Internet Archive Scholar
Filters
























1,476 Hits in 6.2 sec

Scalable Polyhedral Verification of Recurrent Neural Networks [article]

Wonryong Ryou, Jiayu Chen, Mislav Balunovic, Gagandeep Singh, Andrei Dan, Martin Vechev
<span title="2021-06-10">2021</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (350.6 kB)
https://web.archive.org/web/20201212014734/https://arxiv.org/pdf/2005.13300v2.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/2005.13300v2.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Note that this fulltext copy is not of the "primary" version of this work. The version it corresponds to is:

<span title="2020-12-10">2020</span> <span class="release-stage" >pre-print</span> <span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2005.13300v2">arXiv:2005.13300v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/jqug2w75xzdazasodx5xq3gyku">fatcat:jqug2w75xzdazasodx5xq3gyku</a> </span>

Other Versions

<span title="2020-05-27">2020</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2005.13300v1">arXiv:2005.13300v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/ulxftav32jcd3p3aztbzu2j6ve">fatcat:ulxftav32jcd3p3aztbzu2j6ve</a> </span>
We present a scalable and precise verifier for recurrent neural networks, called Prover based on two novel ideas: (i) a method to compute a set of polyhedral abstractions for the non-convex and nonlinear  ...  recurrent update functions by combining sampling, optimization, and Fermat's theorem, and (ii) a gradient descent based algorithm for abstraction refinement guided by the certification problem that combines  ...  Fig. 1 shows how our proposed R2: Robustness certifier for Recurrent neural networks proves the robustness of the model.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2005.13300v3">arXiv:2005.13300v3</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/wzopdvt3jnch5lvqsiy2psiuve">fatcat:wzopdvt3jnch5lvqsiy2psiuve</a> </span>
<span class="ui label basic orange small" title="Open Access">Open Access</span> <span class="ui label basic blue small">Multiple Versions</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20201212014734/https://arxiv.org/pdf/2005.13300v2.pdf" title="fulltext PDF download [not primary version]" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <span style="color: #f43e3e;">&#10033;</span> <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/35/37/353725c7df33be6079eda64a723484e31e4b3fdf.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2005.13300v3" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Wonryong Ryou, Jiayu Chen, Mislav Balunovic, Gagandeep Singh, Andrei Dan, Martin Vechev. "Scalable Polyhedral Verification of Recurrent Neural Networks." arXiv (2021)

Robustness against Adversarial Attacks in Neural Networks using Incremental Dissipativity [article]

Bernardo Aquino, Arash Rahnama, Peter Seiler, Lizhen Lin, Vijay Gupta
<span title="2022-02-14">2022</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (183.4 kB)
https://web.archive.org/web/20220218001633/https://arxiv.org/pdf/2111.12906v2.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2022; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/2111.12906v2.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Other Versions

<span title="2021-11-25">2021</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2111.12906v1">arXiv:2111.12906v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/4qibslzdvjdebfdzswqlt25heu">fatcat:4qibslzdvjdebfdzswqlt25heu</a> </span>
This work proposes an incremental dissipativity-based robustness certificate for neural networks in the form of a linear matrix inequality for each layer.  ...  We also propose an equivalent spectral norm bound for this certificate which is scalable to neural networks with multiple layers.  ...  ACKNOWLEDGMENT The authors acknowledge comments from Julien Béguinot (Télécom Paris -Institut Polytechnique de Paris) and Léo Monbroussou ( École Normale Supérieure Paris-Saclay -Institut Polytechnique  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2111.12906v2">arXiv:2111.12906v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/rslbawn5avc5hmyieq3o5odjcu">fatcat:rslbawn5avc5hmyieq3o5odjcu</a> </span>
<span class="ui label basic orange small" title="Open Access">Open Access</span> <span class="ui label basic blue small">Multiple Versions</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20220218001633/https://arxiv.org/pdf/2111.12906v2.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/1b/9c/1b9c0eb395118579be38feb9ecae1a0019ebc140.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2111.12906v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Bernardo Aquino, Arash Rahnama, Peter Seiler, Lizhen Lin, Vijay Gupta. "Robustness against Adversarial Attacks in Neural Networks using Incremental Dissipativity." arXiv (2022)

Adversarial Robustness of Deep Learning: Theory, Algorithms, and Applications

Wenjie Ruan, Xinping Yi, Xiaowei Huang
<span title="2021-10-26">2021</span> <i title="ACM"> Proceedings of the 30th ACM International Conference on Information &amp; Knowledge Management </i> &nbsp;

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.4 MB)
https://web.archive.org/web/20211104191946/https://dl.acm.org/doi/pdf/10.1145/3459637.3482029

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit <a rel="external noopener" href="https://dl.acm.org/doi/pdf/10.1145/3459637.3482029">the original URL</a>. The file type is <code>application/pdf</code>.

