{"id":"https://openalex.org/W4312279092","doi":"https://doi.org/10.1109/icmlc56445.2022.9941288","title":"Adversarial Robust Classification by Conditional Generative Model Inversion","display_name":"Adversarial Robust Classification by Conditional Generative Model Inversion","publication_year":2022,"publication_date":"2022-09-09","ids":{"openalex":"https://openalex.org/W4312279092","doi":"https://doi.org/10.1109/icmlc56445.2022.9941288"},"language":"en","primary_location":{"id":"doi:10.1109/icmlc56445.2022.9941288","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icmlc56445.2022.9941288","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 International Conference on Machine Learning and Cybernetics (ICMLC)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5056327876","display_name":"Mitra Alirezaei","orcid":"https://orcid.org/0000-0003-2417-1659"},"institutions":[{"id":"https://openalex.org/I223532165","display_name":"University of Utah","ror":"https://ror.org/03r0ha626","country_code":"US","type":"education","lineage":["https://openalex.org/I223532165"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Mitra Alirezaei","raw_affiliation_strings":["University of Utah,Department of Electrical and Computer Engineering,Salt Lake City,UT,USA","Department of Electrical and Computer Engineering, University of Utah, Salt Lake City, UT, USA"],"affiliations":[{"raw_affiliation_string":"University of Utah,Department of Electrical and Computer Engineering,Salt Lake City,UT,USA","institution_ids":["https://openalex.org/I223532165"]},{"raw_affiliation_string":"Department of Electrical and Computer Engineering, University of Utah, Salt Lake City, UT, USA","institution_ids":["https://openalex.org/I223532165"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5059125158","display_name":"Tolga Ta\u015fdizen","orcid":"https://orcid.org/0000-0001-6574-0366"},"institutions":[{"id":"https://openalex.org/I223532165","display_name":"University of Utah","ror":"https://ror.org/03r0ha626","country_code":"US","type":"education","lineage":["https://openalex.org/I223532165"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Tolga Tasdizen","raw_affiliation_strings":["University of Utah,Department of Electrical and Computer Engineering,Salt Lake City,UT,USA","Department of Electrical and Computer Engineering, University of Utah, Salt Lake City, UT, USA"],"affiliations":[{"raw_affiliation_string":"University of Utah,Department of Electrical and Computer Engineering,Salt Lake City,UT,USA","institution_ids":["https://openalex.org/I223532165"]},{"raw_affiliation_string":"Department of Electrical and Computer Engineering, University of Utah, Salt Lake City, UT, USA","institution_ids":["https://openalex.org/I223532165"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5056327876"],"corresponding_institution_ids":["https://openalex.org/I223532165"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.13212584,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"34","issue":null,"first_page":"152","last_page":"158"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11515","display_name":"Bacillus and Francisella bacterial research","score":0.9828000068664551,"subfield":{"id":"https://openalex.org/subfields/1312","display_name":"Molecular Biology"},"field":{"id":"https://openalex.org/fields/13","display_name":"Biochemistry, Genetics and Molecular Biology"},"domain":{"id":"https://openalex.org/domains/1","display_name":"Life Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9408000111579895,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.7960247993469238},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6806641221046448},{"id":"https://openalex.org/keywords/classifier","display_name":"Classifier (UML)","score":0.623855471611023},{"id":"https://openalex.org/keywords/generative-grammar","display_name":"Generative grammar","score":0.6001983880996704},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5670934915542603},{"id":"https://openalex.org/keywords/inversion","display_name":"Inversion (geology)","score":0.5341474413871765},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.4304218292236328},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.3831554651260376},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3716725707054138}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.7960247993469238},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6806641221046448},{"id":"https://openalex.org/C95623464","wikidata":"https://www.wikidata.org/wiki/Q1096149","display_name":"Classifier (UML)","level":2,"score":0.623855471611023},{"id":"https://openalex.org/C39890363","wikidata":"https://www.wikidata.org/wiki/Q36108","display_name":"Generative grammar","level":2,"score":0.6001983880996704},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5670934915542603},{"id":"https://openalex.org/C1893757","wikidata":"https://www.wikidata.org/wiki/Q3653001","display_name":"Inversion (geology)","level":3,"score":0.5341474413871765},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.4304218292236328},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.3831554651260376},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3716725707054138},{"id":"https://openalex.org/C109007969","wikidata":"https://www.wikidata.org/wiki/Q749565","display_name":"Structural basin","level":2,"score":0.0},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icmlc56445.2022.9941288","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icmlc56445.2022.9941288","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 