Measuring Neural Net Robustness with Constraints
نویسندگان
چکیده
Despite having high accuracy, neural nets have been shown to be susceptible to adversarial examples, where a small perturbation to an input can cause it to become mislabeled. We propose metrics for measuring the robustness of a neural net and devise a novel algorithm for approximating these metrics based on an encoding of robustness as a linear program. We show how our metrics can be used to evaluate the robustness of deep neural nets with experiments on the MNIST and CIFAR-10 datasets. Our algorithm generates more informative estimates of robustness metrics compared to estimates based on existing algorithms. Furthermore, we show how existing approaches to improving robustness “overfit” to adversarial examples generated using a specific algorithm. Finally, we show that our techniques can be used to additionally improve neural net robustness both according to the metrics that we propose, but also according to previously proposed metrics.
منابع مشابه
Precise Robustness Analysis of Time Petri Nets with Inhibitor Arcs
Quantifying the robustness of a real-time system consists in measuring the maximum extension of the timing delays such that the system still satisfies its specification. In this work, we introduce a more precise notion of robustness, measuring the allowed variability of the timing delays in their neighbourhood. We consider here the formalism of time Petri nets extended with inhibitor arcs. We u...
متن کاملSliding Mode with Neural Network Regulator for DFIG Using Two-Level NPWM Strategy
This article presents a sliding mode control (SMC) with artificial neural network (ANN) regulator for the doubly fed induction generator (DFIG) using two-level neural pulse width modulation (NPWM) technique. The proposed control scheme of the DFIG-based wind turbine system (WTS) combines the advantages of SMC control and ANN regulator. The reaching conditions, robustness and stability of the sy...
متن کاملSimplification of a Petri Net controller in industrial systems
This paper deals with the problem of forbidden states in discrete event systems modeled by Petri Net. To avoid the forbidden states, some constraints which are called Generalized Mutual Exclusion Constraints can be assigned to them. Enforcing these constraints on the system can be performed using control places. However, when the number of these constraints is large, a large number of control p...
متن کاملRobustness of Time Petri Nets under Architectural Constraints
This paper addresses robustness issues in Time Petri Nets (TPN) under constraints imposed by an external architecture. The main objective is to check whether a timed specification, given as a TPN behaves as expected when subject to additional time and scheduling constraints, specified by another TPN that constrains the specification via read arcs. Our robustness property says that the constrain...
متن کاملA Novel Weight-Shared Multi-Stage Network Architecture of CNNs for Scale Invariance
Convolutional neural networks (CNNs) have demonstrated remarkable results in image classification tasks for benchmark and practical uses. The CNNs with deeper architectures have achieved higher performances recently thanks to their robustness to parallel shift of objects in images aw well as their numerous parameters and resulting high expression ability. However, the CNNs have a limited robust...
متن کامل