This tutorial will particularly highlight state-of-the-art techniques in adversarial attacks and robustness verification of deep neural networks (DNNs).  ...  We will also introduce some effective countermeasures to improve robustness of deep learning models, with a particular focus on adversarial training.  ...  their extension to recurrent neural networks [10] .  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/3459637.3482029">doi:10.1145/3459637.3482029</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/ekos2t5jmfgahpim76txpf7qxu">fatcat:ekos2t5jmfgahpim76txpf7qxu</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20211104191946/https://dl.acm.org/doi/pdf/10.1145/3459637.3482029" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/2e/58/2e58fa5702bbe600d38235f0286267bcfbe30fdd.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1145/3459637.3482029"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> acm.org </button> </a>
Citation

Wenjie Ruan, Xinping Yi, Xiaowei Huang. "Adversarial Robustness of Deep Learning: Theory, Algorithms, and Applications." Proceedings of the 30th ACM International Conference on Information & Knowledge Management (2021)

Fastened CROWN: Tightened Neural Network Robustness Certificates

Zhaoyang Lyu, Ching-Yun Ko, Zhifeng Kong, Ngai Wong, Dahua Lin, Luca Daniel
<span title="2020-04-03">2020</span> <i title="Association for the Advancement of Artificial Intelligence (AAAI)"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/wtjcymhabjantmdtuptkk62mlq" style="color: black;">PROCEEDINGS OF THE THIRTIETH AAAI CONFERENCE ON ARTIFICIAL INTELLIGENCE AND THE TWENTY-EIGHTH INNOVATIVE APPLICATIONS OF ARTIFICIAL INTELLIGENCE CONFERENCE</a> </i> &nbsp;

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (959.7 kB)
https://web.archive.org/web/20201104132507/https://aaai.org/ojs/index.php/AAAI/article/download/5944/5800

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit <a rel="external noopener" href="https://aaai.org/ojs/index.php/AAAI/article/download/5944/5800">the original URL</a>. The file type is <code>application/pdf</code>.

We then propose an optimization-based approach FROWN (Fastened CROWN): a general algorithm to tighten robustness certificates for neural networks.  ...  Extensive experiments on various networks trained individually verify the effectiveness of FROWN in safeguarding larger robust regions.  ...  Acknowledgement This work is partially supported by the General Research Fund (Project 14236516) of the Hong Kong Research Grants Council, and MIT-Quest program.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1609/aaai.v34i04.5944">doi:10.1609/aaai.v34i04.5944</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/bmyeg2exhjgnba6p6bcswsdwxe">fatcat:bmyeg2exhjgnba6p6bcswsdwxe</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20201104132507/https://aaai.org/ojs/index.php/AAAI/article/download/5944/5800" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/ff/30/ff302ea2c7445866c3cca4bf907afc5f9370e62e.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1609/aaai.v34i04.5944"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="external alternate icon"></i> Publisher / doi.org </button> </a>
Citation

Zhaoyang Lyu, Ching-Yun Ko, Zhifeng Kong, Ngai Wong, Dahua Lin, Luca Daniel. "Fastened CROWN: Tightened Neural Network Robustness Certificates." PROCEEDINGS OF THE THIRTIETH AAAI CONFERENCE ON ARTIFICIAL INTELLIGENCE AND THE TWENTY-EIGHTH INNOVATIVE APPLICATIONS OF ARTIFICIAL INTELLIGENCE CONFERENCE 34.04 (2020) 5037-5044

Training for Faster Adversarial Robustness Verification via Inducing ReLU Stability [article]

Kai Y. Xiao, Vincent Tjeng, Nur Muhammad Shafiullah, Aleksander Madry
<span title="2019-04-23">2019</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (771.7 kB)
https://web.archive.org/web/20200930001120/https://arxiv.org/pdf/1809.03008v3.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/1809.03008v3.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Other Versions

