AdversarialFeatureDesensitization
–Neural Information Processing Systems
This is achieved through a game where we learn features that are both predictive and robust (insensitive to adversarial attacks), i.e. cannot beused todiscriminate between natural andadversarial data.
Neural Information Processing Systems
Feb-8-2026, 19:15:13 GMT
- Country:
- Asia > Middle East
- Jordan (0.04)
- North America
- Canada > Quebec
- Montreal (0.04)
- United States > New Mexico
- Bernalillo County > Albuquerque (0.04)
- Canada > Quebec
- Asia > Middle East
- Technology: