Are Deep Models Robust against Real Distortions? A Case Study on Document Image Classification

Saifullah, Saifullah; Siddiqui, Shoaib Ahmed; Agne, Stefan; Dengel, Andreas; Ahmed, Sheraz

doi:10.20944/preprints202202.0058.v2

Cited by 4 publications

(12 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…[35] recently introduced DocXClassifier, a state-of-the-art transformer-inspired CNN that not only attains the highest performance in image-based classification but also possesses the property of being inherently explainable. Recent works [48,49] have also explored the use of Vision Transformers (ViTs) [50] for the document image classification task but have found it challenging to surpass CNNs using basic training approaches, even on sufficiently large datasets. However, a recent study [51] has shown that extensive pretraining enables ViTs to achieve performance levels comparable to those of CNNs but at the cost of additional training and increased complexity.…”

Section: Document Image Classificationmentioning

confidence: 99%

Towards Privacy Preserved Document Image Classification - A Comprehensive Benchmark

Saifullah,

Mercier,

Agne

et al. 2023

Preprint

Self Cite

View full text Add to dashboard Cite

As data-driven AI systems become increasingly integrated into industry, concerns have recently arisen regarding potential privacy breaches and the inadvertent leakage of sensitive user data through the exploitation of these systems. In this paper, we explore the intersection of data privacy and AI-powered document analysis systems, presenting a comprehensive benchmark of well-known privacy-preserving methods for the task of document image classification. In particular, we investigate four different privacy methods---Differential Privacy (DP), Federated Learning (FL), Differentially Private Federated Learning (DP-FL), and Secure Multi-Party Computation (SMPC)---on two well-known document benchmark datasets, namely RVL-CDIP and Tobacco3482. Furthermore, we investigate the performance of each method under a variety of configurations for thorough benchmarking. Finally, the privacy strength of each approach is assessed by subjecting the private models to well-known membership inference attacks. Our results demonstrate that, with sufficient tuning of hyperparameters, Differential Privacy (DP) can achieve reasonable performance on the task of document image classification while also ensuring rigorous privacy constraints, both in standalone and federated learning setups. On the other hand, while FL-based approaches present less implementation complexity and incur little to no loss in performance on the task, they do not offer sufficient protection against privacy attacks. By rigorously benchmarking various privacy approaches, our study paves the way for integrating deep document classification models into industrial pipelines while meeting regulatory and ethical standards, including GDPR and the AI Act 2022.

show abstract

Section: Document Image Classificationmentioning

confidence: 99%

Towards Privacy Preserved Document Image Classification - A Comprehensive Benchmark

Saifullah,

Mercier,

Agne

et al. 2023

Preprint

Self Cite

View full text Add to dashboard Cite

show abstract

“…Subsequent research has extensively used these datasets to evaluate and improve the robustness of deep learning models using various strategies [30,34]. Taking inspiration from this, Saifullah et al (2022) [11] recently introduced two robustness benchmark datasets, namely RVL-CDIP-D and Tobacco3482-D, designed for the document domain. These datasets were generated by applying 21 different types of novel distortions to generate out-of-distribution counterparts for the RVL-CDIP [17] and Tobacco3482 document datasets, respectively.…”

Section: Model Robustnessmentioning

confidence: 99%

“…In this section, we present a quantitative evaluation of the robustness of our proposed DocXClassifier models using the two benchmark datasets, RVL-CDIP-D and Tobacco3482-D [11], as discussed in Sec. 4.1.…”

Section: Evaluation Of Model Robustnessmentioning

confidence: 99%

“…Recent studies have shown that DL-based systems perform poorly when faced with minor distribution shifts in the data [9,15,16], even when trained with a number of data augmentations [10]. Such distribution shifts are commonly occurring in realworld scenarios [10], especially in the document domain [11,17], where documents are often corrupted with novel distortions at test time, such as the addition of noise, blur, ink-bleed, or stain marks [11,18]. One straightforward example is mobile-captured documents, which are commonly used by the end users but may end up with transformations or noise due to varying lighting conditions [19].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

