Search Results for author:
Found 12 papers, 4 papers with code
Accelerating Certified Robustness Training via Knowledge Transfer
Training deep neural network classifiers that are certifiably robust against adversarial attacks is critical to ensuring the security and reliability of AI-controlled systems.
Ares: A System-Oriented Wargame Framework for Adversarial ML
Since the discovery of adversarial attacks against machine learning models nearly a decade ago, research on adversarial machine learning has rapidly evolved into an eternal war between defenders, who seek to increase the robustness of ML models against adversarial attacks, and adversaries, who seek to develop better attacks capable of weakening or defeating these defenses.
Transferring Adversarial Robustness Through Robust Representation Matching
On CIFAR-10, RRM trains a robust model $\sim 1. 8\times$ faster than the state-of-the-art.
Can Attention Masks Improve Adversarial Robustness?
Focusing on the observation that discrete pixelization in MNIST makes the background completely black and foreground completely white, we hypothesize that the important property for increasing robustness is the elimination of image background using attention masks before classifying an object.
Towards Model-Agnostic Adversarial Defenses using Adversarially Trained Autoencoders
Numerous techniques have been proposed to harden machine learning algorithms and mitigate the effect of adversarial attacks.
Robust Classification using Robust Feature Augmentation
Existing deep neural networks, say for image classification, have been shown to be vulnerable to adversarial images that can cause a DNN misclassification, without any perceptible change to an image.
Physical Adversarial Examples for Object Detectors
In this work, we extend physical attacks to more challenging object detection models, a broader class of deep learning algorithms widely used to detect and label multiple objects within a scene.
Robust Physical-World Attacks on Deep Learning Visual Classification
Recent studies show that the state-of-the-art deep neural networks (DNNs) are vulnerable to adversarial examples, resulting from small-magnitude perturbations added to the input.
Tyche: Risk-Based Permissions for Smart Home Platforms
When using risk-based permissions, device operations are grouped into units of similar risk, and users grant apps access to devices at that risk-based granularity.
Cryptography and Security
Note on Attacking Object Detectors with Adversarial Stickers
Given the fact that state-of-the-art objection detection algorithms are harder to be fooled by the same set of adversarial examples, here we show that these detectors can also be attacked by physical adversarial examples.
Robust Physical-World Attacks on Deep Learning Models
We propose a general attack algorithm, Robust Physical Perturbations (RP2), to generate robust visual adversarial perturbations under different physical conditions.
Internet of Things Security Research: A Rehash of Old Ideas or New Intellectual Challenges?
The Internet of Things (IoT) is a new computing paradigm that spans wearable devices, homes, hospitals, cities, transportation, and critical infrastructure.
Cryptography and Security
