BriefGPT.xyz
Jun, 2021
PopSkipJump: 基于决策的概率分类器攻击
PopSkipJump: Decision-Based Attack for Probabilistic Classifiers
HTML
PDF
Carl-Johann Simon-Gabriel, Noman Ahmed Sheikh, Andreas Krause
TL;DR
提出基于概率输出的HopSkipJump攻击, 并在各种噪声模型下进行测试, 证明现有随机化防御措施对决策攻击几乎没有额外的鲁棒性提供。
Abstract
Most current
classifiers
are vulnerable to
adversarial examples
, small input perturbations that change the classification output. Many existing attack algorithms cover various settings, from white-box to black-bo
→