Certifiably Robust Policy Learning against Adversarial Communication in Multi-agent Systems

Sun, Yanchao; Ruijie, Zheng,; Hassanzadeh, Parisa; Liang, Yongyuan; Feizi, Soheil; Ganesh, Sumitra; Huang, Furong

doi:10.48550/arxiv.2206.10158

Cited by 2 publications

(2 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…These defenses mainly focus on the adversarial perturbations directly applied to the agent's inputs. [61] propose a certifiable defense against adversarial communication in MARL systems. To the best of our knowledge, our paper is the first to provide provable convergence guarantees for adversarial training against adversarial attacks on behaviors of other agents in the environment.…”

Section: Attacks and Defenses On Communication Inmentioning

confidence: 99%

Adversarial attack and defense technologies in natural language processing: A survey

et al. 2022

View full text Add to dashboard Cite

Section: Attacks and Defenses On Communication Inmentioning

confidence: 99%

Adversarial attack and defense technologies in natural language processing: A survey

et al. 2022

View full text Add to dashboard Cite

“…RL has also been shown to be susceptible to perturbation in the observations of an RL agent (Huang et al 2017;Behzadan and Munir 2017) or in environments (Gleave et al 2019). Some adversarial defence works for RL are proposed (Donti et al 2020;Eysenbach and Levine 2021;Shen et al 2020;Sun et al 2022) and then towards these defences, stronger attacks are proposed (Salman et al 2019;Russo and Proutiere 2019). To end this repeated game, Wu et al (2021) and Kumar, Levine, and Feizi (2021) proposed to use probabilistic approaches to provide robustness certification for RLs.…”

Section: Introductionmentioning

confidence: 99%

Certified Policy Smoothing for Cooperative Multi-Agent Reinforcement Learning

Ronghui

Ruan

Marcolino

et al. 2023

AAAI

View full text Add to dashboard Cite

Cooperative multi-agent reinforcement learning (c-MARL) is widely applied in safety-critical scenarios, thus the analysis of robustness for c-MARL models is profoundly important. However, robustness certification for c-MARLs has not yet been explored in the community. In this paper, we propose a novel certification method, which is the first work to leverage a scalable approach for c-MARLs to determine actions with guaranteed certified bounds. c-MARL certification poses two key challenges compared to single-agent systems: (i) the accumulated uncertainty as the number of agents increases; (ii) the potential lack of impact when changing the action of a single agent into a global team reward. These challenges prevent us from directly using existing algorithms. Hence, we employ the false discovery rate (FDR) controlling procedure considering the importance of each agent to certify per-state robustness. We further propose a tree-search-based algorithm to find a lower bound of the global reward under the minimal certified perturbation. As our method is general, it can also be applied in a single-agent environment. We empirically show that our certification bounds are much tighter than those of state-of-the-art RL certification solutions. We also evaluate our method on two popular c-MARL algorithms: QMIX and VDN, under two different environments, with two and four agents. The experimental results show that our method can certify the robustness of all c-MARL models in various environments. Our tool CertifyCMARL is available at https://github.com/TrustAI/CertifyCMARL.

show abstract

Certifiably Robust Policy Learning against Adversarial Communication in Multi-agent Systems

Cited by 2 publications

References 19 publications

Adversarial attack and defense technologies in natural language processing: A survey

Adversarial attack and defense technologies in natural language processing: A survey

Certified Policy Smoothing for Cooperative Multi-Agent Reinforcement Learning

Contact Info

Product

Resources

About