Why Does Little Robustness Help? Understanding and Improving Adversarial Transferability from Surrogate Training

15 July 2023

Xiaogeng Liu

Papers citing "Why Does Little Robustness Help? Understanding and Improving Adversarial Transferability from Surrogate Training"

50 / 80 papers shown

Title
Improving Generalization of Universal Adversarial Perturbation via Dynamic Maximin Optimization Yize Zhang Yingzhe Xu Junyu Shi L. Zhang Shengshan Hu Minghui Li Yanjun Zhang AAML 119 1 0 17 Mar 2025
Understanding Model Ensemble in Transferable Adversarial Attack Wei Yao Zeliang Zhang Huayi Tang Yong Liu 68 3 0 09 Oct 2024
Adversarial Example Soups: Improving Transferability and Stealthiness for Free Bo Yang Hengwei Zhang Jin-dong Wang Yulong Yang Chenhao Lin Chao Shen Zhengyu Zhao SILM AAML 113 2 0 27 Feb 2024
AdvCLIP: Downstream-agnostic Adversarial Examples in Multimodal Contrastive Learning Ziqi Zhou Shengshan Hu Minghui Li Hangtao Zhang Yechao Zhang Hai Jin AAML 92 69 0 14 Aug 2023
Downstream-agnostic Adversarial Examples Ziqi Zhou Shengshan Hu Rui-Qing Zhao Qian Wang L. Zhang Junhui Hou Hai Jin SILM AAML 54 24 0 23 Jul 2023
GNP Attack: Transferable Adversarial Examples via Gradient Norm Penalty Tao Wu Tie-Mei Luo D. Wunsch AAML 42 9 0 09 Jul 2023
Rethinking the Backward Propagation for Adversarial Transferability Xiaosen Wang Kangheng Tong Kun He AAML SILM 82 28 0 22 Jun 2023
Boosting Adversarial Transferability by Achieving Flat Local Maxima Zhijin Ge Hongying Liu Xiaosen Wang Fanhua Shang Yuanyuan Liu AAML 58 44 0 08 Jun 2023
Rethinking Model Ensemble in Transfer-based Adversarial Attacks Huanran Chen Yichi Zhang Yinpeng Dong Xiao Yang Hang Su Junyi Zhu AAML 47 62 0 16 Mar 2023
Making Substitute Models More Bayesian Can Enhance Transferability of Adversarial Examples Qizhang Li Yiwen Guo W. Zuo Hao Chen AAML 70 36 0 10 Feb 2023
How Does Sharpness-Aware Minimization Minimize Sharpness? Kaiyue Wen Tengyu Ma Zhiyuan Li AAML 44 50 0 10 Nov 2022
Boosting the Transferability of Adversarial Attacks with Reverse Adversarial Perturbation Zeyu Qin Yanbo Fan Yi Liu Li Shen Yong Zhang Jue Wang Baoyuan Wu AAML SILM 43 81 0 12 Oct 2022
Towards Understanding and Boosting Adversarial Transferability from a Distribution Perspective Yao Zhu YueFeng Chen Xiaodan Li Kejiang Chen Yuan He Xiang Tian Bo Zheng Yao-wu Chen Qingming Huang AAML 44 59 0 09 Oct 2022
Understanding Gradient Regularization in Deep Learning: Efficient Finite-Difference Computation and Implicit Bias Ryo Karakida Tomoumi Takase Tomohiro Hayase Kazuki Osawa 27 15 0 06 Oct 2022
SAM as an Optimal Relaxation of Bayes Thomas Möllenhoff Mohammad Emtiyaz Khan BDL 57 33 0 04 Oct 2022
Understanding Adversarial Robustness Against On-manifold Adversarial Examples Jiancong Xiao Liusha Yang Yanbo Fan Jue Wang Zhimin Luo OOD 47 13 0 02 Oct 2022
Why neural networks find simple solutions: the many regularizers of geometric complexity Benoit Dherin Michael Munn M. Rosca David Barrett 74 31 0 27 Sep 2022
LGV: Boosting Adversarial Example Transferability from Large Geometric Vicinity Martin Gubri Maxime Cordy Mike Papadakis Yves Le Traon Koushik Sen AAML 53 51 0 26 Jul 2022
On the Role of Generalization in Transferability of Adversarial Examples Yilin Wang Farzan Farnia AAML 38 11 0 18 Jun 2022
Towards Understanding Sharpness-Aware Minimization Maksym Andriushchenko Nicolas Flammarion AAML 77 139 0 13 Jun 2022
Sharp-MAML: Sharpness-Aware Model-Agnostic Meta Learning Momin Abbas Quan-Wu Xiao Lisha Chen Pin-Yu Chen Tianyi Chen 50 78 0 08 Jun 2022
Transfer Attacks Revisited: A Large-Scale Empirical Study in Real Computer Vision Settings Yuhao Mao Chong Fu Sai-gang Wang S. Ji Xuhong Zhang Zhenguang Liu Junfeng Zhou A. Liu R. Beyah Ting Wang AAML 51 19 0 07 Apr 2022
Surrogate Gap Minimization Improves Sharpness-Aware Training Juntang Zhuang Boqing Gong Liangzhe Yuan Huayu Chen Hartwig Adam Nicha Dvornek S. Tatikonda James Duncan Ting Liu 59 152 0 15 Mar 2022
Towards Efficient Data-Centric Robust Machine Learning with Noise-based Augmentation Xiaogeng Liu Haoyu Wang Yechao Zhang Fangzhou Wu Shengshan Hu OOD 40 12 0 08 Mar 2022
