Adversarial training is one of the most effective approaches defending against adversarial examples for deep learning models. Unlike other defense strategies, adversarial training aims to promote the robustness of models intrinsically. During the last few years, adversarial training has been studied and discussed from various aspects. A variety of improvements and developments of adversarial training are proposed, but neglected in existing surveys. In this survey, we systematically review the recent progress on adversarial training with a novel taxonomy for the first time. Then we discuss the generalization problems in adversarial training from three perspectives. Finally, we highlight the challenges which are not fully solved and present potential future directions.
翻译:对抗性培训是防止激烈学习模式的对抗性实例的最有效方法之一。与其他防御性战略不同,对抗性培训的目的是在本质上促进各种模式的健全性。在过去几年里,对对抗性培训进行了多方面的研究和讨论。提出了各种改进和发展对抗性培训的建议,但现有调查忽略了这些改进和发展。在本次调查中,我们首次从三个角度系统地审查了对抗性培训的最新进展,从新的分类学中首次审查了对抗性培训。然后我们从三个角度讨论了对抗性培训的概括问题。最后,我们强调了尚未完全解决的挑战和目前潜在的未来方向。
相关内容
微信扫码咨询专知VIP会员