基于腐败鲁棒性的特征去噪效果分析

2023 International Technical Conference on Circuits/Systems, Computers, and Communications (ITC-CSCC) Pub Date : 2023-06-25 DOI:10.1109/ITC-CSCC58803.2023.10212895

Hyunha Hwang, Se-Hun Kim, Mincheol Cha, Min-Ho Choi, Kyujoong Lee, Hyuk-Jae Lee

{"title":"基于腐败鲁棒性的特征去噪效果分析","authors":"Hyunha Hwang, Se-Hun Kim, Mincheol Cha, Min-Ho Choi, Kyujoong Lee, Hyuk-Jae Lee","doi":"10.1109/ITC-CSCC58803.2023.10212895","DOIUrl":null,"url":null,"abstract":"Adversarial attack is a method that aims to cause incorrect predictions in a deep learning model by making slight perturbations to the input. As a result of this vulnerability, various studies have been conducted to improve adversarial robustness. However, deep learning models are also vulnerable to distribution mismatch between training data and test data. This mismatch can occur due to natural corruption in test data. Research on corruption robustness has been less explored compared to adversarial robustness. This paper analyzes the effect of feature denoising network, which is for improving adversarial robustness, in terms of corruption robustness. Experimental results show that feature denoising network can also lead to improved robustness against common corruptions.","PeriodicalId":220939,"journal":{"name":"2023 International Technical Conference on Circuits/Systems, Computers, and Communications (ITC-CSCC)","volume":"23 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2023-06-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Analysis of the Effect of Feature Denoising from the Perspective of Corruption Robustness\",\"authors\":\"Hyunha Hwang, Se-Hun Kim, Mincheol Cha, Min-Ho Choi, Kyujoong Lee, Hyuk-Jae Lee\",\"doi\":\"10.1109/ITC-CSCC58803.2023.10212895\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Adversarial attack is a method that aims to cause incorrect predictions in a deep learning model by making slight perturbations to the input. As a result of this vulnerability, various studies have been conducted to improve adversarial robustness. However, deep learning models are also vulnerable to distribution mismatch between training data and test data. This mismatch can occur due to natural corruption in test data. Research on corruption robustness has been less explored compared to adversarial robustness. This paper analyzes the effect of feature denoising network, which is for improving adversarial robustness, in terms of corruption robustness. Experimental results show that feature denoising network can also lead to improved robustness against common corruptions.\",\"PeriodicalId\":220939,\"journal\":{\"name\":\"2023 International Technical Conference on Circuits/Systems, Computers, and Communications (ITC-CSCC)\",\"volume\":\"23 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2023-06-25\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2023 International Technical Conference on Circuits/Systems, Computers, and Communications (ITC-CSCC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ITC-CSCC58803.2023.10212895\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2023 International Technical Conference on Circuits/Systems, Computers, and Communications (ITC-CSCC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ITC-CSCC58803.2023.10212895","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

对抗性攻击是一种旨在通过对输入进行轻微扰动而在深度学习模型中导致错误预测的方法。由于这种脆弱性，已经进行了各种研究来提高对抗性稳健性。然而，深度学习模型也容易受到训练数据和测试数据分布不匹配的影响。这种不匹配可能由于测试数据的自然损坏而发生。与对抗鲁棒性相比，腐败鲁棒性的研究较少。本文从损坏鲁棒性的角度分析了用于提高对抗鲁棒性的特征去噪网络的效果。实验结果表明，特征去噪网络还可以提高对常见腐败的鲁棒性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Analysis of the Effect of Feature Denoising from the Perspective of Corruption Robustness

Adversarial attack is a method that aims to cause incorrect predictions in a deep learning model by making slight perturbations to the input. As a result of this vulnerability, various studies have been conducted to improve adversarial robustness. However, deep learning models are also vulnerable to distribution mismatch between training data and test data. This mismatch can occur due to natural corruption in test data. Research on corruption robustness has been less explored compared to adversarial robustness. This paper analyzes the effect of feature denoising network, which is for improving adversarial robustness, in terms of corruption robustness. Experimental results show that feature denoising network can also lead to improved robustness against common corruptions.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2023 International Technical Conference on Circuits/Systems, Computers, and Communications (ITC-CSCC)

自引率

0.00%

发文量