English

Adversarial Examples from Cryptographic Pseudo-Random Generators

Machine Learning 2018-11-16 v1 Computational Complexity Cryptography and Security Machine Learning
Authors: Sébastien Bubeck , Yin Tat Lee , Eric Price , Ilya Razenshteyn
View on arXiv PDF

Abstract

In our recent work (Bubeck, Price, Razenshteyn, arXiv:1805.10204) we argued that adversarial examples in machine learning might be due to an inherent computational hardness of the problem. More precisely, we constructed a binary classification task for which (i) a robust classifier exists; yet no non-trivial accuracy can be obtained with an efficient algorithm in (ii) the statistical query model. In the present paper we significantly strengthen both (i) and (ii): we now construct a task which admits (i') a maximally robust classifier (that is it can tolerate perturbations of size comparable to the size of the examples themselves); and moreover we prove computational hardness of learning this task under (ii') a standard cryptographic assumption.

Keywords

adversarial examples adversarial training adversarial robustness

Cite

@article{arxiv.1811.06418,
  title  = {Adversarial Examples from Cryptographic Pseudo-Random Generators},
  author = {Sébastien Bubeck and Yin Tat Lee and Eric Price and Ilya Razenshteyn},
  journal= {arXiv preprint arXiv:1811.06418},
  year   = {2018}
}

Comments

4 pages, no figures

Related papers

View all related →
Machine Learning · Statistics
Adversarial examples from computational constraints
Sébastien Bubeck, Eric Price, Ilya Razenshteyn
2018-05-28
Machine Learning · Computer Science
Adversarially Robust Learning Could Leverage Computational Hardness
Sanjam Garg, Somesh Jha, Saeed Mahloujifar, Mohammad Mahmoody
2019-12-20
Machine Learning · Computer Science
Theoretical Foundations of Adversarially Robust Learning
Omar Montasser
2023-06-14
Cryptography and Security · Computer Science
Adversarial Examples and Metrics
Nico Döttling, Kathrin Grosse, Michael Backes, Ian Molloy
2020-07-16
Computer Vision and Pattern Recognition · Computer Science
Are Accuracy and Robustness Correlated?
Andras Rozsa, Manuel Günther, Terrance E. Boult
2017-08-08
Machine Learning · Computer Science
Adversarial Examples Might be Avoidable: The Role of Data Concentration in Adversarial Robustness
Ambar Pal, Jeremias Sulam, René Vidal
2024-05-28
Machine Learning · Computer Science
Detecting Adversarial Examples Is (Nearly) As Hard As Classifying Them
Florian Tramèr
2022-06-17
Machine Learning · Statistics
Adversarial Examples Are Not Bugs, They Are Features
Andrew Ilyas, Shibani Santurkar, Dimitris Tsipras, Logan Engstrom +2
2019-08-13
Machine Learning · Statistics
Understanding and Quantifying Adversarial Examples Existence in Linear Classification
Xupeng Shi, A. Adam Ding
2019-10-29
Machine Learning · Computer Science
A Theoretical Framework for Robustness of (Deep) Classifiers against Adversarial Examples
Beilun Wang, Ji Gao, Yanjun Qi
2017-09-28
Machine Learning · Computer Science
Adversarial Examples Are a Natural Consequence of Test Error in Noise
Nic Ford, Justin Gilmer, Nicolas Carlini, Dogus Cubuk
2019-01-31
Machine Learning · Computer Science
Are adversarial examples inevitable?
Ali Shafahi, W. Ronny Huang, Christoph Studer, Soheil Feizi +1
2020-02-05
Machine Learning · Computer Science
When Should You Defend Your Classifier -- A Game-theoretical Analysis of Countermeasures against Adversarial Examples
Maximilian Samsinger, Florian Merkle, Pascal Schöttle, Tomas Pevny
2021-09-28
Computer Vision and Pattern Recognition · Computer Science
Adversarial Examples on Object Recognition: A Comprehensive Survey
Alex Serban, Erik Poll, Joost Visser
2020-09-04
Machine Learning · Computer Science
Learning with a Strong Adversary
Ruitong Huang, Bing Xu, Dale Schuurmans, Csaba Szepesvari
2016-01-19
Machine Learning · Computer Science
Towards Imperceptible and Robust Adversarial Example Attacks against Neural Networks
Bo Luo, Yannan Liu, Lingxiao Wei, Qiang Xu
2018-01-16
Machine Learning · Computer Science
On the Effect of Adversarial Training Against Invariance-based Adversarial Examples
Roland Rauter, Martin Nocker, Florian Merkle, Pascal Schöttle
2023-09-19
Computation and Language · Computer Science
A Constraint-Enforcing Reward for Adversarial Attacks on Text Classifiers
Tom Roth, Inigo Jauregi Unanue, Alsharif Abuadbba, Massimo Piccardi
2024-05-21
Machine Learning · Statistics
Adversarial Robustness Guarantees for Random Deep Neural Networks
Giacomo De Palma, Bobak T. Kiani, Seth Lloyd
2021-07-23
Computer Vision and Pattern Recognition · Computer Science
Adversarial Examples - A Complete Characterisation of the Phenomenon
Alexandru Constantin Serban, Erik Poll, Joost Visser
2019-02-19
Machine Learning · Statistics
Towards Deep Learning Models Resistant to Adversarial Attacks
Aleksander Madry, Aleksandar Makelov, Ludwig Schmidt, Dimitris Tsipras +1
2019-09-06
Machine Learning · Computer Science
Adversarial Robustness: What fools you makes you stronger
Grzegorz Głuch, Rüdiger Urbanke
2021-02-19
Cryptography and Security · Computer Science
A survey on practical adversarial examples for malware classifiers
Daniel Park, Bülent Yener
2020-11-12
Quantum Physics · Physics
Quantum Adversarial Machine Learning
Sirui Lu, Lu-Ming Duan, Dong-Ling Deng
2020-08-11
Machine Learning · Computer Science
Verifying the Causes of Adversarial Examples
Honglin Li, Yifei Fan, Frieder Ganz, Anthony Yezzi +1
2020-10-20