评估神经网络的鲁棒性

Aug, 2016

Towards Evaluating the Robustness of Neural Networks

Nicholas Carlini, David Wagner

TL;DR本研究介绍了新型攻击算法，证明了防御蒸馏并不能显著提升神经网络的强度，提供了高置信度的对抗性样本用于简单的可迁移性测试，该测试可以用于破解防御蒸馏。

Abstract

We consider how to measure the robustness of a neural network against adversarial examples. We introduce three new attack algorithms, tailored to three different distance metrics, to find →