SHIELD: Secure Hypernetworks for Incremental Expansion Learning Defense

Patryk Krukowski,{\L}ukasz Gorczyca; Piotr Helm; Kamil Ksi\k{a}\.zek; Przemys{\l}aw Spurek

arXiv:2506.08255·cs.LG·November 24, 2025

SHIELD: Secure Hypernetworks for Incremental Expansion Learning Defense

Patryk Krukowski,{\L}ukasz Gorczyca, Piotr Helm, Kamil Ksi\k{a}\.zek, Przemys{\l}aw Spurek

PDF

Open Access

TL;DR

SHIELD is a novel framework combining hypernetworks and interval bound propagation to enable certifiably robust continual learning across tasks without replay buffers, achieving state-of-the-art accuracy under adversarial attacks.

Contribution

The paper introduces SHIELD, a hypernetwork-based continual learning method with Interval MixUp for certified robustness, eliminating the need for replay buffers and enabling scalable, robust incremental learning.

Findings

01

Outperforms existing methods under PGD and AutoAttack.

02

Achieves state-of-the-art average accuracy in robust continual learning.

03

Provides certified robustness guarantees with interval arithmetic.

Abstract

Continual learning under adversarial conditions remains an open problem, as existing methods often compromise either robustness, scalability, or both. We propose a novel framework that integrates Interval Bound Propagation (IBP) with a hypernetwork-based architecture to enable certifiably robust continual learning across sequential tasks. Our method, SHIELD, generates task-specific model parameters via a shared hypernetwork conditioned solely on compact task embeddings, eliminating the need for replay buffers or full model copies and enabling efficient over time. To further enhance robustness, we introduce Interval MixUp, a novel training strategy that blends virtual examples represented as $ℓ_{\infty}$ balls centered around MixUp points. Leveraging interval arithmetic, this technique guarantees certified robustness while mitigating the wrapping effect, resulting in smoother decision…

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.

Taxonomy

TopicsAdversarial Robustness in Machine Learning · Domain Adaptation and Few-Shot Learning · Advanced Neural Network Applications

MethodsHyperNetwork