<span title="2018-09-26">2018</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1809.03008v2">arXiv:1809.03008v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/x46vvxoe7vhevbsm4g6wgg4bnu">fatcat:x46vvxoe7vhevbsm4g6wgg4bnu</a> </span>
<span title="2018-09-09">2018</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1809.03008v1">arXiv:1809.03008v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/ady2o23j2fah3k34agelgyd42m">fatcat:ady2o23j2fah3k34agelgyd42m</a> </span>
Specifically, we aim to train deep neural networks that not only are robust to adversarial perturbations but also whose robustness can be verified more easily.  ...  We explore the concept of co-design in the context of neural network verification.  ...  In general, the process of training a robust neural network and then formally verifying its robustness happens in two steps. • Step 1: Training 2018) , propose a method for step 2 (the certification  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1809.03008v3">arXiv:1809.03008v3</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/uyvzflnngfabdpwsptje7rcxfu">fatcat:uyvzflnngfabdpwsptje7rcxfu</a> </span>
<span class="ui label basic blue small">Multiple Versions</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200930001120/https://arxiv.org/pdf/1809.03008v3.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/de/49/de49430578bb3f8de3e610423255662c45f17610.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1809.03008v3" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Kai Y. Xiao, Vincent Tjeng, Nur Muhammad Shafiullah, Aleksander Madry. "Training for Faster Adversarial Robustness Verification via Inducing ReLU Stability." arXiv (2019)

A Review of Formal Methods applied to Machine Learning [article]

Caterina Urban, Antoine Miné
<span title="2021-04-21">2021</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (7.2 MB)
https://web.archive.org/web/20210423044332/https://arxiv.org/pdf/2104.02466v2.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/2104.02466v2.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Other Versions

<span title="2021-04-06">2021</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2104.02466v1">arXiv:2104.02466v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/6bmzubmkgrdpratpyx74tahksq">fatcat:6bmzubmkgrdpratpyx74tahksq</a> </span>
The large majority of them verify trained neural networks and employ either SMT, optimization, or abstract interpretation techniques.  ...  Thanks to the availability of mature tools, their use is well established in the industry, and in particular to check safety-critical applications as they undergo a stringent certification process.  ...  Acknowledgements This work is partially supported by Airbus and the European Research Council under Consolidator Grant Agreement 681393 -MOPSA.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2104.02466v2">arXiv:2104.02466v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/6ghs5huoynbc5h7lndajmsoxyu">fatcat:6ghs5huoynbc5h7lndajmsoxyu</a> </span>
<span class="ui label basic orange small" title="Open Access">Open Access</span> <span class="ui label basic blue small">Multiple Versions</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210423044332/https://arxiv.org/pdf/2104.02466v2.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/1a/a6/1aa699801cb186229ec4761296d1c87c18184f59.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2104.02466v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Caterina Urban, Antoine Miné. "A Review of Formal Methods applied to Machine Learning." arXiv (2021)

POPQORN: Quantifying Robustness of Recurrent Neural Networks [article]

Ching-Yun Ko, Zhaoyang Lyu, Tsui-Wei Weng, Luca Daniel, Ngai Wong, Dahua Lin
<span title="2019-05-17">2019</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (2.6 MB)
https://web.archive.org/web/20200829062355/https://arxiv.org/pdf/1905.07387v1.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/1905.07387v1.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

It remains an open problem to quantify robustness for recurrent networks, especially LSTM and GRU.  ...  We demonstrate its effectiveness on different network architectures and show that the robustness quantification on individual steps can lead to new insights.  ...  Acknowledgment The authors would like to thank Zhuolun Leon He for useful discussion.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1905.07387v1">arXiv:1905.07387v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/xg7p7nsgmvalli4mtfc3dq7m7y">fatcat:xg7p7nsgmvalli4mtfc3dq7m7y</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200829062355/https://arxiv.org/pdf/1905.07387v1.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/f7/05/f70532fb31ae309b9e496632d21337b2bb045663.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1905.07387v1" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Ching-Yun Ko, Zhaoyang Lyu, Tsui-Wei Weng, Luca Daniel, Ngai Wong, Dahua Lin. "POPQORN: Quantifying Robustness of Recurrent Neural Networks." arXiv (2019)

Scalable Polyhedral Verification of Recurrent Neural Networks [chapter]

Wonryong Ryou, Jiayu Chen, Mislav Balunovic, Gagandeep Singh, Andrei Dan, Martin Vechev
<span title="">2021</span> <i title="Springer International Publishing"> <a target="_blank" rel="noopener" href="https://fatcat.wiki/container/2w3awgokqne6te4nvlofavy5a4" style="color: black;">Lecture Notes in Computer Science</a> </i> &nbsp;

