← Back to papers
2021 ICCV ICCV 2021

Augmented Lagrangian Adversarial Attacks

Abstract

Adversarial attack algorithms are dominated by penalty methods, which are slow in practice, or more efficient distance-customized methods, which are heavily tailored to the properties of the considered distance. We propose a white-box attack algorithm to generate minimally perturbed adversarial examples based on Augmented Lagrangian principles. We bring several algorithmic modifications, which have a crucial effect on performance. Our attack enjoys the generality of penalty methods and the computational efficiency of distance-customized algorithms, and can be readily used for a wide set of distances. We compare our attack to state-of-the-art methods on three datasets and several models, and consistently obtain competitive performances with similar or lower computational complexity.

🐝 Cross-Pollinator — Artificial Intelligence, Computer Science, Computer Vision, Data Science & Analytics, Deep Learning, Healthcare & Medicine, Interdisciplinary, Knowledge & Reasoning, Machine Learning, Mathematics & Optimization, Natural Language Processing, Reinforcement Learning, Security & Privacy, Speech & Audio

Authors

Jérôme Rony , Eric Granger , Marco Pedersoli , Ismail Ben Ayed

Topics

Machine Learning > Learning Types > Adversarial Learning Machine Learning > Optimization & Theory > Optimization

Keywords

augmented lagrangian adversarial attack adversarial example
Download PDF

Related papers

Spatial-Temporal Transformer for Dynamic Scene Graph Generation 2021
ARAPReg: An As-Rigid-As Possible Regularization Loss for Learning Deformable Shape Generators 2021
A Broad Study on the Transferability of Visual Representations With Contrastive Learning 2021
Query Adaptive Few-Shot Object Detection With Heterogeneous Graph Convolutional Networks 2021
Self-Supervised Neural Networks for Spectral Snapshot Compressive Imaging 2021