Protecting Facial Privacy: Generating Adversarial Identity Masks via Style-robust Makeup Transfer Shengshan Hu Xiaogeng Liu Yechao Zhang Minghui Li L. Zhang Hai Jin Libing Wu AAML PICV 58 91 0 07 Mar 2022
Penalizing Gradient Norm for Efficiently Improving Generalization in Deep Learning Yang Zhao Hao Zhang Xiuyuan Hu 112 119 0 08 Feb 2022
Adversarially Robust Models may not Transfer Better: Sufficient Conditions for Domain Transferability from the View of Regularization Xiaojun Xu Jacky Y. Zhang Evelyn Ma Danny Son Oluwasanmi Koyejo Yue Liu 44 12 0 03 Feb 2022
Efficient Sharpness-aware Minimization for Improved Training of Neural Networks Jiawei Du Hanshu Yan Jiashi Feng Qiufeng Wang Liangli Zhen Rick Siow Mong Goh Vincent Y. F. Tan AAML 128 134 0 07 Oct 2021
Stochastic Training is Not Necessary for Generalization Jonas Geiping Micah Goldblum Phillip E. Pope Michael Moeller Tom Goldstein 126 75 0 29 Sep 2021
On Improving Adversarial Transferability of Vision Transformers Muzammal Naseer Kanchana Ranasinghe Salman Khan Fahad Shahbaz Khan Fatih Porikli ViT 63 94 0 08 Jun 2021
Quantifying and Improving Transferability in Domain Generalization Guojun Zhang Han Zhao Yaoliang Yu Pascal Poupart 65 38 0 07 Jun 2021
A Little Robustness Goes a Long Way: Leveraging Robust Features for Targeted Transfer Attacks Jacob Mitchell Springer Melanie Mitchell Garrett Kenyon AAML 58 43 0 03 Jun 2021
Exploring Memorization in Adversarial Training Yinpeng Dong Ke Xu Xiao Yang Tianyu Pang Zhijie Deng Hang Su Jun Zhu TDI 41 72 0 03 Jun 2021
When Vision Transformers Outperform ResNets without Pre-training or Strong Data Augmentations Xiangning Chen Cho-Jui Hsieh Boqing Gong ViT 76 324 0 03 Jun 2021
Improved OOD Generalization via Adversarial Training and Pre-training Mingyang Yi Lu Hou Jiacheng Sun Lifeng Shang Xin Jiang Qun Liu Zhi-Ming Ma VLM 55 83 0 24 May 2021
Relating Adversarially Robust Generalization to Flat Minima David Stutz Matthias Hein Bernt Schiele OOD 53 66 0 09 Apr 2021
An Empirical Study of Training Self-Supervised Vision Transformers Xinlei Chen Saining Xie Kaiming He ViT 132 1,837 0 05 Apr 2021
TRS: Transferability Reduced Ensemble via Encouraging Gradient Diversity and Model Smoothness Zhuolin Yang Linyi Li Xiaojun Xu Shiliang Zuo Qiang Chen Benjamin I. P. Rubinstein Pan Zhou Ce Zhang Yue Liu AAML 103 54 0 01 Apr 2021
On the Robustness of Vision Transformers to Adversarial Examples Kaleel Mahmood Rigel Mahmood Marten van Dijk ViT 85 221 0 31 Mar 2021
On the Adversarial Robustness of Vision Transformers Rulin Shao Zhouxing Shi Jinfeng Yi Pin-Yu Chen Cho-Jui Hsieh ViT 62 138 0 29 Mar 2021
On Generating Transferable Targeted Perturbations Muzammal Naseer Salman Khan Munawar Hayat Fahad Shahbaz Khan Fatih Porikli AAML 56 73 0 26 Mar 2021
Generalizing to Unseen Domains: A Survey on Domain Generalization Jindong Wang Cuiling Lan Chang-Shu Liu Yidong Ouyang Tao Qin Wang Lu Yiqiang Chen Wenjun Zeng Philip S. Yu OOD 178 1,198 0 02 Mar 2021
On the Origin of Implicit Regularization in Stochastic Gradient Descent Samuel L. Smith Benoit Dherin David Barrett Soham De MLT 27 202 0 28 Jan 2021
On Success and Simplicity: A Second Look at Transferable Targeted Attacks Zhengyu Zhao Zhuoran Liu Martha Larson AAML 75 123 0 21 Dec 2020
Backpropagating Linearly Improves Transferability of Adversarial Examples Yiwen Guo Qizhang Li Hao Chen FedML AAML 50 115 0 07 Dec 2020
Efficient and Transferable Adversarial Examples from Bayesian Neural Networks Martin Gubri Maxime Cordy Mike Papadakis Yves Le Traon Koushik Sen AAML 92 11 0 10 Nov 2020
An Image is Worth 16x16 Words: Transformers for Image Recognition at Scale Alexey Dosovitskiy Lucas Beyer Alexander Kolesnikov Dirk Weissenborn Xiaohua Zhai ... Matthias Minderer G. Heigold Sylvain Gelly Jakob Uszkoreit N. Houlsby ViT 458 40,217 0 22 Oct 2020
A Unified Approach to Interpreting and Boosting Adversarial Transferability Xin Eric Wang Jie Ren Shuyu Lin Xiangming Zhu Yisen Wang Quanshi Zhang AAML 52 95 0 08 Oct 2020
Sharpness-Aware Minimization for Efficiently Improving Generalization Pierre Foret Ariel Kleiner H. Mobahi Behnam Neyshabur AAML 176 1,323 0 03 Oct 2020
Implicit Gradient Regularization David Barrett Benoit Dherin 60 149 0 23 Sep 2020