Neural networks have become critical components of reactive systems in various domains within computer science. Despite their excellent performance, using neural networks entails numerous risks that stem from our lack of ability to understand and reason about their behavior. Due to these risks, various formal methods have been proposed for verifying neural networks; but unfortunately, these typically struggle with scalability barriers. Recent attempts have demonstrated that abstraction-refinement approaches could play a significant role in mitigating these limitations; but these approaches can often produce networks that are so abstract, that they become unsuitable for verification. To deal with this issue, we present CEGARETTE, a novel verification mechanism where both the system and the property are abstracted and refined simultaneously. We observe that this approach allows us to produce abstract networks which are both small and sufficiently accurate, allowing for quick verification times while avoiding a large number of refinement steps. For evaluation purposes, we implemented CEGARETTE as an extension to the recently proposed CEGAR-NN framework. Our results are very promising, and demonstrate a significant improvement in performance over multiple benchmarks.
翻译:神经网络已成为计算机科学各领域反应系统的关键组成部分。尽管这些网络表现出色,但使用神经网络会带来许多风险,这些风险源于我们缺乏理解和理解自身行为的能力。由于这些风险,提出了各种正式方法来核查神经网络;但不幸的是,这些方法通常与可扩缩障碍相抗衡。最近的一些尝试表明,抽象的改进方法可以在减轻这些限制方面发挥重要作用;但这些方法往往能够产生如此抽象的网络,以致于不适于核查。为了处理这一问题,我们提出了CEGARETTE, 这是一种新型的核查机制,其中系统和财产都是抽象的,并同时加以完善。我们观察到,这一方法使我们能够产生既小又足够准确的抽象网络,允许快速的核查时间,同时避免大量改进步骤。为了评估的目的,我们实施了CEGAR-NN框架,作为最近提议的CEGAR-NN框架的延伸。我们的结果非常有希望,并表明在多个基准的绩效方面有显著改进。
相关内容
微信扫码咨询专知VIP会员