隐匿的梯度给了虚假的安全感：绕过对抗样本的防御

Feb, 2018

Obfuscated Gradients Give a False Sense of Security: Circumventing Defenses to Adversarial Examples

Anish Athalye, Nicholas Carlini, David Wagner

TL;DR本文发现了一种称为“混淆梯度”的梯度掩码现象，该现象导致了对抗性攻击防御中的安全虚假感。通过针对这种现象的攻击技术研究，我们发现依赖于混淆梯度的防御可以被规避，因此需要更可靠的防御机制。

Abstract

We identify obfuscated gradients as a phenomenon that leads to a false sense of security in defenses against adversarial examples. While <