Recent research in robust optimization has shown an overfitting-like phenomenon in which models trained against adversarial attacks exhibit higher robustness on the training set compared to the test set. Although previous work provided theoretical explanations for this phenomenon using a robust PAC-Bayesian bound over the adversarial test error, related algorithmic derivations are at best only loosely connected to this bound, which implies that there is still a gap between their empirical success and our understanding of adversarial robustness theory. To close this gap, in this paper we consider a different form of the robust PAC-Bayesian bound and directly minimize it with respect to the model posterior. The derivation of the optimal solut...
Neural networks are vulnerable to adversarial attacks: adding well-crafted, imperceptible perturbati...
Adversarial robustness has become a topic of growing interest in machine learning since it was obser...
Adversarial training has been actively studied in recent computer vision research to improve the rob...
International audienceWe propose the first general PAC-Bayesian generalization bounds for adversaria...
Adversarial training is widely used to improve the robustness of deep neural networks to adversarial...
We consider transfer learning approaches that fine-tune a pretrained deep neural network on a target...
Laplace random variables are commonly used to model extreme noise in many fields, while systems trai...
In the last decade, deep neural networks have achieved tremendous success in many fields of machine ...
PAC-Bayesian bounds are known to be tight and informative when studying the generalization ability o...
PAC-Bayes has recently re-emerged as an effective theory with which one can derive principled learni...
Deep Convolution Neural Networks (CNNs) can easily be fooled by subtle, imperceptible changes to the...
Adversarial training has been shown to be one of the most effective approaches to improve the robust...
Intentionally crafted adversarial samples have effectively exploited weaknesses in deep neural netwo...
Recent studies have empirically investigated different methods to train stochastic neural networks o...
We focus on learning adversarially robust classifiers under a cost-sensitive scenario, where the pot...
Neural networks are vulnerable to adversarial attacks: adding well-crafted, imperceptible perturbati...
Adversarial robustness has become a topic of growing interest in machine learning since it was obser...
Adversarial training has been actively studied in recent computer vision research to improve the rob...
International audienceWe propose the first general PAC-Bayesian generalization bounds for adversaria...
Adversarial training is widely used to improve the robustness of deep neural networks to adversarial...
We consider transfer learning approaches that fine-tune a pretrained deep neural network on a target...
Laplace random variables are commonly used to model extreme noise in many fields, while systems trai...
In the last decade, deep neural networks have achieved tremendous success in many fields of machine ...
PAC-Bayesian bounds are known to be tight and informative when studying the generalization ability o...
PAC-Bayes has recently re-emerged as an effective theory with which one can derive principled learni...
Deep Convolution Neural Networks (CNNs) can easily be fooled by subtle, imperceptible changes to the...
Adversarial training has been shown to be one of the most effective approaches to improve the robust...
Intentionally crafted adversarial samples have effectively exploited weaknesses in deep neural netwo...
Recent studies have empirically investigated different methods to train stochastic neural networks o...
We focus on learning adversarially robust classifiers under a cost-sensitive scenario, where the pot...
Neural networks are vulnerable to adversarial attacks: adding well-crafted, imperceptible perturbati...
Adversarial robustness has become a topic of growing interest in machine learning since it was obser...
Adversarial training has been actively studied in recent computer vision research to improve the rob...