English

SOAR: Second-Order Adversarial Regularization

Machine Learning 2021-02-09 v2 Machine Learning
Authors: Avery Ma , Fartash Faghri , Nicolas Papernot , Amir-massoud Farahmand
View on arXiv PDF

Abstract

Adversarial training is a common approach to improving the robustness of deep neural networks against adversarial examples. In this work, we propose a novel regularization approach as an alternative. To derive the regularizer, we formulate the adversarial robustness problem under the robust optimization framework and approximate the loss function using a second-order Taylor series expansion. Our proposed second-order adversarial regularizer (SOAR) is an upper bound based on the Taylor approximation of the inner-max in the robust optimization objective. We empirically show that the proposed method significantly improves the robustness of networks against the \ell_\infty and 2\ell_2 bounded perturbations generated using cross-entropy-based PGD on CIFAR-10 and SVHN.

Keywords

adversarial training regularization adversarial robustness

Cite

@article{arxiv.2004.01832,
  title  = {SOAR: Second-Order Adversarial Regularization},
  author = {Avery Ma and Fartash Faghri and Nicolas Papernot and Amir-massoud Farahmand},
  journal= {arXiv preprint arXiv:2004.01832},
  year   = {2021}
}

Related papers

View all related →
Machine Learning · Computer Science
Second Order Optimization for Adversarial Robustness and Interpretability
Theodoros Tsiligkaridis, Jay Roberts
2020-09-11
Machine Learning · Statistics
Improving Adversarial Robustness by Putting More Regularizations on Less Robust Samples
Dongyoon Yang, Insung Kong, Yongdai Kim
2023-06-02
Machine Learning · Statistics
Adversarial Robustness through Local Linearization
Chongli Qin, James Martens, Sven Gowal, Dilip Krishnan +5
2019-10-11
Machine Learning · Statistics
Adversarially Robust Training through Structured Gradient Regularization
Kevin Roth, Aurelien Lucchi, Sebastian Nowozin, Thomas Hofmann
2018-05-23
Machine Learning · Computer Science
Understanding and Combating Robust Overfitting via Input Loss Landscape Analysis and Regularization
Lin Li, Michael Spratling
2022-12-12
Machine Learning · Statistics
Understanding Adversarial Training: Increasing Local Stability of Neural Nets through Robust Optimization
Uri Shaham, Yutaro Yamada, Sahand Negahban
2018-05-07
Machine Learning · Statistics
Regularized Training and Tight Certification for Randomized Smoothed Classifier with Provable Robustness
Huijie Feng, Chunpeng Wu, Guoyang Chen, Weifeng Zhang +1
2020-02-19
Machine Learning · Computer Science
Consistency Regularization for Adversarial Robustness
Jihoon Tack, Sihyun Yu, Jongheon Jeong, Minseon Kim +2
2021-12-23
Machine Learning · Computer Science
Towards Understanding the Regularization of Adversarial Robustness on Neural Networks
Yuxin Wen, Shuai Li, Kui Jia
2020-11-17
Machine Learning · Computer Science
Enhancing Adversarial Training with Second-Order Statistics of Weights
Gaojie Jin, Xinping Yi, Wei Huang, Sven Schewe +1
2022-03-14
Machine Learning · Computer Science
Robustness via curvature regularization, and vice versa
Seyed-Mohsen Moosavi-Dezfooli, Alhussein Fawzi, Jonathan Uesato, Pascal Frossard
2018-11-27
Machine Learning · Computer Science
Bridging the Gap Between Adversarial Robustness and Optimization Bias
Fartash Faghri, Sven Gowal, Cristina Vasconcelos, David J. Fleet +2
2021-06-08
Machine Learning · Computer Science
Boosting Adversarial Training via Fisher-Rao Norm-based Regularization
Xiangyu Yin, Wenjie Ruan
2024-03-27
Computer Vision and Pattern Recognition · Computer Science
ROSAR: An Adversarial Re-Training Framework for Robust Side-Scan Sonar Object Detection
Martin Aubard, László Antal, Ana Madureira, Luis F. Teixeira +1
2024-10-15
Machine Learning · Computer Science
Alleviating Robust Overfitting of Adversarial Training With Consistency Regularization
Shudong Zhang, Haichang Gao, Tianwei Zhang, Yunyi Zhou +1
2022-05-25
Machine Learning · Computer Science
Spectral regularization for adversarially-robust representation learning
Sheng Yang, Jacob A. Zavatone-Veth, Cengiz Pehlevan
2024-05-28
Machine Learning · Computer Science
Average Margin Regularization for Classifiers
Matt Olfat, Anil Aswani
2020-03-25
Numerical Analysis · Mathematics
On the second order asymptotical regularization of linear ill-posed inverse problems
Ye Zhang, Bernd Hofmann
2018-08-28
Machine Learning · Computer Science
Randomized Adversarial Training via Taylor Expansion
Gaojie Jin, Xinping Yi, Dengyu Wu, Ronghui Mu +1
2023-03-21
Machine Learning · Computer Science
Provably Robust Deep Learning via Adversarially Trained Smoothed Classifiers
Hadi Salman, Greg Yang, Jerry Li, Pengchuan Zhang +3
2020-01-13
Machine Learning · Computer Science
Learning to Defend by Learning to Attack
Haoming Jiang, Zhehui Chen, Yuyang Shi, Bo Dai +1
2021-05-04
Machine Learning · Computer Science
Regularization for Adversarial Robust Learning
Jie Wang, Rui Gao, Yao Xie
2024-08-23
Computer Vision and Pattern Recognition · Computer Science
Deep Defense: Training DNNs with Improved Adversarial Robustness
Ziang Yan, Yiwen Guo, Changshui Zhang
2018-12-21
Computer Vision and Pattern Recognition · Computer Science
Adversarial Transformations for Semi-Supervised Learning
Teppei Suzuki, Ikuro Sato
2019-11-19
Machine Learning · Computer Science
Standard-Deviation-Inspired Regularization for Improving Adversarial Robustness
Olukorede Fakorede, Modeste Atsague, Jin Tian
2024-12-31