Feature Denoising for Improving Adversarial Robustness
computer vision and pattern recognition, 2019.
Adversarial attacks to image classification systems present challenges to convolutional networks and opportunities for understanding them. This study suggests that adversarial perturbations on images lead to noise in the features constructed by these networks. Motivated by this observation, we develop new network architectures that incr...More
PPT (Upload PPT)