{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2017:JUHND5XE5BKYUOKMLMLAF3HOBT","short_pith_number":"pith:JUHND5XE","schema_version":"1.0","canonical_sha256":"4d0ed1f6e4e8558a394c5b1602ecee0cc2321fe441e624ca07bfd4f879e6fbcb","source":{"kind":"arxiv","id":"1703.00410","version":3},"attestation_state":"computed","paper":{"title":"Detecting Adversarial Samples from Artifacts","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.LG"],"primary_cat":"stat.ML","authors_text":"Andrew B. Gardner, Reuben Feinman, Ryan R. Curtin, Saurabh Shintre","submitted_at":"2017-03-01T17:43:10Z","abstract_excerpt":"Deep neural networks (DNNs) are powerful nonlinear architectures that are known to be robust to random perturbations of the input. However, these models are vulnerable to adversarial perturbations--small input changes crafted explicitly to fool the model. In this paper, we ask whether a DNN can distinguish adversarial samples from their normal and noisy counterparts. We investigate model confidence on adversarial samples by looking at Bayesian uncertainty estimates, available in dropout neural networks, and by performing density estimation in the subspace of deep features learned by the model."},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"1703.00410","kind":"arxiv","version":3},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"stat.ML","submitted_at":"2017-03-01T17:43:10Z","cross_cats_sorted":["cs.LG"],"title_canon_sha256":"db6437cb7ca7ef6b6f559f54cda508bff4e67abf68e04629928f933274e16c77","abstract_canon_sha256":"2dcecc4e2ea2a83a5ad31e6d381a1d992868357818d2a97c380bee37e51523d8"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:30:28.457975Z","signature_b64":"ANBHqXOqwDb4ITfaXxYWkVXtd08/e/jpuredtlTJxAhUtyoiza6bAYUBwvNN4vrX1vhDVrkPyxtDZPyOJ0WpBA==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"4d0ed1f6e4e8558a394c5b1602ecee0cc2321fe441e624ca07bfd4f879e6fbcb","last_reissued_at":"2026-05-18T00:30:28.457541Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:30:28.457541Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"Detecting Adversarial Samples from Artifacts","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.LG"],"primary_cat":"stat.ML","authors_text":"Andrew B. Gardner, Reuben Feinman, Ryan R. Curtin, Saurabh Shintre","submitted_at":"2017-03-01T17:43:10Z","abstract_excerpt":"Deep neural networks (DNNs) are powerful nonlinear architectures that are known to be robust to random perturbations of the input. However, these models are vulnerable to adversarial perturbations--small input changes crafted explicitly to fool the model. In this paper, we ask whether a DNN can distinguish adversarial samples from their normal and noisy counterparts. We investigate model confidence on adversarial samples by looking at Bayesian uncertainty estimates, available in dropout neural networks, and by performing density estimation in the subspace of deep features learned by the model."},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1703.00410","kind":"arxiv","version":3},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"1703.00410","created_at":"2026-05-18T00:30:28.457602+00:00"},{"alias_kind":"arxiv_version","alias_value":"1703.00410v3","created_at":"2026-05-18T00:30:28.457602+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1703.00410","created_at":"2026-05-18T00:30:28.457602+00:00"},{"alias_kind":"pith_short_12","alias_value":"JUHND5XE5BKY","created_at":"2026-05-18T12:31:24.725408+00:00"},{"alias_kind":"pith_short_16","alias_value":"JUHND5XE5BKYUOKM","created_at":"2026-05-18T12:31:24.725408+00:00"},{"alias_kind":"pith_short_8","alias_value":"JUHND5XE","created_at":"2026-05-18T12:31:24.725408+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":3,"internal_anchor_count":3,"sample":[{"citing_arxiv_id":"2406.09250","citing_title":"MirrorCheck: Efficient Adversarial Defense for Vision-Language Models","ref_index":24,"is_internal_anchor":true},{"citing_arxiv_id":"1907.05587","citing_title":"Stateful Detection of Black-Box Adversarial Attacks","ref_index":15,"is_internal_anchor":true},{"citing_arxiv_id":"2412.14738","citing_title":"Spectrally unstable nodes drive reliability failures in graph learning","ref_index":14,"is_internal_anchor":true}]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT","json":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT.json","graph_json":"https://pith.science/api/pith-number/JUHND5XE5BKYUOKMLMLAF3HOBT/graph.json","events_json":"https://pith.science/api/pith-number/JUHND5XE5BKYUOKMLMLAF3HOBT/events.json","paper":"https://pith.science/paper/JUHND5XE"},"agent_actions":{"view_html":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT","download_json":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT.json","view_paper":"https://pith.science/paper/JUHND5XE","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=1703.00410&json=true","fetch_graph":"https://pith.science/api/pith-number/JUHND5XE5BKYUOKMLMLAF3HOBT/graph.json","fetch_events":"https://pith.science/api/pith-number/JUHND5XE5BKYUOKMLMLAF3HOBT/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT/action/timestamp_anchor","attest_storage":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT/action/storage_attestation","attest_author":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT/action/author_attestation","sign_citation":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT/action/citation_signature","submit_replication":"https://pith.science/pith/JUHND5XE5BKYUOKMLMLAF3HOBT/action/replication_record"}},"created_at":"2026-05-18T00:30:28.457602+00:00","updated_at":"2026-05-18T00:30:28.457602+00:00"}