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.4 MB)
https://web.archive.org/web/20210717201857/http://link.springer.com/content/pdf/10.1007/978-3-030-81685-8_10.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit <a rel="external noopener" href="http://link.springer.com/content/pdf/10.1007/978-3-030-81685-8_10.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

AbstractWe present a scalable and precise verifier for recurrent neural networks, called Prover based on two novel ideas: (i) a method to compute a set of polyhedral abstractions for the non-convex and  ...  non-linear recurrent update functions by combining sampling, optimization, and Fermat's theorem, and (ii) a gradient descent based algorithm for abstraction refinement guided by the certification problem  ...  Introduction Recurrent neural networks (RNNs) are widely used to model long-term dependencies in lengthy sequential signals [11, 27, 43] .  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-030-81685-8_10">doi:10.1007/978-3-030-81685-8_10</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/kbklnexlzfatdn7wnhljqjsecy">fatcat:kbklnexlzfatdn7wnhljqjsecy</a> </span>
<span class="ui label basic orange small" title="Open Access">Open Access</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210717201857/http://link.springer.com/content/pdf/10.1007/978-3-030-81685-8_10.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/f4/bb/f4bbcce0328f7944dc755a35a44c3fd16aa43133.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener noreferrer" href="https://doi.org/10.1007/978-3-030-81685-8_10"> <button class="ui left aligned compact blue labeled icon button serp-button"> <i class="unlock alternate icon" style="background-color: #fb971f;"></i> springer.com </button> </a>
Citation

Wonryong Ryou, Jiayu Chen, Mislav Balunovic, Gagandeep Singh, Andrei Dan, Martin Vechev. "Scalable Polyhedral Verification of Recurrent Neural Networks." Lecture Notes in Computer Science (2021) 225-248

DeepGalaxy: Testing Neural Network Verifiers via Two-Dimensional Input Space Exploration [article]

Xuan Xie, Fuyuan Zhang
<span title="2022-01-20">2022</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (848.3 kB)
https://web.archive.org/web/20220122092930/https://arxiv.org/pdf/2201.08087v1.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2022; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/2201.08087v1.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Deep neural networks (DNNs) are widely developed and applied in many areas, and the quality assurance of DNNs is critical.  ...  Specifically, we (1) propose a line of mutation rules, including model level mutation and specification level mutation, to effectively explore the two-dimensional input space of neural network verifiers  ...  and verify regular properties for recurrent neural networks.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2201.08087v1">arXiv:2201.08087v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/m75hwzuifzgljfmmzoxf7bu6ja">fatcat:m75hwzuifzgljfmmzoxf7bu6ja</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20220122092930/https://arxiv.org/pdf/2201.08087v1.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/82/34/82341dcf3a251fb0da5f5a252896fa7431368e73.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2201.08087v1" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Xuan Xie, Fuyuan Zhang. "DeepGalaxy: Testing Neural Network Verifiers via Two-Dimensional Input Space Exploration." arXiv (2022)

Fantastic Four: Differentiable Bounds on Singular Values of Convolution Layers [article]

Sahil Singla, Soheil Feizi
<span title="2021-06-12">2021</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (488.3 kB)
https://web.archive.org/web/20210616035830/https://arxiv.org/pdf/1911.10258v3.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/1911.10258v3.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Other Versions

<span title="2021-04-30">2021</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1911.10258v2">arXiv:1911.10258v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/sveblll4hfdp5nipctxcb4nvam">fatcat:sveblll4hfdp5nipctxcb4nvam</a> </span>
<span title="2019-11-22">2019</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1911.10258v1">arXiv:1911.10258v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/fgvk6lyubbc6jhthtzex7sn37u">fatcat:fgvk6lyubbc6jhthtzex7sn37u</a> </span>
Through experiments on MNIST and CIFAR-10, we demonstrate the effectiveness of our spectral bound in improving generalization and provable robustness of deep networks.  ...  We show that our spectral bound is an effective regularizer and can be used to bound either the lipschitz constant or curvature values (eigenvalues of the Hessian) of neural networks.  ...  Dhillon, and Luca Daniel. Towards fast computation of certified robustness for relu networks. In International Conference on Machine Learning (ICML), July 2018.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1911.10258v3">arXiv:1911.10258v3</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/zftn2r6bzzfttayah2rx7pqbpe">fatcat:zftn2r6bzzfttayah2rx7pqbpe</a> </span>
<span class="ui label basic blue small">Multiple Versions</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210616035830/https://arxiv.org/pdf/1911.10258v3.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/d4/3e/d43ebb23a3728b874cf7663698c5ec7b3f4227c8.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1911.10258v3" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Sahil Singla, Soheil Feizi. "Fantastic Four: Differentiable Bounds on Singular Values of Convolution Layers." arXiv (2021)