International Conference on Machine Learning and Cybernetics (ICMLC)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.4699999988079071}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":67,"referenced_works":["https://openalex.org/W639708223","https://openalex.org/W1673923490","https://openalex.org/W1686810756","https://openalex.org/W1945616565","https://openalex.org/W2097117768","https://openalex.org/W2112796928","https://openalex.org/W2125389028","https://openalex.org/W2163605009","https://openalex.org/W2194775991","https://openalex.org/W2243397390","https://openalex.org/W2603766943","https://openalex.org/W2739748921","https://openalex.org/W2750384547","https://openalex.org/W2913235840","https://openalex.org/W2919115771","https://openalex.org/W2962759300","https://openalex.org/W2963001136","https://openalex.org/W2963037989","https://openalex.org/W2963062382","https://openalex.org/W2963105487","https://openalex.org/W2963143631","https://openalex.org/W2963158386","https://openalex.org/W2963392896","https://openalex.org/W2963857521","https://openalex.org/W2963920068","https://openalex.org/W2964197269","https://openalex.org/W2994702848","https://openalex.org/W3003135068","https://openalex.org/W3034530016","https://openalex.org/W3107235539","https://openalex.org/W3150450875","https://openalex.org/W3196506678","https://openalex.org/W3213164726","https://openalex.org/W3213831029","https://openalex.org/W3217439865","https://openalex.org/W4205145874","https://openalex.org/W4293846201","https://openalex.org/W4295312788","https://openalex.org/W4295521014","https://openalex.org/W4298289240","https://openalex.org/W4300511536","https://openalex.org/W4300677102","https://openalex.org/W6620707391","https://openalex.org/W6637162671","https://openalex.org/W6637373629","https://openalex.org/W6637568146","https://openalex.org/W6640425456","https://openalex.org/W6674914833","https://openalex.org/W6678815747","https://openalex.org/W6684191040","https://openalex.org/W6719080892","https://openalex.org/W6735913928","https://openalex.org/W6739868092","https://openalex.org/W6741832134","https://openalex.org/W6743688258","https://openalex.org/W6744679260","https://openalex.org/W6745272055","https://openalex.org/W6746402973","https://openalex.org/W6747819456","https://openalex.org/W6748204703","https://openalex.org/W6748475379","https://openalex.org/W6748711285","https://openalex.org/W6750404860","https://openalex.org/W6759158001","https://openalex.org/W6766978945","https://openalex.org/W6773734293","https://openalex.org/W6802755634"],"related_works":["https://openalex.org/W2502115930","https://openalex.org/W2482350142","https://openalex.org/W4246396837","https://openalex.org/W3126451824","https://openalex.org/W1561927205","https://openalex.org/W3191453585","https://openalex.org/W4297672492","https://openalex.org/W4310988119","https://openalex.org/W4285226279","https://openalex.org/W4288019534"],"abstract_inverted_index":{"Most":[0],"adversarial":[1,41,123,177],"attack":[2,52,245],"defense":[3],"methods":[4,10],"rely":[5],"on":[6,97,240],"obfuscating":[7],"gradients.":[8,224],"These":[9],"are":[11,173],"easily":[12],"circumvented":[13],"by":[14,24,70,153,184],"attacks":[15,25,74,124,235],"which":[16,26],"either":[17],"do":[18,35],"not":[19,36,64,222,238],"use":[20,29,194],"the":[21,30,51,80,103,107,111,126,133,145,154,166,187,193,207,244],"gradient":[22,32],"or":[23],"approximate":[27],"and":[28,67,200,236],"corrected":[31],"Defenses":[33],"that":[34,62,105,116,149,172,218,227],"obfuscate":[37,65,223],"gradients":[38,66],"such":[39,53],"as":[40,54,86],"training":[42],"exist,":[43],"but":[44],"these":[45],"approaches":[46],"generally":[47],"make":[48],"assumptions":[49],"about":[50,79,243],"its":[55,163],"magnitude.":[56],"We":[57,114,225],"propose":[58],"a":[59,93,117,136,141,157,181,196,211],"classification":[60,85],"model":[61,138,155,183,199,204,229],"does":[63,221,237],"is":[68,125,139,160,189,210,230],"robust":[69,182,232],"construction":[71],"against":[72,122,233],"black-box":[73,234],"without":[75],"assuming":[76],"prior":[77],"knowledge":[78,242],"attack.":[81],"Our":[82],"method":[83,188,220],"casts":[84],"an":[87],"optimization":[88],"problem":[89],"where":[90],"we":[91,216],"\"invert\"":[92],"conditional":[94,197],"generator":[95],"trained":[96],"unperturbed,":[98],"natural":[99],"images":[100,148,171],"to":[101,110,162,176,180,191],"find":[102],"class":[104,159],"generates":[106],"closest":[108],"sample":[109],"query":[112],"image.":[113],"hypothesize":[115],"potential":[118],"source":[119],"of":[120,129,147,195,206],"brittleness":[121],"high-to-low-dimensional":[127],"nature":[128],"feed-forward":[130,208],"classifiers.":[131],"On":[132],"other":[134],"hand,":[135],"generative":[137,198],"typically":[140],"low-to-high-dimensional":[142],"mapping.":[143],"Since":[144],"range":[146],"can":[150],"be":[151],"generated":[152],"for":[156],"given":[158],"limited":[161],"learned":[164],"manifold,":[165],"\"inversion\"":[167],"process":[168],"cannot":[169],"generate":[170],"arbitrarily":[174],"close":[175],"examples":[178],"leading":[179],"construction.":[185],"While":[186],"related":[190],"Defense-GAN,":[192,215],"inversion":[201],"in":[202],"our":[203,219,228],"instead":[205],"classifier":[209],"critical":[212],"difference.":[213],"Unlike":[214],"show":[217],"demonstrate":[226],"extremely":[231],"depend":[239],"previous":[241],"strength.":[246]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}