
Deep Partition Aggregation: Provable Defense against General Poisoning Attacks
Adversarial poisoning attacks distort training data in order to corrupt ...
Influence Functions in Deep Learning Are Fragile
Influence functions approximate the effect of training samples in testt...
Perceptual Adversarial Robustness: Defense Against Unseen Threat Models
We present adversarial attacks and defenses for the perceptual adversari...
Fairness Through Robustness: Investigating Robustness Disparity in Deep Learning
Deep neural networks are being increasingly used in real world applicati...
SecondOrder Provable Defenses against Adversarial Attacks
A robustness certificate is the minimum distance of a given input to the...
Subadditivity of Probability Divergences on BayesNets with Applications to Time Series GANs
GANs for time series data often use sliding windows or selfattention to...
(De)Randomized Smoothing for Certifiable Defense against Patch Attacks
Patch adversarial attacks on images, in which the attacker can distort p...
Curse of Dimensionality on Randomized Smoothing for Certifiable Robustness
Randomized smoothing, using just a simple isotropic Gaussian distributio...
Playing it Safe: Adversarial Robustness with an Abstain Option
We explore adversarial robustness in the setting in which it is acceptab...
Bounding Singular Values of Convolution Layers
In deep neural networks, the spectral norm of the Jacobian of a layer bo...
Robustness Certificates for Sparse Adversarial Attacks by Randomized Ablation
Recently, techniques have been developed to provably guarantee the robus...
Adversarial Robustness of FlowBased Generative Models
Flowbased generative models leverage invertible generator functions to ...
SecondOrder Group Influence Functions for BlackBox Predictions
With the rapid adoption of machine learning systems in sensitive applica...
Quantum Wasserstein Generative Adversarial Networks
The study of quantum generative models is wellmotivated, not only becau...
InputCell Attention Reduces Vanishing Saliency of Recurrent Neural Networks
Recent efforts to improve the interpretability of deep neural networks u...
Wasserstein Smoothing: Certified Robustness against Wasserstein Adversarial Attacks
In the last couple of years, several adversarial attack methods based on...
Strong Baseline Defenses Against CleanLabel Poisoning Attacks
Targeted cleanlabel poisoning is a type of adversarial attack on machin...
Interpretable Adversarial Training for Text
Generating highquality and interpretable adversarial examples in the te...
Functional Adversarial Attacks
We propose functional adversarial attacks, a novel class of threat model...
Certifiably Robust Interpretation in Deep Learning
Although gradientbased saliency maps are popular methods for deep learn...
Adversarially Robust Distillation
Knowledge distillation is effective for producing small highperformance...
Normalized Wasserstein Distance for Mixture Distributions with Applications in Adversarial Learning and Domain Adaptation
Understanding proper distance measures between distributions is at the c...
Understanding Impacts of HighOrder Loss Approximations and Features in Deep Learning Interpretation
Current methods to interpret deep learning models by generating saliency...
Robustness Certificates Against Adversarial Examples for ReLU Networks
While neural networks have achieved high performance in different learni...
Compressing GANs using Knowledge Distillation
Generative Adversarial Networks (GANs) have been used in several machine...
Entropic GANs meet VAEs: A Statistical Approach to Compute Sample Likelihoods in GANs
Building on the success of deep learning, two modern approaches to learn...
Are adversarial examples inevitable?
A wide range of defenses have been proposed to harden neural networks ag...
Understanding GANs: the LQG Setting
Generative Adversarial Networks (GANs) have become a popular method to l...
Porcupine Neural Networks: (Almost) All Local Optima are Global
Neural networks have been used prominently in several machine learning a...
Maximally Correlated Principal Component Analysis
In the era of big data, reducing data dimensionality is critical in many...
Network Maximal Correlation
We introduce Network Maximal Correlation (NMC) as a multivariate measure...
Maximum Likelihood Latent Space Embedding of Logistic Random Dot Product Graphs
A latent space model for a family of random graphs assigns realvalued v...
