Xiaoyu Jiang,Xiangyin Kong,Junhua Zheng,Zhiqiang Ge,Xinmin Zhang,Zhihuan Song

DOI: https://doi.org/10.1109/tii.2024.3449999

IF: 12.3

2024-01-01

IEEE Transactions on Industrial Informatics

Abstract:In recent years, deep neural networks (DNNs) have been widely applied in fault classification tasks. Their adversarial security has received attention, but little consideration has been given to the robustness of adversarial attacks against imperfect DNNs. Owing to the data scarcity and quality deficiencies prevalent in industrial data, the performance of DNNs may be severely constrained. In addition, black-box attacks against industrial fault classification models have difficulty in obtaining sufficient and comprehensive data for constructing surrogate models with perfect decision boundaries. To address this gap, this article analyzes the outcomes of adversarial attacks on imperfect DNNs and categorizes their decision scenarios. Subsequently, building on this analysis, we propose a robust adversarial attack strategy that transforms traditional adversarial attacks into an iterative targeted attack (ITA). The ITA framework begins with an evaluation of DNNs, during which a classification confidence score (CCS) is designed. Using the CCS and the prediction probability of the data, the labels and sequences for targeted attacks are defined. The adversarial attacks are then carried out by iteratively selecting attack targets and using gradient optimization. Experimental results on both a benchmark dataset and an industrial case demonstrate the superiority of the proposed method.

Te Han,Chao Liu,Wenguang Yang,Dongxiang Jiang

DOI: https://doi.org/10.1016/j.knosys.2018.12.019

IF: 8.139

2019-01-01

Knowledge-Based Systems

Abstract:In recent years, deep learning has become an emerging research orientation in the field of intelligent monitoring and fault diagnosis for industry equipment. Generally, the success of supervised deep models is largely attributed to a mass of typically labeled data, while it is often limited in real diagnosis tasks. In addition, the diagnostic model trained with data from limited conditions may generalize poorly for conditions not observed during training. To tackle these challenges, adversarial learning is introduced as a regularization into the convolutional neural network (CNN), and a novel deep adversarial convolutional neural network (DACNN) is accordingly proposed in this paper. By adding an additional discriminative classifier, an adversarial learning framework can be developed to train the convolutional blocks with the split data subsets, leading to a minimax two-player game. This process contributes to making the feature representation robust, boosting the generalization ability of the trained model as well as avoiding overfitting with a small size of labeled samples. The comparison studies with respect to conventional deep models on two fault datasets demonstrate the applicability and superiority of proposed method.

Mengting Xu,Tao Zhang,Zhongnian Li,Mingxia Liu,Daoqiang Zhang

DOI: https://doi.org/10.1016/j.media.2021.101977

IF: 10.9

2021-04-01

Medical Image Analysis

Abstract:<p>Deep learning models (with neural networks) have been widely used in challenging tasks such as computer-aided disease diagnosis based on medical images. Recent studies have shown deep diagnostic models may not be robust in the inference process and may pose severe security concerns in clinical practice. Among all the factors that make the model not robust, the most serious one is adversarial examples. The so-called "adversarial example" is a well-designed perturbation that is not easily perceived by humans but results in a false output of deep diagnostic models with high confidence. In this paper, we evaluate the robustness of deep diagnostic models by adversarial attack. Specifically, we have performed two types of adversarial attacks to three deep diagnostic models in both single-label and multi-label classification tasks, and found that these models are not reliable when attacked by adversarial example. We have further explored how adversarial examples attack the models, by analyzing their quantitative classification results, intermediate features, discriminability of features and correlation of estimated labels for both original/clean images and those adversarial ones. We have also designed two new defense methods to handle adversarial examples in deep diagnostic models, <em>i.e.</em>, Multi-Perturbations Adversarial Training (MPAdvT) and Misclassification-Aware Adversarial Training (MAAdvT). The experimental results have shown that the use of defense methods can significantly improve the robustness of deep diagnostic models against adversarial attacks.</p>

engineering, biomedical,computer science, interdisciplinary applications, artificial intelligence,radiology, nuclear medicine & medical imaging