DocXClassifier: Towards a Robust and Interpretable Deep Neural Network for Document Image Classification

Saifullah,

Agne,

Dengel

et al. 2023

Preprint

Self Cite

View full text Add to dashboard Cite

Model interpretability and robustness are becoming increasingly critical today for the safe and practical deployment of deep learning (DL) models in industrial settings. As DL-backed automated document processing systems become increasingly common in business workflows, there is a pressing need today to enhance interpretability and robustness for the task of document image classification, an integral component of such systems. Surprisingly, while much research has been devoted to improving the performance of deep models for this task, little attention has been given to their interpretability and robustness. In this paper, we aim to improve upon both aspects and introduce DocXClassifier, an inherently interpretable deep document classifier that not only achieves significant performance improvements over existing approaches in image-based document classification, but also holds the capability to simultaneously generate feature importance maps while making its predictions. Our approach attains state-of-the-art performance in image-based classification on two popular document datasets, RVL-CDIP and Tobacco3482, with top-1 classification accuracies of 94.17% and 95.57%, respectively. Additionally, it sets a new record for the highest image-based classification accuracy on Tobacco3482 without transfer learning from RVL-CDIP, at 90.14%. In addition, our proposed training strategy demonstrates superior robustness compared to existing approaches, significantly outperforming them on 19 out of 21 different types of novel data distortions, while achieving comparable results on the remaining two. By combining robustness with interpretability, DocXClassifier presents a promising step towards the practical deployment of DL models for document classification tasks.

show abstract

“…As large volumes of documents are produced on a daily basis, there is an urgent need today to automate the processing of these documents to facilitate tasks such as search, retrieval, and information extraction. However, automated processing of documents can be particularly challenging for a number of reasons, including high levels of data complexity [1], large inter-class similarity and intra-class variance [2], and corruption of scanned document data with various types of distortions [3].…”

Section: Introductionmentioning

confidence: 99%

Analyzing the Potential of Active Learning for Document Image Classification

Saifullah

Agne

Dengel

et al. 2022

Preprint

Self Cite

View full text Add to dashboard Cite

Deep learning has been extensively researched in the field of document analysis and has shown excellent performance across a wide range of document-related tasks. As a result, a great deal of emphasis is now being placed on its practical deployment and integration into modern industrial document processing pipelines. It is well-known, however, that deep learning models are data-hungry and often require huge volumes of annotated data in order to achieve competitive performances. And since data annotation is a costly and labor-intensive process, it remains one of the major hurdles to their practical deployment. This study investigates the possibility of using active learning to reduce the costs of data annotation in the context of Document Image Classification, which is one of the core components of modern document processing pipelines. The results of this study demonstrate that by utilizing active learning (AL), deep document classification models can achieve competitive performances to the models trained on fully annotated datasets, and in some cases, even surpass them by annotating only 15%-40% of the total training dataset. Furthermore, this study demonstrates that modern AL strategies significantly outperform random querying, and in many cases achieve comparable performance to the models trained on fully annotated datasets even in the presence of practical deployment issues such as data imbalance, and annotation noise, and thus, offer tremendous benefits in real-world deployment of deep document classification models. The code to reproduce our experiments is publicly available at https://github.com/saifullah3396/doc_al.

show abstract

Are Deep Models Robust against Real Distortions? A Case Study on Document Image Classification

Cited by 4 publications

References 24 publications

Towards Privacy Preserved Document Image Classification - A Comprehensive Benchmark

Towards Privacy Preserved Document Image Classification - A Comprehensive Benchmark

DocXClassifier: Towards a Robust and Interpretable Deep Neural Network for Document Image Classification

Analyzing the Potential of Active Learning for Document Image Classification

Contact Info

Product

Resources

About