Certified Defenses against Adversarial Examples

ICLR 2018 Aditi Raghunathan • Jacob Steinhardt • Percy Liang

While neural networks have achieved high accuracy on standard image classification benchmarks, their accuracy drops to nearly zero in the presence of small adversarial perturbations to test inputs. Defenses based on regularization and adversarial training have been proposed, but often followed by new, stronger attacks that defeat these defenses. Can we somehow end this arms race?

Full paper

Tasks
Add Remove

Evaluation
Add Remove

No evaluation results yet. Help compare this paper to other papers by submitting the tasks and evaluation metrics from the paper.
Contact us on: [email protected]. Papers With Code is a free resource supported by Atlas ML.