Back to Search Start Over

Improving Fast Minimum-Norm Attacks with Hyperparameter Optimization

Authors :
Floris, Giuseppe
Mura, Raffaele
Scionis, Luca
Piras, Giorgio
Pintor, Maura
Demontis, Ambra
Biggio, Battista
Floris, Giuseppe
Mura, Raffaele
Scionis, Luca
Piras, Giorgio
Pintor, Maura
Demontis, Ambra
Biggio, Battista
Publication Year :
2023

Abstract

Evaluating the adversarial robustness of machine learning models using gradient-based attacks is challenging. In this work, we show that hyperparameter optimization can improve fast minimum-norm attacks by automating the selection of the loss function, the optimizer and the step-size scheduler, along with the corresponding hyperparameters. Our extensive evaluation involving several robust models demonstrates the improved efficacy of fast minimum-norm attacks when hyper-up with hyperparameter optimization. We release our open-source code at https://github.com/pralab/HO-FMN.<br />Comment: Accepted at ESANN23

Details

Database :
OAIster
Publication Type :
Electronic Resource
Accession number :
edsoai.on1438488475
Document Type :
Electronic Resource
Full Text :
https://doi.org/10.14428.esann.2023.ES2023-164
Full Text Access
View/download PDF

Tools

Authors Abstract Subjects Details