pith. sign in

arxiv: 1705.05264 · v1 · pith:LQ372L3Znew · submitted 2017-05-15 · 💻 cs.LG · cs.CR· stat.ML

Extending Defensive Distillation

Nicolas Papernot , Patrick McDaniel This is my paper
classification 💻 cs.LG cs.CRstat.ML
keywords adversarialdefensiveinputsaddressaddressingattackscarefullydefenses
0
0 comments X
read the original abstract

Machine learning is vulnerable to adversarial examples: inputs carefully modified to force misclassification. Designing defenses against such inputs remains largely an open problem. In this work, we revisit defensive distillation---which is one of the mechanisms proposed to mitigate adversarial examples---to address its limitations. We view our results not only as an effective way of addressing some of the recently discovered attacks but also as reinforcing the importance of improved training techniques.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 1 Pith paper

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. Latent Adversarial Defence with Boundary-guided Generation

    cs.LG 2019-07 unverdicted novelty 5.0

    LAD generates diverse adversarial examples in latent space by perturbing along normals to an SVM-defined decision boundary and uses them for adversarial training to improve DNN robustness.