Yue Zhuo,Yuri A. W. Shardt,Zhiqiang Ge

DOI: https://doi.org/10.1016/j.eng.2021.07.033

IF: 12.834

2022-01-01

Engineering

Abstract:Recently developed fault classification methods for industrial processes are mainly data-driven. Notably, models based on deep neural networks have significantly improved fault classification accuracy owing to the inclusion of a large number of data patterns. However, these data-driven models are vulnerable to adversarial attacks; thus, small perturbations on the samples can cause the models to provide incorrect fault predictions. Several recent studies have demonstrated the vulnerability of machine learning methods and the existence of adversarial samples. This paper proposes a black-box attack method with an extreme constraint for a safe-critical industrial fault classification system: Only one variable can be perturbed to craft adversarial samples. Moreover, to hide the adversarial samples in the visualization space, a Jacobian matrix is used to guide the perturbed variable selection, making the adversarial samples in the dimensional reduction space invisible to the human eye. Using the one-variable attack (OVA) method, we explore the vulnerability of industrial variables and fault types, which can help understand the geometric characteristics of fault classification systems. Based on the attack method, a corresponding adversarial training defense method is also proposed, which efficiently defends against an OVA and improves the prediction accuracy of the classifiers. In experiments, the proposed method was tested on two datasets from the Tennessee–Eastman process (TEP) and steel plates (SP). We explore the vulnerability and correlation within variables and faults and verify the effectiveness of OVAs and defenses for various classifiers and datasets. For industrial fault classification systems, the attack success rate of our method is close to (on TEP) or even higher than (on SP) the current most effective first-order white-box attack method, which requires perturbation of all variables.

Vitaliy Pozdnyakov,Aleksandr Kovalenko,Ilya Makarov,Mikhail Drobyshevskiy,Kirill Lukyanov

DOI: https://doi.org/10.1109/OJIES.2024.3401396

2024-06-07

Abstract:Integrating machine learning into Automated Control Systems (ACS) enhances decision-making in industrial process management. One of the limitations to the widespread adoption of these technologies in industry is the vulnerability of neural networks to adversarial attacks. This study explores the threats in deploying deep learning models for fault diagnosis in ACS using the Tennessee Eastman Process dataset. By evaluating three neural networks with different architectures, we subject them to six types of adversarial attacks and explore five different defense methods. Our results highlight the strong vulnerability of models to adversarial samples and the varying effectiveness of defense strategies. We also propose a novel protection approach by combining multiple defense methods and demonstrate it's efficacy. This research contributes several insights into securing machine learning within ACS, ensuring robust fault diagnosis in industrial processes.

Machine Learning,Cryptography and Security,Systems and Control

Weining Lu,Bin Liang,Yu Cheng,Deshan Meng,Jun Yang,Tao Zhang

DOI: https://doi.org/10.1109/tie.2016.2627020

IF: 7.7

2016-01-01

IEEE Transactions on Industrial Electronics

Abstract:In recent years, machine learning techniques have been widely used to solve many problems for fault diagnosis. However, in many real-world fault diagnosis applications, the distribution of the source domain data (on which the model is trained) is different from the distribution of the target domain data (where the learned model is actually deployed), which leads to performance degradation. In this paper, we introduce domain adaptation, which can find the solution to this problem by adapting the classifier or the regression model trained in a source domain for use in a different but related target domain. In particular, we proposed a novel deep neural network model with domain adaptation for fault diagnosis. Two main contributions are concluded by comparing to the previous works: first, the proposed model can utilize domain adaptation meanwhile strengthening the representative information of the original data, so that a high classification accuracy in the target domain can be achieved, and second, we proposed several strategies to explore the optimal hyperparameters of the model. Experimental results, on several real-world datasets, demonstrate the effectiveness and the reliability of both the proposed model and the exploring strategies for the parameters.

