This article was published on June 1, 2018

AI researchers developed a privacy-filter to fight facial recognition


AI researchers developed a privacy-filter to fight facial recognition

A team of researchers from the University of Toronto have developed an algorithm that protects images from facial recognition AI.

What it does: The researchers, Parham Aarabi and Avishek Bose, developed the AI to defend photos from facial recognition, but it’s not a shield — it’s actually an attack agent.

Bose, a graduate student working on the project, told EurekAlert:

The disruptive AI can ‘attack’ what the neural net for the face detection is looking for. If the detection AI is looking for the corner of the eyes, for example, it adjusts the corner of the eyes so they’re less noticeable. It creates very subtle disturbances in the photo, but to the detector they’re significant enough to fool the system.

How it works: The scientists developed a neural network that uses facial recognition to identify people in images, and then they made one to fool it. The two networks compete, learn from each other, and end up becoming a robust anti-facial-recognition system.

Basically, the algorithm distorts certain pixels within the image and, while nearly undetectable to humans, this manipulation robs facial recognition AI of its ability to accurately identify whats in the image.

The <3 of EU tech

The latest rumblings from the EU tech scene, a story from our wise ol' founder Boris, and some questionable AI art. It's free, every week, in your inbox. Sign up now!

Credit: University of Toronto

Why it matters: This won’t protect you from real-time facial recognition that captures your image in public, but it could give you some control over how much data can be gleaned from the pics you put online. In the wake of the Cambridge Analytica scandal, it’s apparent that bad actors using AI can scrape an unbelievable amount of information about an individual from databases both public and made available to advertisers.

If you wouldn’t throw trash away that has your bank account information on it without shredding it first, you may want to consider that every time you upload an image to social media you’re giving away pages worth of data.

With government surveillance efforts on the rise in China and the US, there’s never been a greater necessity for simple privacy measures that could be deployed at scale.

Get the TNW newsletter

Get the most important tech news in your inbox each week.