Adversarial Examples in Deep Neural Networks: An Overview
Authors
Abstract
Deep learning architectures are vulnerable to adversarial perturbations. They are added to the input and alter drastically the output of deep networks. These instances are called adversarial examples. They are observed in various learning tasks from supervised learning to unsupervised and reinforcement learning. In this chapter, we review some of the most important highlights in theory and practice of adversarial examples. The focus is on designing adversarial attacks, theoretical investigation into the nature of adversarial examples, and establishing defenses against adversarial attacks. A common thread in the design of adversarial attacks is the perturbation analysis of learning algorithms. Many existing algorithms rely implicitly on perturbation analysis for generating adversarial examples. The summary of most powerful attacks are presented in this light. We overview various theories behind the existence of adversarial examples as well as theories that consider the relation between the generalization error and adversarial robustness. Finally, various defenses against adversarial examples are also discussed.
Keywords
Adversarial examples · Deep learning · Classification · Regression · Perturbation analysis · Statistical learning · Adversarial training · Adversarial defenses
ISBN: 978-3-030-31759-1
DOI: 10.1007/978-3-030-31760-7_2
BibTEX Reference Entry 
@incollection{BaBeMa-3,
author = {Emilio Rafael Balda and Arash Behboodi and Rudolf Mathar},
title = "Adversarial Examples in Deep Neural Networks: An Overview",
pages = "31--65",
volume = "865",
publisher = "Springer",
series = "Studies in Computational Intelligence",
editor = "Witold Pedrycz;Shyi-Ming Chen",
address = "Cham",
booktitle = "Deep Learning: Algorithms and Applications",
edition = "Computational Intelligence and Complexity",
year = -3,
}
Downloads
Download bibtex-file
Maintained by:
Detlef Maus,
Ansgar Johannes Pflipsen
Design by: Peter Schwabe
Data Privacy Statement