{"id":"https://openalex.org/W4289655307","doi":"https://doi.org/10.1109/isit50566.2022.9834822","title":"Improved Adversarial Robustness by Hardened Prediction","display_name":"Improved Adversarial Robustness by Hardened Prediction","publication_year":2022,"publication_date":"2022-06-26","ids":{"openalex":"https://openalex.org/W4289655307","doi":"https://doi.org/10.1109/isit50566.2022.9834822"},"language":"en","primary_location":{"id":"doi:10.1109/isit50566.2022.9834822","is_oa":false,"landing_page_url":"https://doi.org/10.1109/isit50566.2022.9834822","pdf_url":null,"source":{"id":"https://openalex.org/S4363604560","display_name":"2022 IEEE International Symposium on Information Theory (ISIT)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Symposium on Information Theory (ISIT)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5013142027","display_name":"Qihang Liang","orcid":"https://orcid.org/0000-0003-1144-008X"},"institutions":[{"id":"https://openalex.org/I168719708","display_name":"City University of Hong Kong","ror":"https://ror.org/03q8dnn23","country_code":"HK","type":"education","lineage":["https://openalex.org/I168719708"]}],"countries":["HK"],"is_corresponding":true,"raw_author_name":"Qihang Liang","raw_affiliation_strings":["City University of Hong Kong,Department of Computer Science","Department of Computer Science, City University of Hong Kong"],"affiliations":[{"raw_affiliation_string":"City University of Hong Kong,Department of Computer Science","institution_ids":["https://openalex.org/I168719708"]},{"raw_affiliation_string":"Department of Computer Science, City University of Hong Kong","institution_ids":["https://openalex.org/I168719708"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5065701256","display_name":"Chung Chan","orcid":"https://orcid.org/0000-0003-2006-0898"},"institutions":[{"id":"https://openalex.org/I168719708","display_name":"City University of Hong Kong","ror":"https://ror.org/03q8dnn23","country_code":"HK","type":"education","lineage":["https://openalex.org/I168719708"]}],"countries":["HK"],"is_corresponding":false,"raw_author_name":"Chung Chan","raw_affiliation_strings":["City University of Hong Kong,Department of Computer Science","Department of Computer Science, City University of Hong Kong"],"affiliations":[{"raw_affiliation_string":"City University of Hong Kong,Department of Computer Science","institution_ids":["https://openalex.org/I168719708"]},{"raw_affiliation_string":"Department of Computer Science, City University of Hong Kong","institution_ids":["https://openalex.org/I168719708"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5013142027"],"corresponding_institution_ids":["https://openalex.org/I168719708"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.06805533,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"2952","last_page":"2956"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T14117","display_name":"Integrated Circuits and Semiconductor Failure Analysis","score":0.9675999879837036,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11515","display_name":"Bacillus and Francisella bacterial research","score":0.9593999981880188,"subfield":{"id":"https://openalex.org/subfields/1312","display_name":"Molecular Biology"},"field":{"id":"https://openalex.org/fields/13","display_name":"Biochemistry, Genetics and Molecular Biology"},"domain":{"id":"https://openalex.org/domains/1","display_name":"Life Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.7549874782562256},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.7062806487083435},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6380110383033752},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3449341654777527},{"id":"https://openalex.org/keywords/chemistry","display_name":"Chemistry","score":0.05632522702217102}],"concepts":[{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.7549874782562256},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.7062806487083435},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6380110383033752},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3449341654777527},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.05632522702217102},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/isit50566.2022.9834822","is_oa":false,"landing_page_url":"https://doi.org/10.1109/isit50566.2022.9834822","pdf_url":null,"source":{"id":"https://openalex.org/S4363604560","display_name":"2022 IEEE International Symposium on Information Theory (ISIT)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 IEEE International Symposium on Information Theory (ISIT)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.7900000214576721,"display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320321019","display_name":"University Grants Committee","ror":"https://ror.org/00djwmt25"}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":22,"referenced_works":["https://openalex.org/W1945616565","https://openalex.org/W2745565856","https://openalex.org/W2765424254","https://openalex.org/W2913266441","https://openalex.org/W2963070423","https://openalex.org/W2963143631","https://openalex.org/W2963857521","https://openalex.org/W3015625436","https://openalex.org/W3023175709","https://openalex.org/W3103557498","https://openalex.org/W3170639959","https://openalex.org/W3178946670","https://openalex.org/W4293469690","https://openalex.org/W4293846201","https://openalex.org/W6640425456","https://openalex.org/W6729906282","https://openalex.org/W6739868092","https://openalex.org/W6746608116","https://openalex.org/W6748475379","https://openalex.org/W6759129252","https://openalex.org/W6796285927","https://openalex.org/W6798088609"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2502115930","https://openalex.org/W2482350142","https://openalex.org/W4246396837","https://openalex.org/W3126451824","https://openalex.org/W1561927205","https://openalex.org/W3191453585","https://openalex.org/W4297672492","https://openalex.org/W4310988119"],"abstract_inverted_index":{"We":[0],"find":[1],"a":[2,9,14,55,89,99],"way":[3],"to":[4,33,48,71],"harden":[5],"the":[6,30,34,37,44,104,115,120],"decision":[7],"of":[8,64],"neural":[10],"network.":[11],"Combining":[12],"such":[13],"hardening":[15,116],"effect":[16,117],"with":[17,79,92],"another":[18],"adversarial":[19,26,60,76],"training":[20,77],"method":[21,66],"would":[22],"further":[23,127],"improve":[24],"its":[25],"robustness.":[27],"By":[28],"suppressing":[29],"logit":[31],"corresponding":[32],"class":[35],"that":[36,88],"model":[38,45,90],"has":[39],"highest":[40],"confidence":[41],"during":[42],"training,":[43],"is":[46,125],"encouraged":[47],"make":[49],"harder":[50],"predictions.":[51],"This":[52],"significantly":[53],"improves":[54],"model\u2019s":[56],"robustness":[57,102],"against":[58,103,111],"gradient-based":[59,123],"attacks.":[61,113],"The":[62,84],"simplicity":[63],"our":[65],"makes":[67],"it":[68],"very":[69],"easy":[70],"be":[72],"deployed":[73],"on":[74],"existing":[75],"schemes":[78],"almost":[80],"no":[81],"computational":[82],"overhead.":[83],"experimental":[85],"results":[86],"show":[87],"trained":[91],"TRADES":[93],"benefits":[94],"from":[95,122],"hardening.":[96],"It":[97],"shows":[98],"greatly":[100],"improved":[101],"PGD":[105],"attack":[106],"while":[107],"retaining":[108],"similar":[109],"performance":[110],"decision-based":[112],"How":[114],"effectively":[118],"defends":[119],"models":[121],"attacks":[124],"worth":[126],"investigation.":[128]},"counts_by_year":[],"updated_date":"2026-03-25T13:04:00.132906","created_date":"2025-10-10T00:00:00"}