Stability analysis and generalization bounds of adversarial training
In adversarial machine learning, deep neural networks can fit the adversarial examples on
the training dataset but have poor generalization ability on the test set. This phenomenon is …
the training dataset but have poor generalization ability on the test set. This phenomenon is …
Enhancing adversarial robustness for deep metric learning via neural discrete adversarial training
C Li, Z Zhu, R Niu, Y Zhao - Computers & Security, 2024 - Elsevier
Due to the security concerns arising from adversarial vulnerability in deep metric learning
models, it is essential to enhance their adversarial robustness for secure neural network …
models, it is essential to enhance their adversarial robustness for secure neural network …
A Closer Look at Curriculum Adversarial Training: From an Online Perspective
L Shi, W Liu - Proceedings of the AAAI Conference on Artificial …, 2024 - ojs.aaai.org
Curriculum adversarial training empirically finds that gradually increasing the hardness of
adversarial examples can further improve the adversarial robustness of the trained model …
adversarial examples can further improve the adversarial robustness of the trained model …
Bridging the Gap: Rademacher Complexity in Robust and Standard Generalization
Abstract Training Deep Neural Networks (DNNs) with adversarial examples often results in
poor generalization to test-time adversarial data. This paper investigates this issue, known …
poor generalization to test-time adversarial data. This paper investigates this issue, known …
Uniformly Stable Algorithms for Adversarial Training and Beyond
In adversarial machine learning, neural networks suffer from a significant issue known as
robust overfitting, where the robust test accuracy decreases over epochs (Rice et al., 2020) …
robust overfitting, where the robust test accuracy decreases over epochs (Rice et al., 2020) …
Improving Adversarial Training for Multiple Perturbations through the Lens of Uniform Stability
In adversarial training (AT), most existing works focus on AT with a single type of
perturbation, such as the $\ell_\infty $ attacks. However, deep neural networks (DNNs) are …
perturbation, such as the $\ell_\infty $ attacks. However, deep neural networks (DNNs) are …