Adversarial Defense

Competitions with currently unpublished results:

TrojAI

Papers

Recently Added Most Hyped Most Active Needs Verification Most Verified

Showing 1–50 of 403 papers

Title	Date	Tasks	Status	Hype
Benchmarking Neural Network Robustness to Common Corruptions and Perturbations	Mar 28, 2019	Adversarial DefenseBenchmarking	CodeCode Available	2
Revisiting Adversarial Training under Long-Tailed Distributions	Mar 15, 2024	Adversarial DefenseData Augmentation	CodeCode Available	2
Mist: Towards Improved Adversarial Examples for Diffusion Models	May 22, 2023	Adversarial Defense	CodeCode Available	2
Robust CLIP: Unsupervised Adversarial Fine-Tuning of Vision Embeddings for Robust Large Vision-Language Models	Feb 19, 2024	Adversarial DefenseMultimodal Deep Learning	CodeCode Available	2
Open-set Adversarial Defense	Sep 2, 2020	Adversarial DefenseDecoder	CodeCode Available	1
RAILS: A Robust Adversarial Immune-inspired Learning System	Jun 27, 2021	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Real-world Adversarial Defense against Patch Attacks based on Diffusion Model	Sep 14, 2024	Adversarial DefenseFace Recognition	CodeCode Available	1
Enhancing Adversarial Robustness via Score-Based Optimization	Jul 10, 2023	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Improving Adversarial Robustness via Mutual Information Estimation	Jul 25, 2022	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Helper-based Adversarial Training: Reducing Excessive Margin to Achieve a Better Accuracy vs. Robustness Trade-off	Jun 18, 2021	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Multitask Learning Strengthens Adversarial Robustness	Jul 14, 2020	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
On Evaluating Adversarial Robustness	Feb 18, 2019	Adversarial AttackAdversarial Defense	CodeCode Available	1
Perceptual Adversarial Robustness: Defense Against Unseen Threat Models	Jun 22, 2020	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Provably Robust Deep Learning via Adversarially Trained Smoothed Classifiers	Jun 9, 2019	Adversarial AttackAdversarial Defense	CodeCode Available	1
CARLA-GeAR: a Dataset Generator for a Systematic Evaluation of Adversarial Robustness of Vision Models	Jun 9, 2022	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Collapse-Aware Triplet Decoupling for Adversarially Robust Image Retrieval	Dec 12, 2023	Adversarial DefenseImage Retrieval	CodeCode Available	1
GenoArmory: A Unified Evaluation Framework for Adversarial Attacks on Genomic Foundation Models	May 16, 2025	Adversarial AttackAdversarial Defense	CodeCode Available	1
Certified Adversarial Robustness via Randomized Smoothing	Feb 8, 2019	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
DIFFender: Diffusion-Based Adversarial Defense against Patch Attacks	Jun 15, 2023	Adversarial DefenseFace Recognition	CodeCode Available	1
Efficient Generation of Targeted and Transferable Adversarial Examples for Vision-Language Models Via Diffusion Models	Apr 16, 2024	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Geometric Adversarial Attacks and Defenses on 3D Point Clouds	Dec 10, 2020	Adversarial AttackAdversarial Defense	CodeCode Available	1
Guided Adversarial Attack for Evaluating and Enhancing Adversarial Defenses	Nov 30, 2020	Adversarial AttackAdversarial Defense	CodeCode Available	1
LiBRe: A Practical Bayesian Approach to Adversarial Detection	Mar 27, 2021	Adversarial DefenseUncertainty Quantification	CodeCode Available	1
LPF-Defense: 3D Adversarial Defense based on Frequency Analysis	Feb 23, 2022	3D Point Cloud ClassificationAdversarial Defense	CodeCode Available	1
Among Us: Adversarially Robust Collaborative Perception by Consensus	Mar 16, 2023	3D Object DetectionAdversarial Defense	CodeCode Available	1
Eliminate Deviation with Deviation for Data Augmentation and a General Multi-modal Data Learning Method	Jan 21, 2021	Adversarial DefenseData Augmentation	CodeCode Available	1
Open-set Adversarial Defense with Clean-Adversarial Mutual Learning	Feb 12, 2022	Adversarial DefenseDenoising	CodeCode Available	1
PatchAttack: A Black-box Texture-based Attack with Reinforcement Learning	Apr 12, 2020	Adversarial DefenseClustering	CodeCode Available	1
A Person Re-identification Data Augmentation Method with Adversarial Defense Effect	Jan 21, 2021	Adversarial DefenseData Augmentation	CodeCode Available	1
Perturbation Inactivation Based Adversarial Defense for Face Recognition	Jul 13, 2022	Adversarial AttackAdversarial Defense	CodeCode Available	1
Benchmarking Neural Network Robustness to Common Corruptions and Surface Variations	Jul 4, 2018	Adversarial DefenseBenchmarking	CodeCode Available	1
Adversarial Training for Free!	Apr 29, 2019	Adversarial AttackAdversarial Defense	CodeCode Available	1
AdvDiff: Generating Unrestricted Adversarial Examples using Diffusion Models	Jul 24, 2023	Adversarial AttackAdversarial Defense	CodeCode Available	1
Can We Mitigate Backdoor Attack Using Adversarial Detection Methods?	Jun 26, 2020	Adversarial DefenseBackdoor Attack	CodeCode Available	1
Adversarial Attack and Defense of YOLO Detectors in Autonomous Driving Scenarios	Feb 10, 2022	Adversarial AttackAdversarial Defense	CodeCode Available	1
Boundary thickness and robustness in learning models	Jul 9, 2020	Adversarial DefenseData Augmentation	CodeCode Available	1
CausalDiff: Causality-Inspired Disentanglement via Diffusion Model for Adversarial Defense	Oct 30, 2024	Adversarial DefenseDisentanglement	CodeCode Available	1
CgAT: Center-Guided Adversarial Training for Deep Hashing-Based Retrieval	Apr 18, 2022	Adversarial AttackAdversarial Defense	CodeCode Available	1
DeepZero: Scaling up Zeroth-Order Optimization for Deep Model Training	Oct 3, 2023	Adversarial DefenseComputational Efficiency	CodeCode Available	1
DiffDefense: Defending against Adversarial Attacks via Diffusion Models	Sep 7, 2023	Adversarial Defense	CodeCode Available	1
DISCO: Adversarial Defense with Local Implicit Functions	Dec 11, 2022	Adversarial Defenseimage-classification	CodeCode Available	1
DropAttack: A Masked Weight Adversarial Training Method to Improve Generalization of Neural Networks	Aug 29, 2021	Adversarial AttackAdversarial Defense	CodeCode Available	1
ATHENA: A Framework based on Diverse Weak Defenses for Building Adversarial Defense	Jan 2, 2020	Adversarial DefenseDenoising	CodeCode Available	1
Fast Certified Robust Training with Short Warmup	Mar 31, 2021	Adversarial Defense	CodeCode Available	1
Information Obfuscation of Graph Neural Networks	Sep 28, 2020	Adversarial DefenseGraph Representation Learning	CodeCode Available	1
GUARD: Graph Universal Adversarial Defense	Apr 20, 2022	Adversarial Defense	CodeCode Available	1
Learn2Perturb: an End-to-end Feature Perturbation Learning to Improve Adversarial Robustness	Mar 2, 2020	Adversarial DefenseAdversarial Robustness	CodeCode Available	1
Learnable Boundary Guided Adversarial Training	Nov 23, 2020	Adversarial Defense	CodeCode Available	1
Are You Stealing My Model? Sample Correlation for Fingerprinting Deep Neural Networks	Oct 21, 2022	Adversarial DefenseTransfer Learning	CodeCode Available	1
Decoupled Kullback-Leibler Divergence Loss	May 23, 2023	Adversarial DefenseAdversarial Robustness	CodeCode Available	1

