{"id":"https://openalex.org/W2738001131","doi":"https://doi.org/10.1145/3128572.3140449","title":"Efficient Defenses Against Adversarial Attacks","display_name":"Efficient Defenses Against Adversarial Attacks","publication_year":2017,"publication_date":"2017-11-03","ids":{"openalex":"https://openalex.org/W2738001131","doi":"https://doi.org/10.1145/3128572.3140449","mag":"2738001131"},"language":"en","primary_location":{"id":"doi:10.1145/3128572.3140449","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3128572.3140449","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 10th ACM Workshop on Artificial Intelligence and Security","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/1707.06728","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5003859975","display_name":"Valentina Zantedeschi","orcid":null},"institutions":[{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"funder","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I4210145784","display_name":"IBM Research - Ireland","ror":"https://ror.org/04jnxr720","country_code":"IE","type":"facility","lineage":["https://openalex.org/I1341412227","https://openalex.org/I4210114115","https://openalex.org/I4210145784"]},{"id":"https://openalex.org/I100532134","display_name":"Universit\u00e9 Claude Bernard Lyon 1","ror":"https://ror.org/029brtt94","country_code":"FR","type":"education","lineage":["https://openalex.org/I100532134","https://openalex.org/I203339264"]}],"countries":["FR","IE"],"is_corresponding":true,"raw_author_name":"Valentina Zantedeschi","raw_affiliation_strings":["Univ Lyon, UJM-Saint-Etienne, CNRS, Saint-Etienne, France & IBM Research Ireland, Dublin, Ireland","Univ Lyon, UJM-Saint-Etienne, CNRS, Saint-Etienne, France & IBM Research Ireland, Dublin, Ireland"],"affiliations":[{"raw_affiliation_string":"Univ Lyon, UJM-Saint-Etienne, CNRS, Saint-Etienne, France & IBM Research Ireland, Dublin, Ireland","institution_ids":["https://openalex.org/I4210145784","https://openalex.org/I1294671590","https://openalex.org/I100532134"]},{"raw_affiliation_string":"Univ Lyon, UJM-Saint-Etienne, CNRS, Saint-Etienne, France & IBM Research Ireland, Dublin, Ireland","institution_ids":["https://openalex.org/I4210145784","https://openalex.org/I100532134","https://openalex.org/I1294671590"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062708957","display_name":"Maria-Irina Nicolae","orcid":"https://orcid.org/0009-0002-2758-7481"},"institutions":[{"id":"https://openalex.org/I4210145784","display_name":"IBM Research - Ireland","ror":"https://ror.org/04jnxr720","country_code":"IE","type":"facility","lineage":["https://openalex.org/I1341412227","https://openalex.org/I4210114115","https://openalex.org/I4210145784"]}],"countries":["IE"],"is_corresponding":false,"raw_author_name":"Maria-Irina Nicolae","raw_affiliation_strings":["IBM Research Ireland, Dublin, Ireland","IBM Research \u2013 Ireland, Dublin, Ireland"],"affiliations":[{"raw_affiliation_string":"IBM Research Ireland, Dublin, Ireland","institution_ids":["https://openalex.org/I4210145784"]},{"raw_affiliation_string":"IBM Research \u2013 Ireland, Dublin, Ireland","institution_ids":["https://openalex.org/I4210145784"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5050489428","display_name":"Ambrish Rawat","orcid":null},"institutions":[{"id":"https://openalex.org/I4210145784","display_name":"IBM Research - Ireland","ror":"https://ror.org/04jnxr720","country_code":"IE","type":"facility","lineage":["https://openalex.org/I1341412227","https://openalex.org/I4210114115","https://openalex.org/I4210145784"]}],"countries":["IE"],"is_corresponding":false,"raw_author_name":"Ambrish Rawat","raw_affiliation_strings":["IBM Research Ireland, Dublin, Ireland","IBM Research \u2013 Ireland, Dublin, Ireland"],"affiliations":[{"raw_affiliation_string":"IBM Research Ireland, Dublin, Ireland","institution_ids":["https://openalex.org/I4210145784"]},{"raw_affiliation_string":"IBM Research \u2013 Ireland, Dublin, Ireland","institution_ids":["https://openalex.org/I4210145784"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5003859975"],"corresponding_institution_ids":["https://openalex.org/I100532134","https://openalex.org/I1294671590","https://openalex.org/I4210145784"],"apc_list":null,"apc_paid":null,"fwci":8.4796466,"has_fulltext":true,"cited_by_count":88,"citation_normalized_percentile":{"value":0.97605979,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"39","last_page":"49"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9781000018119812,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.968500018119812,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.9532331228256226},{"id":"https://openalex.org/keywords/deep-neural-networks","display_name":"Deep neural networks","score":0.7811259031295776},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.754471480846405},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.625079870223999},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.5553243160247803},{"id":"https://openalex.org/keywords/black-box","display_name":"Black box","score":0.5348438620567322},{"id":"https://openalex.org/keywords/range","display_name":"Range (aeronautics)","score":0.5097722411155701},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.4678678512573242},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.45923006534576416},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.39884835481643677},{"id":"https://openalex.org/keywords/engineering","display_name":"Engineering","score":0.12486681342124939}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.9532331228256226},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.7811259031295776},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.754471480846405},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.625079870223999},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.5553243160247803},{"id":"https://openalex.org/C94966114","wikidata":"https://www.wikidata.org/wiki/Q29256","display_name":"Black