{"id":"https://openalex.org/W7123347420","doi":"https://doi.org/10.1109/icspis67605.2025.11318369","title":"Invariance Testing Through Adversarial Perturbations: A Short Survey of Methods and Challenges","display_name":"Invariance Testing Through Adversarial Perturbations: A Short Survey of Methods and Challenges","publication_year":2025,"publication_date":"2025-11-18","ids":{"openalex":"https://openalex.org/W7123347420","doi":"https://doi.org/10.1109/icspis67605.2025.11318369"},"language":null,"primary_location":{"id":"doi:10.1109/icspis67605.2025.11318369","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icspis67605.2025.11318369","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 8th International Conference on Signal Processing and Information Security (ICSPIS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5111363129","display_name":"Yuanzhe Jin","orcid":null},"institutions":[{"id":"https://openalex.org/I40120149","display_name":"University of Oxford","ror":"https://ror.org/052gg0110","country_code":"GB","type":"education","lineage":["https://openalex.org/I40120149"]},{"id":"https://openalex.org/I4210146410","display_name":"Science Oxford","ror":"https://ror.org/04j8yhy50","country_code":"GB","type":"nonprofit","lineage":["https://openalex.org/I4210146410"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Yuanzhe Jin","raw_affiliation_strings":["University of Oxford,Department of Engineering Science,Oxford,United Kingdom"],"affiliations":[{"raw_affiliation_string":"University of Oxford,Department of Engineering Science,Oxford,United Kingdom","institution_ids":["https://openalex.org/I4210146410","https://openalex.org/I40120149"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":["https://openalex.org/A5111363129"],"corresponding_institution_ids":["https://openalex.org/I40120149","https://openalex.org/I4210146410"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.85826496,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9871000051498413,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9871000051498413,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.00279999990016222,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10883","display_name":"Ethics and Social Impacts of AI","score":0.001500000013038516,"subfield":{"id":"https://openalex.org/subfields/3311","display_name":"Safety Research"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.9045000076293945},{"id":"https://openalex.org/keywords/generative-grammar","display_name":"Generative grammar","score":0.5913000106811523},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.4984000027179718},{"id":"https://openalex.org/keywords/trustworthiness","display_name":"Trustworthiness","score":0.4797999858856201},{"id":"https://openalex.org/keywords/resilience","display_name":"Resilience (materials science)","score":0.38589999079704285},{"id":"https://openalex.org/keywords/threat-model","display_name":"Threat model","score":0.38119998574256897}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.9045000076293945},{"id":"https://openalex.org/C39890363","wikidata":"https://www.wikidata.org/wiki/Q36108","display_name":"Generative grammar","level":2,"score":0.5913000106811523},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.5853999853134155},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.4984000027179718},{"id":"https://openalex.org/C153701036","wikidata":"https://www.wikidata.org/wiki/Q659974","display_name":"Trustworthiness","level":2,"score":0.4797999858856201},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4025000035762787},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4011000096797943},{"id":"https://openalex.org/C2779585090","wikidata":"https://www.wikidata.org/wiki/Q3457762","display_name":"Resilience (materials science)","level":2,"score":0.38589999079704285},{"id":"https://openalex.org/C140547941","wikidata":"https://www.wikidata.org/wiki/Q7797194","display_name":"Threat model","level":2,"score":0.38119998574256897},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.37310001254081726},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.3206000030040741},{"id":"https://openalex.org/C43214815","wikidata":"https://www.wikidata.org/wiki/Q7310987","display_name":"Reliability (semiconductor)","level":3,"score":0.29190000891685486},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.2849000096321106},{"id":"https://openalex.org/C2781045450","wikidata":"https://www.wikidata.org/wiki/Q254569","display_name":"Backdoor","level":2,"score":0.2784000039100647},{"id":"https://openalex.org/C2778403875","wikidata":"https://www.wikidata.org/wiki/Q20312394","display_name":"Adversarial machine learning","level":3,"score":0.2741999924182892},{"id":"https://openalex.org/C1589151","wikidata":"https://www.wikidata.org/wiki/Q6804207","display_name":"Measurement invariance","level":4,"score":0.267300009727478}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icspis67605.2025.11318369","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icspis67605.2025.11318369","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2025 8th International Conference on Signal Processing and Information Security (ICSPIS)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Adversarial":[0],"attack":[1,91],"testing":[2,29,83],"has":[3],"emerged":[4],"as":[5,30],"a":[6,31],"powerful":[7],"tool":[8],"for":[9,122],"probing":[10],"machine":[11],"learning":[12],"model":[13,36,94,101],"robustness.":[14],"While":[15],"traditional":[16],"adversarial":[17,61],"attacks":[18],"focus":[19],"on":[20],"finding":[21],"inputs":[22],"that":[23,34],"cause":[24],"misclassification,":[25],"we":[26],"study":[27],"invariance":[28,54,65,82],"complementary":[32],"approach":[33],"evaluates":[35],"resilience":[37],"to":[38,47,112],"semantically-preserving":[39],"transformations.":[40],"This":[41,109],"paper":[42],"examines":[43],"various":[44],"perturbation":[45],"methods":[46],"assess":[48],"how":[49],"well":[50],"models":[51,74],"preserve":[52],"key":[53],"properties.":[55],"Our":[56],"analysis":[57],"reveals":[58],"trade-offs":[59],"between":[60],"robustness":[62],"and":[63,75,93,103,118],"classical":[64],"dimensions.":[66],"We":[67],"also":[68],"explore":[69],"challenges":[70],"in":[71,84,105],"evaluating":[72],"generative":[73],"copyright-preserving":[76],"mechanisms":[77],"through":[78],"watermark":[79],"attacks,":[80],"highlighting":[81],"digital":[85],"rights":[86],"management.":[87],"Through":[88],"comparisons":[89],"across":[90],"types":[92],"architectures,":[95],"our":[96],"findings":[97],"provide":[98],"insights":[99],"into":[100],"reliability":[102],"security":[104],"information":[106],"integration":[107],"systems.":[108],"work":[110],"contributes":[111],"the":[113],"development":[114],"of":[115],"more":[116],"trustworthy":[117],"resilient":[119],"AI":[120],"systems":[121],"real-world,":[123],"web-based":[124],"environments.":[125]},"counts_by_year":[],"updated_date":"2026-01-14T00:46:21.520733","created_date":"2026-01-14T00:00:00"}