Wyszukiwanie zaawansowane ?

Obiekt

Developing Hessian-free second-order adversarial examples for adversarial training
Pobierz

Tytuł: Developing Hessian-free second-order adversarial examples for adversarial training

Creator:

Qian, Yaguan ; Zhang, Liangjian ; Wang, Yugi ; Ji, Boyuan ; Yao, Tengteng ; Wang, Bin

Date:

2024

Resource Type:

artykuł

Contributor:

Korbicz, Józef (1951- ) - red. ; Uciński, Dariusz - red.

Group publication title:

AMCS, volume 34 (2024)

Abstract:

Recent studies show that deep neural networks (DNNs) are extremely vulnerable to elaborately designed adversarial examples. Adversarial training, which uses adversarial examples as training data, has been proven to be one of the most effective methods of defense against adversarial attacks. However, most existing adversarial training methods use adversarial examples relying on first-order gradients, which perform poorly against second-order adversarial attacks and make it difficult to further improve the robustness of the model. ; In contrast to first-order gradients, second-order gradients provide a more accurate approximation of the loss landscape relative to natural examples. Therefore, our work focuses on constructing second-order adversarial examples and utilizing them for training DNNs. However, second-order optimization involves computing the Hessian inverse, which typically consumes considerable time. To address this issue, we propose an approximation method that transforms the problem into optimization within the Krylov subspace. ; Compared with the Euclidean space, the Krylov subspace method typically does not require storing the entire matrix. It only needs to store vectors and intermediate results, avoiding explicitly calculating the complete Hessian matrix. We approximate the adversarial direction by a linear combination of Hessian-vector products in the Krylov subspace to reduce the computation cost. Because of the non-symmetrical Hessian matrix, we use the generalized minimum residual to search for an approximate polynomial solution of the matrix. ; Our method efficiently reduces computational complexity and accelerates the training process. Extensive experiments conducted on the MNIST, CIFAR-10, and ImageNet-100 datasets demonstrate that our adversarial learning using second-order adversarial samples outperforms other first-order methods, leading to improved model robustness against various attacks.

Publisher:

Zielona Góra: Uniwersytet Zielonogórski

Resource Identifier:

oai:zbc.uz.zgora.pl:87141

DOI:

10.61822/amcs-2024-0030

Pages:

425-438

Source:

AMCS, volume 34, number 3 (2024) ; kliknij tutaj, żeby przejść

Language:

eng

License CC BY 4.0:

kliknij tutaj, żeby przejść

Rights:

Biblioteka Uniwersytetu Zielonogórskiego

Temat i słowa kluczowe:

adversarial examples adversarial machine learning Krylov subspace deep neural networks

Kolekcje, do których przypisany jest obiekt:

Data ostatniej modyfikacji:

5 sie 2025

Data dodania obiektu:

5 sie 2025

Liczba wyświetleń treści obiektu:

36

Wszystkie dostępne wersje tego obiektu:

https://zbc.uz.zgora.pl/repozytorium/publication/101873

Wyświetl opis w formacie RDF:

RDF

Wyświetl opis w formacie OAI-PMH:

OAI-PMH

Nazwa wydania Data
Developing Hessian-free second-order adversarial examples for adversarial training 5 sie 2025

Obiekty Podobne

AMCS, volume 34 (2024)
AMCS, volume 34 (2024)
A Gaussian-based WGAN-GP oversampling approach for solving the class imbalance problem

Zhou, Qian Sun, Bo Korbicz, Józef (1951- ) - red. Uciński, Dariusz - red.

2024
artykuł
AMCS, volume 31 (2021)
AMCS, volume 31 (2021)
A hybrid two-stage SqueezeNet and support vector machine system for Parkinson`s disease detection based on handwritten spiral patterns

Bernardo, Lucas Salvador Damaševičius, Robertas Albuquerque, Victor Hugo C. de Maskeliunas, Rytis Kusy, Maciej - ed. Scherer, Rafał - ed. Krzyżak, Adam - ed.

2021
artykuł
AMCS, volume 35 (2025)
AMCS, volume 35 (2025)
Vanilla convolutional neural network is all you need for online and offline signature verification

Yilmaz, Mustafa Berkay Öztürk, Kagan Korbicz, Józef (1951- ) - red. Uciński, Dariusz - red.

2025
artykuł
AMCS, volume 28 (2018)
AMCS, volume 28 (2018)
Impact of low resolution on image recognition with deep neural networks: An experimental study

Koziarski, Michał Cyganek, Bogusław Korbicz, Józef (1951- ) - red. Uciński, Dariusz - red.

2018
artykuł
AMCS, volume 32 (2022)
AMCS, volume 32 (2022)
A hybrid control strategy for a dynamic scheduling problem in transit networks

Liu, Zhongshan Yu, Bin Zhang, Li Wang, Wensi Yao, Baozhen - ed. Wang, Shuaian - ed. Asian, Sobhan - ed.

2022
artykuł
Więcej
×

Cytowanie

Styl cytowania:

Dane kontaktowe

Adres

Biblioteka Uniwersytetu Zielonogórskiego
al. Wojska Polskiego 71
65-762 Zielona Góra

Telefon

(+48) 68 328 21 55

E-Mail

repozytorium@uz.zgora.pl

Odwiedź nas!

Ta strona wykorzystuje pliki 'cookies'. Więcej informacji