box","level":2,"score":0.5348438620567322},{"id":"https://openalex.org/C204323151","wikidata":"https://www.wikidata.org/wiki/Q905424","display_name":"Range (aeronautics)","level":2,"score":0.5097722411155701},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.4678678512573242},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.45923006534576416},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.39884835481643677},{"id":"https://openalex.org/C127413603","wikidata":"https://www.wikidata.org/wiki/Q11023","display_name":"Engineering","level":0,"score":0.12486681342124939},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0},{"id":"https://openalex.org/C146978453","wikidata":"https://www.wikidata.org/wiki/Q3798668","display_name":"Aerospace engineering","level":1,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1145/3128572.3140449","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3128572.3140449","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 10th ACM Workshop on Artificial Intelligence and Security","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:1707.06728","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1707.06728","pdf_url":"https://arxiv.org/pdf/1707.06728","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"doi:10.48550/arxiv.1707.06728","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.1707.06728","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"},{"id":"mag:2738001131","is_oa":false,"landing_page_url":null,"pdf_url":null,"source":null,"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":null}],"best_oa_location":{"id":"pmh:oai:arXiv.org:1707.06728","is_oa":true,"landing_page_url":"http://arxiv.org/abs/1707.06728","pdf_url":"https://arxiv.org/pdf/1707.06728","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2738001131.pdf","grobid_xml":"https://content.openalex.org/works/W2738001131.grobid-xml"},"referenced_works_count":29,"referenced_works":["https://openalex.org/W1673923490","https://openalex.org/W1932198206","https://openalex.org/W1945616565","https://openalex.org/W1968998685","https://openalex.org/W2112796928","https://openalex.org/W2151298633","https://openalex.org/W2194775991","https://openalex.org/W2293768274","https://openalex.org/W2296452361","https://openalex.org/W2460937040","https://openalex.org/W2512630954","https://openalex.org/W2517229335","https://openalex.org/W2590523583","https://openalex.org/W2594867206","https://openalex.org/W2603766943","https://openalex.org/W2605631833","https://openalex.org/W2606711863","https://openalex.org/W2607219512","https://openalex.org/W2618098489","https://openalex.org/W2619203976","https://openalex.org/W2619479788","https://openalex.org/W2682189153","https://openalex.org/W2919115771","https://openalex.org/W2950159395","https://openalex.org/W2950468330","https://openalex.org/W2953047670","https://openalex.org/W2963744840","https://openalex.org/W2963857521","https://openalex.org/W4256044039"],"related_works":["https://openalex.org/W2963626858","https://openalex.org/W2963207607","https://openalex.org/W2964153729","https://openalex.org/W2964082701","https://openalex.org/W2963857521","https://openalex.org/W2243397390","https://openalex.org/W2964253222","https://openalex.org/W2603766943","https://openalex.org/W2460937040","https://openalex.org/W2950864148","https://openalex.org/W2194775991","https://openalex.org/W3118608800","https://openalex.org/W2949311987","https://openalex.org/W2746600820","https://openalex.org/W2180612164","https://openalex.org/W3110076341","https://openalex.org/W2759471388","https://openalex.org/W2269778407","https://openalex.org/W2099471712","https://openalex.org/W1932198206"],"abstract_inverted_index":{"Following":[0],"the":[1,40,44,54,92,118,138,148,153,157],"recent":[2],"adoption":[3],"of":[4,13,35,42,46,49,56,94,120,140,156],"deep":[5],"neural":[6],"networks":[7],"(DNN)":[8],"accross":[9],"a":[10,32,37,64,95],"wide":[11],"range":[12],"applications,":[14],"adversarial":[15,109],"attacks":[16],"against":[17,123],"these":[18],"models":[19,78],"have":[20],"proven":[21],"to":[22,75,90,105,128,147],"be":[23,106],"an":[24,113],"indisputable":[25],"threat.":[26],"Adversarial":[27],"samples":[28],"are":[29],"crafted":[30],"with":[31],"deliberate":[33],"intention":[34],"undermining":[36],"system.":[38],"In":[39,59],"case":[41],"DNNs,":[43],"lack":[45],"better":[47,81],"understanding":[48],"their":[50],"working":[51],"has":[52],"prevented":[53],"development":[55],"efficient":[57],"defenses.":[58,84],"this":[60],"paper,":[61],"we":[62],"propose":[63],"new":[65],"defense":[66],"method":[67,122,142],"based":[68],"on":[69,160],"practical":[70],"observations":[71],"which":[72],"is":[73,88],"easy":[74],"integrate":[76],"into":[77],"and":[79,102,134],"performs":[80],"than":[82],"state-of-the-art":[83],"Our":[85],"proposed":[86],"solution":[87],"meant":[89],"reinforce":[91],"structure":[93],"DNN,":[96],"making":[97],"its":[98],"prediction":[99,154],"more":[100],"stable":[101],"less":[103],"likely":[104],"fooled":[107],"by":[108],"samples.":[110,162],"We":[111],"conduct":[112],"extensive":[114],"experimental":[115],"study":[116],"proving":[117],"efficiency":[119],"our":[121,141],"multiple":[124],"attacks,":[125],"comparing":[126],"it":[127],"numerous":[129],"defenses,":[130],"both":[131],"in":[132],"white-box":[133],"black-box":[135],"setups.":[136],"Additionally,":[137],"implementation":[139],"brings":[143],"almost":[144],"no":[145],"overhead":[146],"training":[149],"procedure,":[150],"while":[151],"maintaining":[152],"performance":[155],"original":[158],"model":[159],"clean":[161]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":6},{"year":2023,"cited_by_count":10},{"year":2022,"cited_by_count":13},{"year":2021,"cited_by_count":18},{"year":2020,"cited_by_count":10},{"year":2019,"cited_by_count":12},{"year":2018,"cited_by_count":9},{"year":2017,"cited_by_count":6},{"year":2012,"cited_by_count":1}],"updated_date":"2026-02-09T09:26:11.010843","created_date":"2025-10-10T00:00:00"}