Browse by author
Lookup NU author(s): Dr Varun OjhaORCiD
Full text for this publication is not currently held within this repository. Alternative links are provided below where available.
© 2021, Springer Nature Switzerland AG. We identify fragile and robust neurons of deep learning architectures using nodal dropouts of the first convolutional layer. Using an adversarial targeting algorithm, we correlate these neurons with the distribution of adversarial attacks on the network. Adversarial robustness of neural networks has gained significant attention in recent times and highlights an intrinsic weaknesses of deep learning networks against carefully constructed distortion applied to input images. In this paper, we evaluate the robustness of state-of-the-art image classification models trained on the MNIST and CIFAR10 datasets against the fast gradient sign method attack, a simple yet effective method of deceiving neural networks. Our method identifies the specific neurons of a network that are most affected by the adversarial attack being applied. We, therefore, propose to make fragile neurons more robust against these attacks by compressing features within robust neurons and amplifying the fragile neurons proportionally.
Author(s): Pravin C, Martino I, Nicosia G, Ojha V
Publication type: Conference Proceedings (inc. Abstract)
Publication status: Published
Conference Name: Artificial Neural Networks and Machine Learning: 30th International Conference on Artificial Neural Networks (ICANN 2021)
Year of Conference: 2021
Pages: 16-28
Print publication date: 12/09/2021
Online publication date: 11/09/2021
Acceptance date: 02/04/2018
ISSN: 0302-9743
Publisher: Springer
URL: https://doi.org/10.1007/978-3-030-86362-3_2
DOI: 10.1007/978-3-030-86362-3_2
Library holdings: Search Newcastle University Library for this item
Series Title: Lecture Notes in Computer Science
ISBN: 9783030863616
