English

Adversarial Training for Gradient Descent: Analysis Through its Continuous-time Approximation

Machine Learning 2023-05-25 v2 Optimization and Control Probability
Authors: Haotian Gu , Xin Guo , Xinyu Li
View on arXiv PDF

Abstract

Adversarial training has gained great popularity as one of the most effective defenses for deep neural network and more generally for gradient-based machine learning models against adversarial perturbations on data points. This paper establishes a continuous-time approximation for the mini-max game of adversarial training. This approximation approach allows for precise and analytical comparisons between stochastic gradient descent and its adversarial training counterpart; and confirms theoretically the robustness of adversarial training from a new gradient-flow viewpoint. The analysis is then corroborated through various analytical and numerical examples.

Keywords

adversarial training adversarial examples adversarial attacks

Cite

@article{arxiv.2105.08037,
  title  = {Adversarial Training for Gradient Descent: Analysis Through its Continuous-time Approximation},
  author = {Haotian Gu and Xin Guo and Xinyu Li},
  journal= {arXiv preprint arXiv:2105.08037},
  year   = {2023}
}

Related papers

View all related →
Machine Learning · Computer Science
Gradient Adversarial Training of Neural Networks
Ayan Sinha, Zhao Chen, Vijay Badrinarayanan, Andrew Rabinovich
2018-06-22
Machine Learning · Computer Science
Adversarial Coreset Selection for Efficient Robust Training
Hadi M. Dolatabadi, Sarah Erfani, Christopher Leckie
2023-08-09
Machine Learning · Computer Science
Towards Understanding Fast Adversarial Training
Bai Li, Shiqi Wang, Suman Jana, Lawrence Carin
2020-06-08
Machine Learning · Computer Science
On Neural Network approximation of ideal adversarial attack and convergence of adversarial training
Rajdeep Haldar, Qifan Song
2023-08-01
Machine Learning · Computer Science
Recent Advances in Adversarial Training for Adversarial Robustness
Tao Bai, Jinqi Luo, Jun Zhao, Bihan Wen +1
2021-04-22
Computer Vision and Pattern Recognition · Computer Science
Reducing Adversarial Training Cost with Gradient Approximation
Huihui Gong
2023-10-11
Computer Vision and Pattern Recognition · Computer Science
The Enemy of My Enemy is My Friend: Exploring Inverse Adversaries for Improving Adversarial Training
Junhao Dong, Seyed-Mohsen Moosavi-Dezfooli, Jianhuang Lai, Xiaohua Xie
2022-11-02
Machine Learning · Computer Science
Fast Training of Deep Neural Networks Robust to Adversarial Perturbations
Justin Goodwin, Olivia Brown, Victoria Helus
2020-07-09
Machine Learning · Computer Science
Game Theory for Adversarial Attacks and Defenses
Shorya Sharma
2024-01-08
Machine Learning · Computer Science
Bridging Adversarial Robustness and Gradient Interpretability
Beomsu Kim, Junghoon Seo, Taegyun Jeon
2019-04-22
Machine Learning · Statistics
Quantifying the Preferential Direction of the Model Gradient in Adversarial Training With Projected Gradient Descent
Ricardo Bigolin Lanfredi, Joyce D. Schroeder, Tolga Tasdizen
2023-04-21
Machine Learning · Computer Science
Convergence and Margin of Adversarial Training on Separable Data
Zachary Charles, Shashank Rajput, Stephen Wright, Dimitris Papailiopoulos
2019-05-23
Machine Learning · Computer Science
Adversarial Learning with Cost-Sensitive Classes
Haojing Shen, Sihong Chen, Ran Wang, Xizhao Wang
2022-06-24
Computer Vision and Pattern Recognition · Computer Science
Attribute-Guided Adversarial Training for Robustness to Natural Perturbations
Tejas Gokhale, Rushil Anirudh, Bhavya Kailkhura, Jayaraman J. Thiagarajan +2
2021-04-09
Optimization and Control · Mathematics
Robust Deep Learning as Optimal Control: Insights and Convergence Guarantees
Jacob H. Seidman, Mahyar Fazlyab, Victor M. Preciado, George J. Pappas
2020-05-05
Machine Learning · Computer Science
Inductive Bias of Gradient Descent based Adversarial Training on Separable Data
Yan Li, Ethan X. Fang, Huan Xu, Tuo Zhao
2019-07-29
Machine Learning · Computer Science
Evaluation of Adversarial Training on Different Types of Neural Networks in Deep Learning-based IDSs
Rana Abou Khamis, Ashraf Matrawy
2020-07-10
Machine Learning · Computer Science
Efficient Two-Step Adversarial Defense for Deep Neural Networks
Ting-Jui Chang, Yukun He, Peng Li
2018-10-10
Machine Learning · Computer Science
Enhancing Adversarial Robustness via Uncertainty-Aware Distributional Adversarial Training
Junhao Dong, Xinghua Qu, Z. Jane Wang, Yew-Soon Ong
2024-11-06
Computer Vision and Pattern Recognition · Computer Science
Revisiting Min-Max Optimization Problem in Adversarial Training
Sina Hajer Ahmadi, Hassan Bahrami
2024-08-22
Machine Learning · Computer Science
Adversarial Training: embedding adversarial perturbations into the parameter space of a neural network to build a robust system
Shixian Wen, Laurent Itti
2019-10-11
Machine Learning · Computer Science
Towards Understanding the Dynamics of the First-Order Adversaries
Zhun Deng, Hangfeng He, Jiaoyang Huang, Weijie J. Su
2020-10-22
Machine Learning · Computer Science
Adaptive Modeling Against Adversarial Attacks
Zhiwen Yan, Teck Khim Ng
2021-12-24
Machine Learning · Computer Science
Domain Adversarial Training: A Game Perspective
David Acuna, Marc T Law, Guojun Zhang, Sanja Fidler
2022-02-14
Machine Learning · Computer Science
Opportunities and Challenges in Deep Learning Adversarial Robustness: A Survey
Samuel Henrique Silva, Peyman Najafirad
2020-07-07