SupplementaryMaterialsofRandomNoiseDefense againstQuery-BasedBlack-BoxAttacks

Feb-8-2026, 08:27:17 GMT–Neural Information Processing Systems

In Section A, we talk about the societal impacts of our work In Section B, we provide detailed experimental settings as well as further evaluation results on CIFAR-10 and ImageNet. Forreal-worldapplications,theDNNmodelaswellas the training dataset, are often hidden from users. Extensive experiments verify our theoretical analysis and showtheeffectiveness ofourdefense methods against several state-of-the-art query-based attacks. On ImageNet, [23] released the ResNet-50 model fine-tuned with Gaussian noise sampled from N(0,0.5I)andwedirectlyadoptit. The experimental results on ImageNet are shown in Figure 3 (a-d).

artificial intelligence, imagenet, machine learning, (19 more...)

Neural Information Processing Systems

Feb-8-2026, 08:27:17 GMT

Conferences PDF

Add feedback

Country:
- Asia > China > Guangdong Province > Shenzhen (0.04)

Technology:
- Information Technology > Artificial Intelligence > Machine Learning > Neural Networks (0.46)

Duplicate Docs Excel Report

Title
Supplementary Materials of Random Noise Defense against Query-Based Black-Box Attacks Zeyu Qin 1 Y anbo Fan

Similar Docs Excel Report more

Title	Similarity	Source
None found