Learning Task-aware Robust Deep Learning Systems
Keji Han, Yun Li, Xianzhong Long, Yao Ge
TL;DR
This paper proposes a novel approach to enhance the robustness of deep learning systems by redefining the classification task with label encoding strategies, addressing both task and model vulnerabilities.
Contribution
It introduces a task-aware method using binary and interval label encoding to improve robustness, which is a new perspective compared to existing model-focused approaches.
Findings
Significantly more robust than traditional classification methods
Retains high accuracy while improving robustness
Effective against adversarial attacks
Abstract
Many works demonstrate that deep learning system is vulnerable to adversarial attack. A deep learning system consists of two parts: the deep learning task and the deep model. Nowadays, most existing works investigate the impact of the deep model on robustness of deep learning systems, ignoring the impact of the learning task. In this paper, we adopt the binary and interval label encoding strategy to redefine the classification task and design corresponding loss to improve robustness of the deep learning system. Our method can be viewed as improving the robustness of deep learning systems from both the learning task and deep model. Experimental results demonstrate that our learning task-aware method is much more robust than traditional classification while retaining the accuracy.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdversarial Robustness in Machine Learning · Anomaly Detection Techniques and Applications · Advanced Malware Detection Techniques