A useful taxonomy for adversarial robustness of Neural Networks
<p>Adversarial attacks and defenses are currently active areas of research for the deep learning community. A recent review paper divided the defense approaches into three categories; gradient masking, robust optimization, and adversarial example detection. We divide gradient masking and robus...
Saved in:
| Main Author: | |
|---|---|
| Format: | Book |
| Published: |
Trends in Computer Science and Information Technology - Peertechz Publications,
2020-08-05.
|
| Subjects: | |
| Online Access: | Connect to this object online. |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
MARC
| LEADER | 00000 am a22000003u 4500 | ||
|---|---|---|---|
| 001 | peertech__10_17352_tcsit_000017 | ||
| 042 | |a dc | ||
| 100 | 1 | 0 | |a Leslie N Smith |e author |
| 245 | 0 | 0 | |a A useful taxonomy for adversarial robustness of Neural Networks |
| 260 | |b Trends in Computer Science and Information Technology - Peertechz Publications, |c 2020-08-05. | ||
| 520 | |a <p>Adversarial attacks and defenses are currently active areas of research for the deep learning community. A recent review paper divided the defense approaches into three categories; gradient masking, robust optimization, and adversarial example detection. We divide gradient masking and robust optimization differently: (1) increasing intra-class compactness and inter-class separation of the feature vectors improves adversarial robustness, and (2) marginalization or removal of non-robust image features also improves adversarial robustness. By reframing these topics differently, we provide a fresh perspective that provides insight into the underlying factors that enable training more robust networks and can help inspire novel solutions. In addition, there are several papers in the literature of adversarial defenses that claim there is a cost for adversarial robustness, or a trade-off between robustness and accuracy but, under this proposed taxonomy, we hypothesis that this is not universal. We follow this up with several challenges to the deep learning research community that builds on the connections and insights in this paper.</p> | ||
| 540 | |a Copyright © Leslie N Smith et al. | ||
| 546 | |a en | ||
| 655 | 7 | |a Perspective Study |2 local | |
| 856 | 4 | 1 | |u https://doi.org/10.17352/tcsit.000017 |z Connect to this object online. |