no code implementations • 4 Feb 2020 • Blerta Lindqvist, Rauf Izmailov
Our Minimax adversarial approach presents a significant shift in defense strategy for neural network classifiers.
no code implementations • 18 Nov 2019 • Rauf Izmailov, Peter Lin, Chris Mesterharm, Samyadeep Basu
We consider membership inference attacks, one of the main privacy issues in machine learning.
no code implementations • 9 Oct 2019 • Samyadeep Basu, Rauf Izmailov, Chris Mesterharm
With the increasing adoption of AI, inherent security and privacy vulnerabilities formachine learning systems are being discovered.
no code implementations • 19 Feb 2019 • Chris Mesterharm, Rauf Izmailov, Scott Alexander, Simon Tsang
In this paper, we consider batch supervised learning where an adversary is allowed to corrupt instances with arbitrarily large noise.
no code implementations • 8 Dec 2018 • Blerta Lindqvist, Shridatt Sugrim, Rauf Izmailov
For different magnitudes of perturbation in training and testing, AutoGAN can surpass the accuracy of FGSM method by up to 25\% points on samples perturbed using FGSM.
no code implementations • 31 Mar 2016 • Z. Berkay Celik, Patrick McDaniel, Rauf Izmailov, Nicolas Papernot, Ryan Sheatsley, Raquel Alvarez, Ananthram Swami
In this paper, we consider an alternate learning approach that trains models using "privileged" information--features available at training time but not at runtime--to improve the accuracy and resilience of detection systems.
no code implementations • 13 Oct 2014 • Paul Bendich, Ellen Gasparovic, John Harer, Rauf Izmailov, Linda Ness
We introduce a method called multi-scale local shape analysis, or MLSA, for extracting features that describe the local structure of points within a dataset.
no code implementations • 3 Jun 2013 • Vladimir Vapnik, Igor Braga, Rauf Izmailov
We introduce a general constructive setting of the density ratio estimation problem as a solution of a (multidimensional) integral equation.