Calagator

Support Calagator on Patreon

Get Involved: Blog | Forum | Code
Something not right? File an issue

Change 58792

Time

Attribute with previous and current values

Change #58792

2021-03-19

09:48:26

create Calagator::Event 1250477635 Public Tech Talk: "Refutation-based Adversarial Robustness Verification of Deep Neural Networks" by Dr. Zhen Zhang Roll back

description	nil	→	Advances in deep neural networks (DNNs) have increased their deployment in safety-critical systems, such as vision perception modules for autonomous vehicles and airborne collision avoidance system controllers for unmanned aircraft. Modern DNNs and linear classifiers are susceptible to adversarial input perturbations. Adversarial perturbations are small changes to an input that result in unexpected changes of the output. It is, therefore, critical to verify their adversarial robustness properties to avoid undesirable and even catastrophic behaviors. The problem of proving the adversarial robustness property is extremely challenging due to high dimensionality of the input spaces and large and complex modern neural networks. In this talk, I will present a highly versatile refutation-based adversarial robustness verification framework that performs abstraction and partitioning of discretized hyperrectangular regions in the input space of classification networks. A novel technique is presented for reliable adversarial example generation with improved variance. Coupled with a gradient-based dimension ranking heuristic, it enables the framework to place priority on refuting the adversarial robustness property to efficiently eliminate unsafe regions due to discovered adversarial examples and provide incremental feedback for retraining and analysis purposes. This work evaluates the efficiency of several dimension ranking heuristics on adversarial example generation and partitioning strategies of the proposed framework. I will also briefly describe my other research activities, including an efficient probabilistic verification tool for the analysis of infinite-state synthetic biological models and formal verification of Network-on-Chip systems.
end_time	nil	→	2021-03-26 14:00:00 -0700
id	nil	→	1250477635
start_time	nil	→	2021-03-26 13:00:00 -0700
title	nil	→	Public Tech Talk: "Refutation-based Adversarial Robustness Verification of Deep Neural Networks" by Dr. Zhen Zhang
url	nil	→	https://galois.com/blog/2021/03/public-tech-talk-refutation-based-adversarial-robustness-verification-of-deep-neural-networks/
venue_details	nil	→	Online only. Send a Zoom meeting info request to [email protected]

calagator.org 1.1.0