Where Does the Robustness Come from?

Liao, Chang; Cheng, Yong; Fang, Chengfang; Shi, Jie

doi:10.1145/3411508.3421380

Proceedings of the 13th ACM Workshop on Artificial Intelligence and Security 2020

DOI: 10.1145/3411508.3421380

|View full text |Cite

Where Does the Robustness Come from?

Chang Liao¹,

Yong Cheng²,

Chengfang Fang³

et al.

Abstract: This paper aims to provide a thorough study on the effectiveness of the transformation-based ensemble defence for image classification and its reasons. It has been empirically shown that they can enhance the robustness against evasion attacks, while there is little analysis on the reasons. In particular, it is not clear whether the robustness improvement is a result of transformation or ensemble. In this paper, we design two adaptive attacks to better evaluate the transformation-based ensemble defence. We cond… Show more

Help me understand this report

View preprint versions

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2021

Publication Types

Select...

Article1

Relationship

Self Cite0

Independent1

Authors

Journals

Cited by 1 publication

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

A Survey on Adversarial Attack in the Age of Artificial Intelligence

Kong

Xue

Wang

et al. 2021

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

With the rapid evolution of the Internet, the application of artificial intelligence fields is more and more extensive, and the era of AI has come. At the same time, adversarial attacks in the AI field are also frequent. Therefore, the research into adversarial attack security is extremely urgent. An increasing number of researchers are working in this field. We provide a comprehensive review of the theories and methods that enable researchers to enter the field of adversarial attack. This article is according to the “Why? → What? → How?” research line for elaboration. Firstly, we explain the significance of adversarial attack. Then, we introduce the concepts, types, and hazards of adversarial attack. Finally, we review the typical attack algorithms and defense techniques in each application area. Facing the increasingly complex neural network model, this paper focuses on the fields of image, text, and malicious code and focuses on the adversarial attack classifications and methods of these three data types, so that researchers can quickly find their own type of study. At the end of this review, we also raised some discussions and open issues and compared them with other similar reviews.

show abstract

A Survey on Adversarial Attack in the Age of Artificial Intelligence

Kong

Xue

Wang

et al. 2021

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Where Does the Robustness Come from?

Cited by 1 publication

References 15 publications

A Survey on Adversarial Attack in the Age of Artificial Intelligence

A Survey on Adversarial Attack in the Age of Artificial Intelligence

Contact Info

Product

Resources

About