Adversarial Training Generalizes Data-dependent Spectral Norm Regularization

Roth, Kevin, Kilcher, Yannic, Hofmann, Thomas

Jun-17-2019–arXiv.org Machine Learning

We establish a theoretical link between adversarial training and operator norm regularization for deep neural networks. Specifically, we show that adversarial training is a data-dependent generalization of spectral norm regularization. This intriguing connection provides fundamental insights into the origin of adversarial vulnerability and hints at novel ways to robustify and defend against adversarial attacks. We provide extensive empirical evidence to support our theoretical results.

artificial intelligence, arxiv preprint arxiv, machine learning, (14 more...)

arXiv.org Machine Learning

Jun-17-2019

arXiv.org PDF

Add feedback

Country:
- Europe
  - Switzerland > Zürich
    - Zürich (0.04)
  - United Kingdom > England
    - Cambridgeshire > Cambridge (0.04)
- North America > Canada
  - Ontario > Toronto (0.04)

Genre:
- Research Report (0.64)

Industry:
- Government > Military (0.35)
- Information Technology > Security & Privacy (0.49)

Technology:
- Information Technology > Artificial Intelligence > Machine Learning
  - Neural Networks > Deep Learning (0.90)
  - Statistical Learning (1.00)

Duplicate Docs Excel Report

Title
None found

Similar Docs Excel Report more

Title	Similarity	Source
None found