Composite Adversarial Attacks

Abstract: Adversarial attack is a technique for deceiving Machine Learning (ML) models, which provides a way to evaluate the adversarial robustness. In practice, attack algorithms are artificially selected and tuned by human experts to break a ML system. However, manual selection of attackers tends to be sub-optimal, leading to a mistakenly assessment of model security. In this paper, a new procedure called Composite Adversarial Attack (CAA) is proposed for automatically searching the best combination of attack algorith… Show more

“…Laidlaw and Feizi (Laidlaw & Feizi, 2019) propose the ReColorAdv attack, which admit multi-functional threats to be used for perturbing every input pixel and also combine with additional p -norm threat. Instead of changing input by adding perturbation functionally, (Mao et al, 2020) rather utilizes genetic algorithms for searching the best combination in multiple attacks that are stronger than single attack. However, they only consider searching the order of attack combination in particular norm space (i.e., 2 , ∞ and corruption semantic space), which is different from our multiple and sequential attack setting.…”

Towards Compositional Adversarial Robustness: Generalizing Adversarial Training to Composite Semantic Perturbations

“…Laidlaw and Feizi (Laidlaw & Feizi, 2019) propose the ReColorAdv attack, which admit multi-functional threats to be used for perturbing every input pixel and also combine with additional p -norm threat. Instead of changing input by adding perturbation functionally, (Mao et al, 2020) rather utilizes genetic algorithms for searching the best combination in multiple attacks that are stronger than single attack. However, they only consider searching the order of attack combination in particular norm space (i.e., 2 , ∞ and corruption semantic space), which is different from our multiple and sequential attack setting.…”

Towards Compositional Adversarial Robustness: Generalizing Adversarial Training to Composite Semantic Perturbations