English

Detecting adversarial attacks on random samples

Probability 2024-10-28 v2
Authors: Gleb Smirnov
View on arXiv PDF

Abstract

This paper studies the problem of detecting adversarial perturbations in a sequence of observations. Given a data sample X1,,XnX_1, \ldots, X_n drawn from a standard normal distribution, an adversary, after observing the sample, can perturb each observation by a fixed magnitude or leave it unchanged. We explore the relationship between the perturbation magnitude, the sparsity of the perturbation, and the detectability of the adversary's actions, establishing precise thresholds for when detection becomes impossible.

Keywords

signal detection statistical inference perturbation theory

Cite

@article{arxiv.2408.06166,
  title  = {Detecting adversarial attacks on random samples},
  author = {Gleb Smirnov},
  journal= {arXiv preprint arXiv:2408.06166},
  year   = {2024}
}

Comments

title changed; introduction expanded; new results about spherical attacks

Related papers

View all related →
Machine Learning · Computer Science
Identifying Adversarially Attackable and Robust Samples
Vyas Raina, Mark Gales
2023-06-27
Computer Vision and Pattern Recognition · Computer Science
Adversarial Examples on Object Recognition: A Comprehensive Survey
Alex Serban, Erik Poll, Joost Visser
2020-09-04
Machine Learning · Computer Science
How many perturbations break this model? Evaluating robustness beyond adversarial accuracy
Raphael Olivier, Bhiksha Raj
2023-08-14
Computer Vision and Pattern Recognition · Computer Science
Can the state of relevant neurons in a deep neural networks serve as indicators for detecting adversarial attacks?
Roger Granda, Tinne Tuytelaars, Jose Oramas
2020-11-02
Machine Learning · Computer Science
Detecting Adversarial Perturbations with Saliency
Chiliang Zhang, Zhimou Yang, Zuochang Ye
2018-03-26
Machine Learning · Computer Science
How adversarial attacks can disrupt seemingly stable accurate classifiers
Oliver J. Sutton, Qinghua Zhou, Ivan Y. Tyukin, Alexander N. Gorban +2
2024-09-13
Computer Vision and Pattern Recognition · Computer Science
Attack Agnostic Detection of Adversarial Examples via Random Subspace Analysis
Nathan Drenkow, Neil Fendley, Philippe Burlina
2021-11-04
Machine Learning · Statistics
On Detecting Adversarial Perturbations
Jan Hendrik Metzen, Tim Genewein, Volker Fischer, Bastian Bischoff
2017-02-22
Machine Learning · Computer Science
Adversarial Sample Detection for Deep Neural Network through Model Mutation Testing
Jingyi Wang, Guoliang Dong, Jun Sun, Xinyu Wang +1
2019-11-22
Computation and Language · Computer Science
On the Universal Adversarial Perturbations for Efficient Data-free Adversarial Detection
Songyang Gao, Shihan Dou, Qi Zhang, Xuanjing Huang +2
2023-06-29
Machine Learning · Computer Science
How Worst-Case Are Adversarial Attacks? Linking Adversarial and Perturbation Robustness
Giulio Rossolini
2026-01-27
Machine Learning · Computer Science
Detecting Adversarial Samples for Deep Neural Networks through Mutation Testing
Jingyi Wang, Jun Sun, Peixin Zhang, Xinyu Wang
2018-05-18
Machine Learning · Computer Science
Theoretical Understanding of Learning from Adversarial Perturbations
Soichiro Kumano, Hiroshi Kera, Toshihiko Yamasaki
2024-02-19
Machine Learning · Computer Science
Adversarially Robust Learning with Unknown Perturbation Sets
Omar Montasser, Steve Hanneke, Nathan Srebro
2021-02-04
Machine Learning · Statistics
Adversarial Examples Are Not Bugs, They Are Features
Andrew Ilyas, Shibani Santurkar, Dimitris Tsipras, Logan Engstrom +2
2019-08-13
Machine Learning · Computer Science
Detecting Adversarial Data by Probing Multiple Perturbations Using Expected Perturbation Score
Shuhai Zhang, Feng Liu, Jiahao Yang, Yifan Yang +3
2023-05-26
Cryptography and Security · Computer Science
Real-Time Adversarial Attacks
Yuan Gong, Boyang Li, Christian Poellabauer, Yiyu Shi
2019-06-25
Machine Learning · Computer Science
ReabsNet: Detecting and Revising Adversarial Examples
Jiefeng Chen, Zihang Meng, Changtian Sun, Wei Tang +1
2017-12-25
Computer Vision and Pattern Recognition · Computer Science
Detecting Adversarial Data using Perturbation Forgery
Qian Wang, Chen Li, Yuchen Luo, Hefei Ling +3
2025-03-06
Computation and Language · Computer Science
Normal vs. Adversarial: Salience-based Analysis of Adversarial Samples for Relation Extraction
Luoqiu Li, Xiang Chen, Zhen Bi, Xin Xie +5
2023-01-26
Machine Learning · Computer Science
Unsupervised Detection of Adversarial Examples with Model Explanations
Gihyuk Ko, Gyumin Lim
2021-07-23
Information Theory · Computer Science
Sequential Adversarial Hypothesis Testing
Eeshan Modak, Mayank Bakshi, Bikash Kumar Dey, Vinod M. Prabhakaran
2025-11-14
Computer Vision and Pattern Recognition · Computer Science
Targeted Nonlinear Adversarial Perturbations in Images and Videos
Roberto Rey-de-Castro, Herschel Rabitz
2018-09-05
Machine Learning · Statistics
On the existence of consistent adversarial attacks in high-dimensional linear classification
Matteo Vilucchio, Lenka Zdeborová, Bruno Loureiro
2025-06-17
Machine Learning · Computer Science
Discovering Imperfectly Observable Adversarial Actions using Anomaly Detection
Olga Petrova, Karel Durkota, Galina Alperovich, Karel Horak +3
2020-04-23