Adaptive Randomized Smoothing: Certified Adversarial Robustness for Multi-Step Defences

Mar-27-2025, 14:44:09 GMT–Neural Information Processing Systems

We propose Adaptive Randomized Smoothing (ARS) to certify the predictions of our test-time adaptive models against adversarial examples. ARS extends the analysis of randomized smoothing using f-Differential Privacy to certify the adaptive composition of multiple steps. For the first time, our theory covers the sound adaptive composition of general and high-dimensional functions of noisy inputs.

accuracy, artificial intelligence, machine learning, (18 more...)

Neural Information Processing Systems

Mar-27-2025, 14:44:09 GMT

Conferences PDF

Add feedback

Country:
- Europe > Germany (0.14)
- North America > Canada (0.14)

Genre:
- Research Report > Experimental Study (0.93)

Industry:
- Information Technology > Security & Privacy (0.68)

Technology:
- Information Technology
  - Artificial Intelligence
    - Machine Learning > Neural Networks
      - Deep Learning (1.00)
    - Vision (0.68)
  - Data Science (0.67)
  - Sensing and Signal Processing > Image Processing (0.68)

Duplicate Docs Excel Report

Title
None found

Similar Docs Excel Report more

Title	Similarity	Source
None found