{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2017:KGA5AYORCDIFMFDCJFRHPLQHH7","short_pith_number":"pith:KGA5AYOR","schema_version":"1.0","canonical_sha256":"5181d061d110d0561462496277ae073fd08543129390bb3b726f57893e459365","source":{"kind":"arxiv","id":"1702.06280","version":2},"attestation_state":"computed","paper":{"title":"On the (Statistical) Detection of Adversarial Examples","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.LG","stat.ML"],"primary_cat":"cs.CR","authors_text":"Kathrin Grosse, Michael Backes, Nicolas Papernot, Patrick McDaniel, Praveen Manoharan","submitted_at":"2017-02-21T07:03:11Z","abstract_excerpt":"Machine Learning (ML) models are applied in a variety of tasks such as network intrusion detection or Malware classification. Yet, these models are vulnerable to a class of malicious inputs known as adversarial examples. These are slightly perturbed inputs that are classified incorrectly by the ML model. The mitigation of these adversarial inputs remains an open problem. As a step towards understanding adversarial examples, we show that they are not drawn from the same distribution than the original data, and can thus be detected using statistical tests. Using thus knowledge, we introduce a co"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"1702.06280","kind":"arxiv","version":2},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2017-02-21T07:03:11Z","cross_cats_sorted":["cs.LG","stat.ML"],"title_canon_sha256":"598133bdd43e681fa14f3d3df3bd04635cc43a8b11c904690c770957d4bd70eb","abstract_canon_sha256":"bb3847c0855d2fb1793dc66ec145dc49cb09286ad8ab2b1eb8d2abf3d96f7763"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-18T00:32:43.810441Z","signature_b64":"XySOsJJ42nUsY/JKammH28EIMjVDklWQ8nOmv4dUR5xRUT3zOcTlAskQSHPh8YvB+nqnSZK4CEnyunY1kxi2Cg==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"5181d061d110d0561462496277ae073fd08543129390bb3b726f57893e459365","last_reissued_at":"2026-05-18T00:32:43.809673Z","signature_status":"signed_v1","first_computed_at":"2026-05-18T00:32:43.809673Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"On the (Statistical) Detection of Adversarial Examples","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":["cs.LG","stat.ML"],"primary_cat":"cs.CR","authors_text":"Kathrin Grosse, Michael Backes, Nicolas Papernot, Patrick McDaniel, Praveen Manoharan","submitted_at":"2017-02-21T07:03:11Z","abstract_excerpt":"Machine Learning (ML) models are applied in a variety of tasks such as network intrusion detection or Malware classification. Yet, these models are vulnerable to a class of malicious inputs known as adversarial examples. These are slightly perturbed inputs that are classified incorrectly by the ML model. The mitigation of these adversarial inputs remains an open problem. As a step towards understanding adversarial examples, we show that they are not drawn from the same distribution than the original data, and can thus be detected using statistical tests. Using thus knowledge, we introduce a co"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"1702.06280","kind":"arxiv","version":2},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"1702.06280","created_at":"2026-05-18T00:32:43.809807+00:00"},{"alias_kind":"arxiv_version","alias_value":"1702.06280v2","created_at":"2026-05-18T00:32:43.809807+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.1702.06280","created_at":"2026-05-18T00:32:43.809807+00:00"},{"alias_kind":"pith_short_12","alias_value":"KGA5AYORCDIF","created_at":"2026-05-18T12:31:24.725408+00:00"},{"alias_kind":"pith_short_16","alias_value":"KGA5AYORCDIFMFDC","created_at":"2026-05-18T12:31:24.725408+00:00"},{"alias_kind":"pith_short_8","alias_value":"KGA5AYOR","created_at":"2026-05-18T12:31:24.725408+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":7,"internal_anchor_count":4,"sample":[{"citing_arxiv_id":"2406.09250","citing_title":"MirrorCheck: Efficient Adversarial Defense for Vision-Language Models","ref_index":27,"is_internal_anchor":true},{"citing_arxiv_id":"1907.05587","citing_title":"Stateful Detection of Black-Box Adversarial Attacks","ref_index":20,"is_internal_anchor":true},{"citing_arxiv_id":"2312.06423","citing_title":"MalPurifier: Enhancing Android Malware Detection with Adversarial Purification against Evasion Attacks","ref_index":42,"is_internal_anchor":true},{"citing_arxiv_id":"2402.06922","citing_title":"Whispers in the Machine: Confidentiality in Agentic Systems","ref_index":58,"is_internal_anchor":true},{"citing_arxiv_id":"2309.00614","citing_title":"Baseline Defenses for Adversarial Attacks Against Aligned Language Models","ref_index":21,"is_internal_anchor":false},{"citing_arxiv_id":"2604.02780","citing_title":"A Unified Perspective on Adversarial Membership Manipulation in Vision Models","ref_index":21,"is_internal_anchor":false},{"citing_arxiv_id":"2605.01221","citing_title":"Local Hessian Spectral Filtering for Robust Intrinsic Dimension Estimation","ref_index":295,"is_internal_anchor":false}]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7","json":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7.json","graph_json":"https://pith.science/api/pith-number/KGA5AYORCDIFMFDCJFRHPLQHH7/graph.json","events_json":"https://pith.science/api/pith-number/KGA5AYORCDIFMFDCJFRHPLQHH7/events.json","paper":"https://pith.science/paper/KGA5AYOR"},"agent_actions":{"view_html":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7","download_json":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7.json","view_paper":"https://pith.science/paper/KGA5AYOR","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=1702.06280&json=true","fetch_graph":"https://pith.science/api/pith-number/KGA5AYORCDIFMFDCJFRHPLQHH7/graph.json","fetch_events":"https://pith.science/api/pith-number/KGA5AYORCDIFMFDCJFRHPLQHH7/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7/action/timestamp_anchor","attest_storage":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7/action/storage_attestation","attest_author":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7/action/author_attestation","sign_citation":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7/action/citation_signature","submit_replication":"https://pith.science/pith/KGA5AYORCDIFMFDCJFRHPLQHH7/action/replication_record"}},"created_at":"2026-05-18T00:32:43.809807+00:00","updated_at":"2026-05-18T00:32:43.809807+00:00"}