ADef: an Iterative Algorithm to Construct Adversarial Deformations

METADATA ONLY

Author / Producer

Alaifari, Rima Alberti, Giovanni S. Gauksson, Tandri

Date

2023-05

Publication Type

Conference Paper

ETH Bibliography

yes

Citations

Altmetric
METADATA ONLY

Data

Rights / License

Abstract

While deep neural networks have proven to be a powerful tool for many recognition and classification tasks, their stability properties are still not well understood. In the past, image classifiers have been shown to be vulnerable to so-called adversarial attacks, which are created by additively perturbing the correctly classified image. In this paper, we propose the ADef algorithm to construct a different kind of adversarial attack created by iteratively applying small deformations to the image, found through a gradient descent step. We demonstrate our results on MNIST with convolutional neural networks and on ImageNet with Inception-v3 and ResNet-101.

Permanent link

Publication status

published

External links

Editor

Book title

International Conference on Learning Representations (ICLR 2019)

Journal / series

Volume

9

Pages / Article No.

6991 - 7015

Publisher

Curran

Event

7th International Conference on Learning Representations (ICLR 2019)

Edition / version

Methods

Software

Geographic location

Date collected

Date created

Subject

Adversarial examples; deformations; deep neural networks; computer vision

Organisational unit

09603 - Alaifari, Rima (ehemalig) / Alaifari, Rima (former) check_circle

Notes

Funding

Related publications and datasets

Has part:
Is new version of: https://openreview.net/forum?id=Hk4dFjR5K7Is new version of: 10.48550/arXiv.1804.07729

More

Show all metadata