Kun Xu,Shunming Li,Ranran Li,Jiantao Lu,Mengjie Zeng

DOI: https://doi.org/10.1088/1361-6501/ac20f1

IF: 2.398

2021-01-01

Measurement Science and Technology

Abstract:Big data condition monitoring in the industrial of internet era is indispensable, and intelligent fault diagnosis plays an important role in it. The adversarial learning method is widely used because of its ability to extract domain invariant features to solve the variable speed fault diagnosis problem. However, its training process is often unstable and difficult to converge to the optimal solution, which brings great challenges to the fault detection of equipment. In view of this exasperating problem, a novel model, called deep domain adversarial method with central moment discrepancy, is proposed. The presented model mainly consists of four modules: a shared weight feature extraction network with wide convolution kernel, a supervised classification network, an adversarial domain classification network, and a CMD alignment network. Adversarial domain classification network is employed to extract features that have both category distinction and domain invariance in the process of mutual game learning between features of source domain and target domain. The CMD alignment network can be devoted to align the higher-order moments of two domain features to constrain the instability in adversarial learning. Through the above regularization method, the model shows a relatively stable and higher accuracy of transferring diagnosis in the non-standardized data. The public test data set and the private data set are applied to validate the model. The results show that the proposed model successfully solves the problem of training instability in adversarial learning and has a relatively high diagnostic accuracy.

Xiaoyu Jiang,Zhiqiang Ge

DOI: https://doi.org/10.1109/tii.2021.3104056

IF: 12.3

2022-01-01

IEEE Transactions on Industrial Informatics

Abstract:Data-driven artificial intelligence (AI) models have been widely used in industrial systems helping big data analytic due to its convenience and flexibility. However, adversarial attacks have the ability to mislead AI models to make incorrect predictions just by adding specific perturbation to actual samples. With the high integration of industrial systems and information technology, the reliability and safety of AI models in industrial systems have been seriously threatened. In the article, fault diagnosis models and soft sensing models rely on AI technology are verified to be vulnerable facing adversarial attack. To this end, the concept of information fingerprint for industrial data is introduced to distinguish actual samples from adversarial samples with small perturbation. With fault diagnosis models and soft sensing models as the background, information fingerprint exaction networks based on deep learning is developed to extract the information fingerprint for further analysis. It utilizes supervised contrastive pretraining and unsupervised training to realize parameter learning for the structure of siamese neural network and autoencoder. Finally, the effectiveness and feasibility of the proposed information fingerprint for adversarial sample detection are verified in two industrial benchmark cases.

Wei Zhang,Chuanhao Li,Gaoliang Peng,Yuanhang Chen,Zhujun Zhang

DOI: https://doi.org/10.1016/j.ymssp.2017.06.022

IF: 8.4

2017-01-01

Mechanical Systems and Signal Processing

Abstract:In recent years, intelligent fault diagnosis algorithms using machine learning technique have achieved much success. However, due to the fact that in real world industrial applications, the working load is changing all the time and noise from the working environment is inevitable, degradation of the performance of intelligent fault diagnosis methods is very serious. In this paper, a new model based on deep learning is proposed to address the problem. Our contributions of include: First, we proposed an end-to-end method that takes raw temporal signals as inputs and thus doesn't need any time consuming denoising preprocessing. The model can achieve pretty high accuracy under noisy environment. Second, the model does not rely on any domain adaptation algorithm or require information of the target domain. It can achieve high accuracy when working load is changed. To understand the proposed model, we will visualize the learned features, and try to analyze the reasons behind the high performance of the model. (C) 2017 Published by Elsevier Ltd.

Jinyang Jiao,Jing Lin,Ming Zhao,Kaixuan Liang

DOI: https://doi.org/10.1016/j.knosys.2020.106236

IF: 8.139

2020-01-01

Knowledge-Based Systems

Abstract:Deep neural networks have been widely studied in the field of mechanical fault diagnosis with the rapidity of intelligent manufacturing and industrial big data, however, attractive performance gains usually come from a premise that source training data and target test data have the same distribution. Unfortunately, this assumption is generally untenable in practice due to changeable working conditions and complex industrial environment. To address this issue, a double-level adversarial domain adaptation network (DL-ADAN) is presented for cross-domain fault diagnosis, which is able to bridge the divergences between the source and target domains. Specifically, the proposed diagnostic framework is composed of a feature extractor based on deep convolutional network, a domain discriminator and two label classifiers, which conducts two minimax adversarial games. In the first adversarial stream, the feature extractor and domain discriminator game with each other to achieve domain-level alignment from a global perspective. On the other line, the extractor and two classifiers are against each other to conduct class-level alignment, in which Wasserstein discrepancy is used to detect outlier target samples. As a result, the extractor can learn transferable discriminative features for accurate fault diagnosis. Extensive diagnostic experiments are constructed for performance analysis and several state of the art diagnostic methods are selected for comparative study. The comprehensive results demonstrate the effectiveness and superiority of the proposed method.

