Member, IEEE) received the Ph.D. degree from Beihang University, Beijing, China, in 2021, supervised by Prof. Wei Li and Prof. Xianglong Liu. He is currently an Assistant Professor with the State Key Laboratory of Software Development Environment, Department of Computer Science and Engineering, Beihang University. His research interests include centered around AI Safety and Security, with broad interests in th...View more
State Key Lab of Software Development Environment, Beihang University, Beijing, China
Beijing Advanced Innovation Center for Big Data-Based Precision Medicine, Beihang University, Beijing, China
Xianglong Liu (Member, IEEE) received the B.S. and Ph.D. degrees under supervision of Prof. Wei Li, and visited DVMM Lab, Columbia University, New York, NY, USA, as a joint Ph.D. student supervised by Prof. Shih-Fu Chang. He is currently a Full Professor with the School of Computer Science and Engineering, Beihang University, Beijing, China. His research interests include fast visual computing (e.g., large-scale search/un...Show More
Xianglong Liu (Member, IEEE) received the B.S. and Ph.D. degrees under supervision of Prof. Wei Li, and visited DVMM Lab, Columbia University, New York, NY, USA, as a joint Ph.D. student supervised by Prof. Shih-Fu Chang. He is currently a Full Professor with the School of Computer Science and Engineering, Beihang University, Beijing, China. His research interests include fast visual computing (e.g., large-scale search/un...View more
Contents State Key Lab of Software Development Environment, Beihang University, Beijing, China
Zixin Yin received the master's degree. His research interests include physical adversarial attacks and defenses, and trustworthy artificial intelligence.
Zixin Yin received the master's degree. His research interests include physical adversarial attacks and defenses, and trustworthy artificial intelligence.View more
Zhongguancun Laboratory, Beijing, China
Jiakai Wang received the B.Sc. (Summa Cum Laude) and Ph.D. degrees (Summa Cum Laude) from Beihang University, Beijing, China, in 2018 and 2022, respectively. He is currently a Research Scientist with Zhongguancun Laboratory, Beijing, China. His research interests include trustworthy AI in computer vision (mainly) and multimodal machine learning, including physical adversarial attacks, and defense and security of practical AI.
Jiakai Wang received the B.Sc. (Summa Cum Laude) and Ph.D. degrees (Summa Cum Laude) from Beihang University, Beijing, China, in 2018 and 2022, respectively. He is currently a Research Scientist with Zhongguancun Laboratory, Beijing, China. His research interests include trustworthy AI in computer vision (mainly) and multimodal machine learning, including physical adversarial attacks, and defense and security of practical AI.View more
State Key Lab of Software Development Environment, Beihang University, Beijing, China
Yisong Xiao is currently working toward the Ph.D. degree in computer science with Beihang University, Beijing, China. His main research interests include software testing, adversarial attacks, and trustworthy artificial intelligence.
Yisong Xiao is currently working toward the Ph.D. degree in computer science with Beihang University, Beijing, China. His main research interests include software testing, adversarial attacks, and trustworthy artificial intelligence.View more
School of Cyberspace Security, University of Science and Technology of China, Hefei, China
Hanqing Zhao is currently working toward the Ph.D. degree in cyberspace science and technology with the University of Science and Technology of China, Hefei, China. His research interests include face forgery detection, AI security, and generative models.
Hanqing Zhao is currently working toward the Ph.D. degree in cyberspace science and technology with the University of Science and Technology of China, Hefei, China. His research interests include face forgery detection, AI security, and generative models.View more
Nanyang Technological University, Singapore
Tianlin Li received the B.Eng and M.Eng degrees in computer science and engineering from Beihang University, Beijing, China, in 2016 and 2019, respectively. He is currently working toward the Ph.D. degree in computer science with the CSL Lab of NTU. His research interests include AI security and interpretability, especially adversarial attack on deep learning models.
Tianlin Li received the B.Eng and M.Eng degrees in computer science and engineering from Beihang University, Beijing, China, in 2016 and 2019, respectively. He is currently working toward the Ph.D. degree in computer science with the CSL Lab of NTU. His research interests include AI security and interpretability, especially adversarial attack on deep learning models.View more
School of Cyberspace Security, University of Science and Technology of China, Hefei, China
Wenbo Zhou (Member, IEEE) received the B.S. degree from the Nanjing University of Aeronautics and Astronautics, Nanjing, China, in 2014, and the Ph.D. degree from the University of Science and Technology of China, Hefei, China, in 2019. He is currently an Associate Professor with the University of Science and Technology of China. His research interests include information hiding and AI security.
Wenbo Zhou (Member, IEEE) received the B.S. degree from the Nanjing University of Aeronautics and Astronautics, Nanjing, China, in 2014, and the Ph.D. degree from the University of Science and Technology of China, Hefei, China, in 2019. He is currently an Associate Professor with the University of Science and Technology of China. His research interests include information hiding and AI security.View more
State Key Lab of Software Development Environment, Beihang University, Beijing, China
Aishan Liu (Member, IEEE) received the Ph.D. degree from Beihang University, Beijing, China, in 2021, supervised by Prof. Wei Li and Prof. Xianglong Liu. He is currently an Assistant Professor with the State Key Laboratory of Software Development Environment, Department of Computer Science and Engineering, Beihang University. His research interests include centered around AI Safety and Security, with broad interests in the areas of Adversarial Examples, backdoor attacks, interpretable deep learning, model robustness, fairness testing, AI Testing and evaluation, and their applications in real-world scenarios.
Aishan Liu (Member, IEEE) received the Ph.D. degree from Beihang University, Beijing, China, in 2021, supervised by Prof. Wei Li and Prof. Xianglong Liu. He is currently an Assistant Professor with the State Key Laboratory of Software Development Environment, Department of Computer Science and Engineering, Beihang University. His research interests include centered around AI Safety and Security, with broad interests in the areas of Adversarial Examples, backdoor attacks, interpretable deep learning, model robustness, fairness testing, AI Testing and evaluation, and their applications in real-world scenarios.View more
State Key Lab of Software Development Environment, Beihang University, Beijing, China
Beijing Advanced Innovation Center for Big Data-Based Precision Medicine, Beihang University, Beijing, China
Xianglong Liu (Member, IEEE) received the B.S. and Ph.D. degrees under supervision of Prof. Wei Li, and visited DVMM Lab, Columbia University, New York, NY, USA, as a joint Ph.D. student supervised by Prof. Shih-Fu Chang. He is currently a Full Professor with the School of Computer Science and Engineering, Beihang University, Beijing, China. His research interests include fast visual computing (e.g., large-scale search/understanding) and robust deep learning (e.g., network quantization, adversarial attack/defense, few shot learning). He received NSFC Excellent Young Scientists Fund, and was selected into 2019 Beijing Nova Program, MSRA StarTrack Program, and 2015 CCF Young Talents Development Program.
Xianglong Liu (Member, IEEE) received the B.S. and Ph.D. degrees under supervision of Prof. Wei Li, and visited DVMM Lab, Columbia University, New York, NY, USA, as a joint Ph.D. student supervised by Prof. Shih-Fu Chang. He is currently a Full Professor with the School of Computer Science and Engineering, Beihang University, Beijing, China. His research interests include fast visual computing (e.g., large-scale search/understanding) and robust deep learning (e.g., network quantization, adversarial attack/defense, few shot learning). He received NSFC Excellent Young Scientists Fund, and was selected into 2019 Beijing Nova Program, MSRA StarTrack Program, and 2015 CCF Young Talents Development Program.View more
