Improved robustness to adversarial examples using Lipschitz regularization of the loss

Finlay, Chris, Oberman, Adam, Abbasi, Bilal

Oct-23-2018–arXiv.org Machine Learning

Adversarial training is an effective method for improving robustness to adversarial attacks. We show that adversarial training using the Fast Signed Gradient Method can be interpreted as a form of regularization. We implemented a more effective form of adversarial training, which in turn can be interpreted as regularization of the loss in the 2-norm, $\|\nabla_x \ell(x)\|_2$. We obtained further improvements to adversarial robustness, as well as provable robustness guarantees, by augmenting adversarial training with Lipschitz regularization.

deep learning, neural network, robustness, (20 more...)

arXiv.org Machine Learning

Oct-23-2018

arXiv.org PDF

Add feedback

Country:
- Europe (1.00)
- North America
  - Canada
    - Ontario > Toronto (0.14)
    - Quebec > Montreal (0.14)
  - United States (0.93)

Genre:
- Research Report (0.51)

Industry:
- Information Technology > Security & Privacy (0.89)

Technology:
- Information Technology
  - Artificial Intelligence > Machine Learning
    - Neural Networks > Deep Learning (0.68)
  - Security & Privacy (0.89)

Duplicate Docs Excel Report

Title
None found

Similar Docs Excel Report more

Title	Similarity	Source
None found