Ping Zhang,Guangrui Wen,Shuzhi Dong,Hailong Lin,Xin Huang,Xiaojun Tian,Xuefeng Chen

DOI: https://doi.org/10.1109/tim.2021.3076841

IF: 5.6

2021-01-01

IEEE Transactions on Instrumentation and Measurement

Abstract:Big-data fault diagnosis methods based on deep learning (DL) have been widely studied in recent years. However, the number of labeled bearing fault samples is limited in industrial practice, and these samples usually are contained with complex environmental noise. Therefore, it is necessary to develop a generalizable DL model with strong feature learning ability. To tackle the above challenges, this article proposes a multiscale lightweight fault diagnosis model based on the idea of adversarial learning. The multiscale feature extraction unit is applied to the vibration signal for learning complementary and abundant fault information at different time scales, increasing the width and reducing the depth of the network. Meanwhile, a novel easy-to-train module based on the idea of adversarial learning is utilized to strengthen the feature learning ability by competitive optimization. Besides, the depthwise separable convolution is introduced to reduce the size of the network and achieve the lightweight design. These measures strengthen the feature learning ability and generalization of proposed method, and further ensure its noise robustness in the case of limited samples. The effectiveness of the proposed method has been verified on two bearing datasets, and experimental results show that the proposed method is robust to noise in the case of limited samples.

engineering, electrical & electronic,instruments & instrumentation

Jiao Jinyang,Zhao Ming,Lin Jing,Liang Kaixuan,Ding Chuancang

DOI: https://doi.org/10.1007/s10845-021-01777-0

IF: 8.3

2021-01-01

Journal of Intelligent Manufacturing

Abstract:Behind the brilliance of the deep diagnosis models, the issue of distribution discrepancy between source training data and target test data is being gradually concerned for catering to more practical and urgent diagnostic requirements. Consequently, advanced domain adaptation algorithms have been introduced to the field of fault diagnosis to address this problem. However, in performing domain adaptation, most existing diagnosis methods only focus on the minimization of marginal distribution divergences and do not consider conditional distribution differences at the same time. In this paper, we present a mixed adversarial adaptation network (MAAN) based intelligent framework for cross-domain fault diagnosis of machinery. In this approach, differences in marginal distribution and conditional distribution are reduced together by the adversarial learning strategy, moreover, a simple adaptive factor is also endowed to dynamically weigh the relative importance of two distributions. Extensive experiments on two kinds of mechanical equipment, i.e. planetary gearbox and rolling bearing, are built to validate the proposed method. Empirical evidence demonstrates that the proposed model outperforms popular deep learning and deep domain adaptation diagnosis methods.

Bo Zhang,Feixuan Li,Ning Ma,Wen Ji,See-Kiong Ng

DOI: https://doi.org/10.3390/act13040121

IF: 2.6

2024-03-26

Actuators

Abstract:Bearing fault diagnosis is a pivotal aspect of monitoring rotating machinery. Recently, numerous deep learning models have been developed for intelligent bearing fault diagnosis. However, these models have typically been established based on two key assumptions: (1) that identical fault categories exist in both the training and testing datasets, and (2) the datasets used for testing and training are assumed to follow the same distribution. Nevertheless, these assumptions prove impractical and fail to accurately depict real-world scenarios, particularly those involving open-world assumption fault diagnosis in multi-condition scenarios. For that purpose, an open set domain adaptive adversarial network framework is proposed. Specifically, in order to improve the learning of distribution characteristics in different fields, comprehensive training is implemented using a deep convolutional autoencoder model. Additionally, to mitigate the negative transfer resulting from unknown fault samples in the target domain, the similarity of each target domain sample and the shared classes in the source domain are estimated using known class classifiers and extended classifiers. Similarity weight values are assigned to each target domain sample, and an unknown boundary is established in a weighted manner. This approach is employed to establish the alignment between the classes shared between the two domains, enabling the classification of known fault classes, while allowing the recognition of unknown fault classes in the target domain. The efficacy of our suggested approach is empirically validated using different datasets.

