In [None]:
# MSc Project Scope: Detection, Defence, and SME Accessibility

## 1. Introduction

This document defines the scope of the MSc dissertation titled:  
**Adversarial Attacks on AI-Based Biometric Authentication Systems: Detection and Defence in Practice**

The aim is to break the topic into clear, manageable components for implementation, evaluation, and documentation.

---

## 2. Research Focus

- **Primary Domain**: AI-based biometric authentication, focusing on facial recognition  
- **Security Concern**: Adversarial attacks that lead to unauthorised access or rejection  
- **Research Problem**: How can adversarial attacks be detected and mitigated in practical settings?  
- **Target Audience**: Developers and organisations, particularly small and medium-sized enterprises (SMEs), who require security but may lack specialist AI knowledge

---

## 3. Core Scope Areas

### Detection
- Lightweight techniques to detect adversarial inputs  
- Approaches such as anomaly detection and confidence-based thresholds  
- Measurement of false positive rates and identification of attack signatures

### Defence Strategies
- Defensive techniques to harden facial recognition models:
  - Adversarial training  
  - Input preprocessing (e.g., JPEG compression)  
  - Randomised transformations  
- Evaluation of model robustness, accuracy degradation, and latency impact

### SME Accessibility
- Making defences reproducible and cost-effective  
- Using open datasets such as LFW and CelebA, and accessible frameworks like PyTorch or TensorFlow  
- Producing a practical toolkit with minimal complexity  
- Clear documentation to support deployment in low-resource environments

---

## 4. Out of Scope

- Biometric modalities other than facial recognition (e.g., fingerprint, iris, voice)  
- Physical spoofing attacks involving hardware (e.g., 3D masks)  
- Legal validation of GDPR compliance, beyond high-level discussion  
- Testing with human participants or live user studies

---

## 5. Intended Deliverables

- A working FaceNet-based facial authentication prototype  
- Adversarial attack simulations (e.g., FGSM, PGD)  
- Implementations of defence mechanisms with comparative results  
- Evaluation metrics:
  - False Acceptance Rate (FAR)  
  - False Rejection Rate (FRR)  
  - Attack Success Rate (ASR)  
  - Inference latency  
- A lightweight deployment checklist or framework for use in SME contexts

---

## 6. Dissertation Sprint Structure

### Sprint 1: Topic Finalisation & Planning  
**Dates**: 5 Aug – 18 Aug 2025  
**Goal**: Confirm the research focus and break down the dissertation into manageable development sprints  
**Summary**:
- Finalised project topic: adversarial attacks on AI-based facial recognition  
- Defined the scope around detection, defence strategies, and SME accessibility  
- Outlined an agile-inspired sprint plan combining literature, experimentation, and development

### Sprint 2: Literature Review Setup  
**Dates**: 19 Aug – 1 Sep 2025  
**Goal**: Establish the foundation for understanding adversarial threats and biometric security  
**Summary**:
- Compiled core academic sources  
- Created a structured outline  
- Began managing references using Zotero

### Sprint 3: Literature Review Writing  
**Dates**: 2 Sep – 15 Sep 2025  
**Goal**: Write a complete, critical literature review (~2500 words)  
**Summary**:
- Drafted literature review  
- Identified research gap  
- Refined citations and bibliography

### Sprint 4: Research Design & Proposal Submission  
**Dates**: 16 Sep – 22 Sep 2025  
**Goal**: Finalise methodology and submit ethics + proposal  
**Summary**:
- Defined SE + Analytical methodology  
- Submitted via Moodle

### Sprint 5: System Setup & Dataset Preparation  
**Dates**: 23 Sep – 6 Oct 2025  
**Goal**: Prepare datasets and baseline model  
**Summary**:
- Downloaded LFW and CelebA  
- Set up FaceNet or ResNet  
- Verified environment

### Sprint 6: Adversarial Attack Simulation  
**Dates**: 7 Oct – 20 Oct 2025  
**Goal**: Implement and test FGSM and PGD attacks  
**Summary**:
- Developed attacks  
- Visualised perturbed vs clean samples

### Sprint 7: Defence Strategies  
**Dates**: 21 Oct – 3 Nov 2025  
**Goal**: Apply and test defences  
**Summary**:
- Implemented JPEG, blur, and adversarial training  
- Compared results

### Sprint 8: Evaluation & Metrics  
**Dates**: 4 Nov – 17 Nov 2025  
**Goal**: Measure usability-security trade-offs  
**Summary**:
- Benchmarked FAR, FRR, ASR, latency  
- Charted pre/post defence performance

### Sprint 9: Dissertation Write-up & Artefacts  
**Dates**: 18 Nov 2025 – 5 Jan 2026  
**Goal**: Write remaining chapters, document artefacts  
**Summary**:
- Wrote Evaluation, Discussion, Conclusion  
- Finalised repo and checklist

### Sprint 10: Presentation & Final Submission  
**Dates**: 6 Jan – 23 Feb 2026  
**Goal**: Submit dissertation and present project  
**Summary**:
- Submitted final report  
- Created and delivered presentation

---

## 7. Notes and Next Steps

- Await supervisor feedback on this scope  
- Begin initial implementation following approval  
- Continue with sprint-based iteration across literature, dev, and analysis  
- Maintain focus on reproducible, lightweight tooling for secure software engineering in practice
