Stochastic Local Winner-Takes-All Networks Enable Profound Adversarial Robustness
- 1. Cyprus University of Technology
- 2. National and Kapodistrian University of Athens
Description
This entry accommodates the main paper "Stochastic Local Winner-Takes-All Networks Enable Profound Adversarial Robustness", NIPS BDL Workshop 2021, and its pyTorch-based code implementation.
Abstract:
This work explores the potency of stochastic competition-based activations, namely Stochastic Local Winner-Takes-All (LWTA), against powerful (gradient-based) white-box and black-box adversarial attacks; we especially focus on Adversarial Training settings. In our work, we replace the conventional ReLU-based nonlinearities with blocks comprising locally and stochastically competing linear units. The output of each network layer now yields a sparse output, depending on the outcome of winner sampling in each block. We rely on the Variational Bayesian framework for training and inference; we incorporate conventional PGD-based adversarial training arguments to increase the overall adversarial robustness. As we experimentally show, the arising networks yield state-of-the-art robustness against powerful adversarial attacks while retaining very high classification rate in the benign case.
Files
stochastic_local_winner_takes_.pdf
Files
(619.2 kB)
| Name | Size | Download all |
|---|---|---|
|
md5:d83ad41a05cb3279ab0bb50001eebe35
|
516.2 kB | Preview Download |
|
md5:40215bced1bcb391b065f80f426ea115
|
103.0 kB | Preview Download |