Training Provably Robust Models by Polyhedral Envelope Regularization [article]

Chen Liu, Mathieu Salzmann, Sabine Süsstrunk
<span title="2021-09-20">2021</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (3.4 MB)
https://web.archive.org/web/20210922054951/https://arxiv.org/pdf/1912.04792v3.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/1912.04792v3.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Other Versions

<span title="2020-02-15">2020</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1912.04792v2">arXiv:1912.04792v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/nvtpd2abmbff3p24nt44m7bt6i">fatcat:nvtpd2abmbff3p24nt44m7bt6i</a> </span>
<span title="2019-12-10">2019</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1912.04792v1">arXiv:1912.04792v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/7fra5kioobcxflucv76crxfava">fatcat:7fra5kioobcxflucv76crxfava</a> </span>
Training certifiable neural networks enables one to obtain models with robustness guarantees against adversarial attacks.  ...  We demonstrate the flexibility and effectiveness of our framework on standard benchmarks; it applies to networks of different architectures and general activation functions.  ...  Therefore, our method is also applicable to other network architectures, such as convolutional neural networks (CNN), residual networks (ResNet) and recurrent neural networks (RNN). III.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1912.04792v3">arXiv:1912.04792v3</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/ak4wf4ntvfexldnwiivkoszx5q">fatcat:ak4wf4ntvfexldnwiivkoszx5q</a> </span>
<span class="ui label basic blue small">Multiple Versions</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20210922054951/https://arxiv.org/pdf/1912.04792v3.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/82/0b/820bfb20eca77766890428ab2ab45b8d1123abb5.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1912.04792v3" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Chen Liu, Mathieu Salzmann, Sabine Süsstrunk. "Training Provably Robust Models by Polyhedral Envelope Regularization." arXiv (2021)

A survey in Adversarial Defences and Robustness in NLP [article]

Shreya Goyal, Sumanth Doddapaneni, Mitesh M.Khapra, Balaraman Ravindran
<span title="2022-04-12">2022</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.9 MB)
https://web.archive.org/web/20220425122110/https://arxiv.org/pdf/2203.06414v2.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2022; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/2203.06414v2.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Other Versions

<span title="2022-03-12">2022</span> <span class="release-stage" >pre-print</span>
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2203.06414v1">arXiv:2203.06414v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/uqkyno4nyfd2bgrnjbaz2lugqm">fatcat:uqkyno4nyfd2bgrnjbaz2lugqm</a> </span>
In recent years, it has been seen that deep neural networks are lacking robustness and are likely to break in case of adversarial perturbations in input data.  ...  This survey also highlights the fragility of the advanced deep neural networks in NLP and the challenges in defending them.  ...  A new set of methods to achieve robustness were proposed in the direction of providing a certificate of robustness for a neural network, attempting to put an end to this race.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2203.06414v2">arXiv:2203.06414v2</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/2ukd44px35e7ppskzkaprfw4ha">fatcat:2ukd44px35e7ppskzkaprfw4ha</a> </span>
<span class="ui label basic blue small">Multiple Versions</span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20220425122110/https://arxiv.org/pdf/2203.06414v2.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/4a/b2/4ab26e3d3ed3dc26f3fd372de3dc0c8a156041fa.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2203.06414v2" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Shreya Goyal, Sumanth Doddapaneni, Mitesh M.Khapra, Balaraman Ravindran. "A survey in Adversarial Defences and Robustness in NLP." arXiv (2022)

Holistic Adversarial Robustness of Deep Learning Models [article]

Pin-Yu Chen, Sijia Liu
<span title="2022-02-15">2022</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (650.9 kB)
https://web.archive.org/web/20220223170000/https://arxiv.org/pdf/2202.07201v1.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2022; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/2202.07201v1.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

