DDSA: Dual-Domain Strategic Attack for Spatial-Temporal Efficiency in Adversarial Robustness Testing

Image transmission and processing systems in resource-critical applications face significant challenges from adversarial perturbations that compromise mission-specific object classification. Current robustness testing methods require excessive computational resources through exhaustive frame-by-frame processing and full-image perturbations, proving impractical for large-scale deployments where massive image streams demand immediate processing. This paper presents DDSA (Dual-Domain Strategic Attack), a resource-efficient adversarial robustness testing framework that optimizes testing through temporal selectivity and spatial precision. We introduce a scenario-aware trigger function that identifies critical frames requiring robustness evaluation based on class priority and model uncertainty, and employ explainable AI techniques to locate influential pixel regions for targeted perturbation. Our dual-domain approach achieves substantial temporal-spatial resource conservation while maintaining attack effectiveness. The framework enables practical deployment of comprehensive adversarial robustness testing in resource-constrained real-time applications where computational efficiency directly impacts mission success.

Key Contributions

• Scenario-aware temporal trigger function that selects critical frames for adversarial testing based on class priority and model uncertainty, reducing unnecessary per-frame overhead
• Explainable AI-guided spatial targeting using Integrated Gradients to locate influential pixel regions for focused perturbation instead of full-image attacks
• DDSA framework combining temporal selectivity and spatial precision for resource-efficient adversarial robustness testing in large-scale, real-time image processing deployments

🛡️ Threat Analysis

Details

Similar Papers