engineering, mechanical,instruments & instrumentation

Xiaoyong Yuan,Pan He,Qile Zhu,Xiaolin Li

DOI: https://doi.org/10.1109/tnnls.2018.2886017

IF: 14.255

2019-09-01

IEEE Transactions on Neural Networks and Learning Systems

Abstract:With rapid progress and significant successes in a wide spectrum of applications, deep learning is being applied in many safety-critical environments. However, deep neural networks (DNNs) have been recently found vulnerable to well-designed input samples called adversarial examples. Adversarial perturbations are imperceptible to human but can easily fool DNNs in the testing/deploying stage. The vulnerability to adversarial examples becomes one of the major risks for applying DNNs in safety-critical environments. Therefore, attacks and defenses on adversarial examples draw great attention. In this paper, we review recent findings on adversarial examples for DNNs, summarize the methods for generating adversarial examples, and propose a taxonomy of these methods. Under the taxonomy, applications for adversarial examples are investigated. We further elaborate on countermeasures for adversarial examples. In addition, three major challenges in adversarial examples and the potential solutions are discussed.

computer science, artificial intelligence, theory & methods,engineering, electrical & electronic, hardware & architecture

Feixia Min,Xiaofeng Qiu,Fan Wu

DOI: https://doi.org/10.1109/bigcom.2018.00021

2018-01-01

Abstract:Deep learning is playing a more and more important role in our daily life and scientific research such as autonomous systems, intelligent life and data mining. However, numerous studies have showed that deep learning with superior performance on many tasks may suffer from subtle perturbations constructed by attacker purposely, called adversarial perturbations, which are imperceptible to human observers but completely effect deep neural network models. The emergence of adversarial attacks has led to questions about neural networks. Therefore, machine learning security and privacy are becoming an increasingly active research area. In this paper, we summarize the prevalent methods for the generating adversarial attacks according to three groups. We elaborated on their ideas and principles of generation. We further analyze the common limitations of these methods and implement statistical experiments of the last layer output on CleverHans to reveal that the detection of adversarial samples is not as difficult as it seems and can be achieved in some relatively simple manners.

Wei Zhang,Gaoliang Peng,Chuanhao Li,Yuanhang Chen,Zhujun Zhang

DOI: https://doi.org/10.3390/s17020425

IF: 3.9

2017-02-22

Sensors

Abstract:Intelligent fault diagnosis techniques have replaced time-consuming and unreliable human analysis, increasing the efficiency of fault diagnosis. Deep learning models can improve the accuracy of intelligent fault diagnosis with the help of their multilayer nonlinear mapping ability. This paper proposes a novel method named Deep Convolutional Neural Networks with Wide First-layer Kernels (WDCNN). The proposed method uses raw vibration signals as input (data augmentation is used to generate more inputs), and uses the wide kernels in the first convolutional layer for extracting features and suppressing high frequency noise. Small convolutional kernels in the preceding layers are used for multilayer nonlinear mapping. AdaBN is implemented to improve the domain adaptation ability of the model. The proposed model addresses the problem that currently, the accuracy of CNN applied to fault diagnosis is not very high. WDCNN can not only achieve 100% classification accuracy on normal signals, but also outperform the state-of-the-art DNN model which is based on frequency features under different working load and noisy environment conditions.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Zhao Zhang,Xinyu Li,Long Wen,Liang Gao,Yiping Gao

DOI: https://doi.org/10.1109/coase.2019.8842881

2019-01-01

Abstract:The fault diagnosis is very important for the modern industry. Due to machine working conditions changing frequently, most of current fault diagnosis models built on the training (source) domain can't perform well in test (target) domain. In addition, in test domain, there are few labeled data to adjust model to be adaptive to test working conditions. Domain adaptation, as one type of transfer learning, can be used to solve this problem. This paper proposes a novel fault diagnosis method using unsupervised transfer learning based on adversarial network. In this method, deep neural network is used to extract feature of fault signal while the adversarial network is used to accomplish the transfer learning process. Firstly, the fault signal is converted into RGB images as inputs of networks. Then, the adversarial training methods are used, which includes three training processes: the regular training process using source data, the maximum discrepancy training process and the minimum discrepancy training process. These three steps are adversarial to each other to adjust the model to be more adaptive. The method is tested on motor bearing dataset provided by Case Western Reserve University (CWRU). The prediction accuracies are better than other four comparison methods.

