BriefGPT.xyz
Sep, 2018
防御性随机失活用于加固对抗攻击下的深度神经网络
Defensive Dropout for Hardening Deep Neural Networks under Adversarial Attacks
HTML
PDF
Siyue Wang, Xiao Wang, Pu Zhao, Wujie Wen, David Kaeli...
TL;DR
采用防御性抛弃策略来提高神经网络模型的抵御对抗攻击能力,优化测试抛弃率,并通过攻击方与防御方的博弈过程来确定最优策略。相较于随机激活剪枝等其他防御方法,防御性抛弃在MNIST数据集上的攻击成功率可以由100%降至13.89%。
Abstract
deep neural networks
(DNNs) are known vulnerable to
adversarial attacks
. That is, adversarial examples, obtained by adding delicately crafted distortions onto original legal inputs, can mislead a DNN to classify
→