English

HarDNN: Feature Map Vulnerability Evaluation in CNNs

Machine Learning 2020-02-26 v2 Computer Vision and Pattern Recognition Machine Learning

Abstract

As Convolutional Neural Networks (CNNs) are increasingly being employed in safety-critical applications, it is important that they behave reliably in the face of hardware errors. Transient hardware errors may percolate undesirable state during execution, resulting in software-manifested errors which can adversely affect high-level decision making. This paper presents HarDNN, a software-directed approach to identify vulnerable computations during a CNN inference and selectively protect them based on their propensity towards corrupting the inference output in the presence of a hardware error. We show that HarDNN can accurately estimate relative vulnerability of a feature map (fmap) in CNNs using a statistical error injection campaign, and explore heuristics for fast vulnerability assessment. Based on these results, we analyze the tradeoff between error coverage and computational overhead that the system designers can use to employ selective protection. Results show that the improvement in resilience for the added computation is superlinear with HarDNN. For example, HarDNN improves SqueezeNet's resilience by 10x with just 30% additional computations.

Keywords

Cite

@article{arxiv.2002.09786,
  title  = {HarDNN: Feature Map Vulnerability Evaluation in CNNs},
  author = {Abdulrahman Mahmoud and Siva Kumar Sastry Hari and Christopher W. Fletcher and Sarita V. Adve and Charbel Sakr and Naresh Shanbhag and Pavlo Molchanov and Michael B. Sullivan and Timothy Tsai and Stephen W. Keckler},
  journal= {arXiv preprint arXiv:2002.09786},
  year   = {2020}
}

Comments

14 pages, 5 figures, a short version accepted for publication in First Workshop on Secure and Resilient Autonomy (SARA) co-located with MLSys2020

R2 v1 2026-06-23T13:50:31.482Z