pith. sign in

arxiv: 2004.09179 · v1 · pith:IWDEY6DPnew · submitted 2020-04-20 · 💻 cs.LG · cs.CR· cs.CV· stat.ML

GraN: An Efficient Gradient-Norm Based Detector for Adversarial and Misclassified Examples

classification 💻 cs.LG cs.CRcs.CVstat.ML
keywords granadversarialcurrentdnnsexamplesmisclassifiedstate-of-the-arttherefore
0
0 comments X
read the original abstract

Deep neural networks (DNNs) are vulnerable to adversarial examples and other data perturbations. Especially in safety critical applications of DNNs, it is therefore crucial to detect misclassified samples. The current state-of-the-art detection methods require either significantly more runtime or more parameters than the original network itself. This paper therefore proposes GraN, a time- and parameter-efficient method that is easily adaptable to any DNN. GraN is based on the layer-wise norm of the DNN's gradient regarding the loss of the current input-output combination, which can be computed via backpropagation. GraN achieves state-of-the-art performance on numerous problem set-ups.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 1 Pith paper

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. AdvScan: Black-Box Adversarial Example Detection at Runtime through Power Analysis

    cs.CR 2026-06 unverdicted novelty 6.0

    AdvScan detects adversarial examples in black-box TinyML on ARM Cortex-M devices via one-sample t-test on runtime power signatures against a benign baseline, reporting 99.984% detection with 40 false negatives and zer...