Dynamic Guidance Adversarial Distillation with Enhanced Teacher Knowledge
Hyejin Park, Dongbo Min
TL;DR
This paper introduces DGAD, a novel adversarial distillation framework that dynamically guides knowledge transfer from a robust teacher to a student, improving accuracy and robustness against adversarial attacks.
Contribution
The paper proposes the DGAD framework with MAP, ELS, and PCR techniques to enhance adversarial distillation, addressing sample importance and misclassification issues.
Findings
DGAD improves clean data accuracy significantly.
DGAD enhances robustness against adversarial attacks.
Experimental results on CIFAR datasets validate effectiveness.
Abstract
In the realm of Adversarial Distillation (AD), strategic and precise knowledge transfer from an adversarially robust teacher model to a less robust student model is paramount. Our Dynamic Guidance Adversarial Distillation (DGAD) framework directly tackles the challenge of differential sample importance, with a keen focus on rectifying the teacher model's misclassifications. DGAD employs Misclassification-Aware Partitioning (MAP) to dynamically tailor the distillation focus, optimizing the learning process by steering towards the most reliable teacher predictions. Additionally, our Error-corrective Label Swapping (ELS) corrects misclassifications of the teacher on both clean and adversarially perturbed inputs, refining the quality of knowledge transfer. Further, Predictive Consistency Regularization (PCR) guarantees consistent performance of the student model across both clean and…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsGuidance and Control Systems
MethodsFocus