This paper provides a comprehensive overview of research topics and foundational principles of research methods for adversarial robustness of deep learning models, including attacks, defenses, verification  ...  Adversarial robustness studies the worst-case performance of a machine learning model to ensure safety and reliability.  ...  Throughout this paper, we focus on adversarial robustness of neural networks for classification tasks.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2202.07201v1">arXiv:2202.07201v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/q2ush5pqyjgu7nxragxrp6k7re">fatcat:q2ush5pqyjgu7nxragxrp6k7re</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20220223170000/https://arxiv.org/pdf/2202.07201v1.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/20/4d/204d5e963fc944d492637f2e6fadc6ddce39862f.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2202.07201v1" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Pin-Yu Chen, Sijia Liu. "Holistic Adversarial Robustness of Deep Learning Models." arXiv (2022)

On Robust Classification using Contractive Hamiltonian Neural ODEs [article]

Muhammad Zakwan, Liang Xu, Giancarlo Ferrari-Trecate
<span title="2022-03-22">2022</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.4 MB)
https://web.archive.org/web/20220516200500/https://arxiv.org/pdf/2203.11805v1.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2022; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/2203.11805v1.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

Deep neural networks can be fragile and sensitive to small input perturbations that might cause a significant change in the output.  ...  In this paper, we employ contraction theory to improve the robustness of neural ODEs (NODEs).  ...  Contractivity has been used to improve the well-posedness of implicit neural networks [16] and the trainability of recurrent neural networks [17] .  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2203.11805v1">arXiv:2203.11805v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/36ov7xmhwbb3jpu6zsi3myi24y">fatcat:36ov7xmhwbb3jpu6zsi3myi24y</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20220516200500/https://arxiv.org/pdf/2203.11805v1.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/f7/38/f738af39e4bda0f9e744e334076f6fdc2521dcd1.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/2203.11805v1" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Muhammad Zakwan, Liang Xu, Giancarlo Ferrari-Trecate. "On Robust Classification using Contractive Hamiltonian Neural ODEs." arXiv (2022)

Fastened CROWN: Tightened Neural Network Robustness Certificates [article]

Zhaoyang Lyu, Ching-Yun Ko, Zhifeng Kong, Ngai Wong, Dahua Lin, Luca Daniel
<span title="2019-12-02">2019</span> <i > arXiv </i> &nbsp; <span class="release-stage" >pre-print</span>

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.6 MB)
https://web.archive.org/web/20200928202714/https://arxiv.org/pdf/1912.00574v1.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit <a rel="external noopener" href="https://arxiv.org/pdf/1912.00574v1.pdf">the original URL</a>. The file type is <code>application/pdf</code>.

We then propose an optimization-based approach FROWN (Fastened CROWN): a general algorithm to tighten robustness certificates for neural networks.  ...  Extensive experiments on various networks trained individually verify the effectiveness of FROWN in safeguarding larger robust regions.  ...  Acknowledgement This work is partially supported by the General Research Fund (Project 14236516) of the Hong Kong Research Grants Council, and MIT-Quest program.  ... 
<span class="external-identifiers"> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1912.00574v1">arXiv:1912.00574v1</a> <a target="_blank" rel="external noopener" href="https://fatcat.wiki/release/zsv3wcnc7vedxkz6kyyfq7xasu">fatcat:zsv3wcnc7vedxkz6kyyfq7xasu</a> </span>
<a target="_blank" rel="noopener" href="https://web.archive.org/web/20200928202714/https://arxiv.org/pdf/1912.00574v1.pdf" title="fulltext PDF download" data-goatcounter-click="serp-fulltext" data-goatcounter-title="serp-fulltext"> <button class="ui simple right pointing dropdown compact black labeled icon button serp-button"> <i class="icon ia-icon"></i> Web Archive [PDF] <div class="menu fulltext-thumbnail"> <img src="https://blobs.fatcat.wiki/thumbnail/pdf/a9/48/a948ff0c0eba359e141f5dcee1f8f8cfccc7f7a7.180px.jpg" alt="fulltext thumbnail" loading="lazy"> </div> </button> </a> <a target="_blank" rel="external noopener" href="https://arxiv.org/abs/1912.00574v1" title="arxiv.org access"> <button class="ui compact blue labeled icon button serp-button"> <i class="file alternate outline icon"></i> arxiv.org </button> </a>
Citation

Zhaoyang Lyu, Ching-Yun Ko, Zhifeng Kong, Ngai Wong, Dahua Lin, Luca Daniel. "Fastened CROWN: Tightened Neural Network Robustness Certificates." arXiv (2019)

&laquo; Previous Showing results 1 &mdash; 15 out of 1,476 results