Zihan He,Jie Liu,Wen Wang

DOI: https://doi.org/10.1109/icrms59672.2023.00232

2023-01-01

Abstract:The rapid advancement of high-speed trains (HST) has underscored the escalating significance of ensuring the reliability and safety of HST braking systems. In recent years, data-driven fault diagnosis methods have gained traction, owing to the proliferation of sensors employed in fault diagnosis within this domain. Concurrently, fault diagnosis techniques rooted in causal and graph neural networks (GNN) have been gradually integrated into practice. Nevertheless, sensor errors pose significant challenges in the generation of causal graphs. Additionally, the presence of unbalanced data can lead to a deterioration in model performance when classifying minor sample categories. In response, we present an innovative approach for GNN-based fault diagnosis, incorporating adversarial attacks. In this study, we meticulously consider four distinct adversarial attack scenarios, encompassing all potential instances where errors may impact the data. Furthermore, we introduce adversarial regularization to uphold the method's integrity. To substantiate our approach, we conduct fault diagnosis experiments employing graph convolution networks (GCN) and graph attention networks (GAT) models on authentic datasets obtained from HST braking systems. Our empirical findings substantiate the efficacy of our adversarial attack method, which notably enhances the performance of the GNN model in addressing classification issues pertaining to unbalanced fault data.

Yu Guo,Ziyi Cheng,Jundong Zhang,Bin Sun,YongKang Wang

DOI: https://doi.org/10.1186/s40537-024-01006-4

2024-01-01

Journal Of Big Data

Abstract:Mechanical equipment is a vital foundational support for promoting national economic development and is widely utilized in key sectors such as aerospace, shipping, construction machinery, energy, petrochemicals, and robotics. With the advancement of artificial intelligence and industrial intelligence, industrial big data and its intelligent analysis provide robust support for fault prediction and health management of equipment. Building on existing research, intelligent diagnostics for mechanical equipment based on deep learning have gained significant attention and application. However, the success of big data relies on comprehensive fault data, which is challenging to obtain in practical applications where continuous equipment operation is essential. Moreover, mechanical equipment often operates under varying conditions, leading to different data distributions for training and testing. This discrepancy can result in low diagnostic accuracy or even failure of deep learning methods. Deep Transfer Learning (DTL) is an emerging machine learning paradigm that not only leverages the advantages of deep learning (DL) in feature representation but also harnesses the strengths of transfer learning (TL) in knowledge transfer. Consequently, DTL techniques can make deep learning-based fault diagnosis methods more reliable, robust, and applicable, leading to extensive development and research in the field of intelligent fault diagnosis. This paper primarily introduces adversarial-based deep transfer learning (ADTL) models, which are fundamentally based on Generative Adversarial Network (GAN). We provide a detailed discussion of the main applications of ADTL and its recent developments in intelligent fault diagnosis, along with some future challenges and prospects.

Jiaxiang Hu,Zhou Liu,Jianjun Chen,Weihao Hu,Zhenyuan Zhang,Zhe Chen

DOI: https://doi.org/10.1016/j.ijepes.2022.108622

IF: 5.659

2022-01-01

International Journal of Electrical Power & Energy Systems

Abstract:To prevent serious malfunctions and reduce the impact of faults during an emergency state of a power system, protection systems are required to have disturbance and fault state identification abilities. In this study, a novel fault diagnosis framework based on deep learning with anti-disturbance ability is proposed to identify the fault state and fault type information, even under the influence of system disturbance. The framework consists of two parts: unsupervised and supervised learning. Specifically, an unsupervised deep auto-encoder (DAE) is applied for offline feature selection and data cleaning. The DAE can extract key fault features and significantly improve the fault detection accuracy. Furthermore, two supervised convolutional neural networks are used to learn key fault feature extraction online from complex operation information in power systems and assess the fault situ-ation and type. Using case studies, the proposed method was implemented and compared with existing intelli-gent methods. The results indicate that the proposed framework has a better performance in terms of fault state identification and protection malfunction prevention.