no code implementations • CVPR 2022 • Linjun Zhou, Peng Cui, Yinan Jiang, Shiqiang Yang
In this paper, we propose a novel setting of transferable black-box attack: attackers may use external information from a pre-trained model with available network parameters, however, different from previous studies, no additional training data is permitted to further change or tune the pre-trained model.