Show:10 25 50

← PrevPage 1 of 9Next →

All datasets CIFAR-10 ImageNet (non-targeted PGD, max perturbation=4)ImageNet ImageNet (targeted PGD, max perturbation=16)MNIST CAAD 2018 miniImageNet

Benchmark Results

#	Model	Metric	Claimed	Verified	Status
1	WRN-28-10	Accuracy	90.03	—	Unverified
2	Diffusion Classifier	Accuracy	89.85	—	Unverified
3	Stochastic-LWTA/PGD/WideResNet-34-10	Accuracy	84.3	—	Unverified
4	Ours (Stochastic-LWTA/PGD/WideResNet-34-5)	Accuracy	83.4	—	Unverified
5	Ours (Stochastic-LWTA/PGD/WideResNet-34-1)	Accuracy	81.87	—	Unverified
6	ResNet18 (TRADES-ANCRA/PGD-40)	Accuracy	81.7	—	Unverified
7	Stochastic-LWTA/PGD/WideResNet-34-5	Attack: AutoAttack	81.22	—	Unverified
8	PCL (against PGD, white box)	Accuracy	46.7	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	SAT-EfficientNet-L1	Accuracy	58.6	—	Unverified
2	LLR-ResNet-152	Accuracy	47	—	Unverified
3	ResNet-152 free-m=4	Accuracy	36	—	Unverified
4	ResNet-101 free-m=4	Accuracy	34.3	—	Unverified
5	ResNet-50 free-m=4	Accuracy	31.8	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	ResNet101	Accuracy	99.8	—	Unverified
2	InceptionV3	Accuracy	98.6	—	Unverified
3	Feature Denoising	Accuracy	49.5	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	ResNet-152 Denoise	Accuracy	42.8	—	Unverified
2	ResNeXt-101 DenoiseAll	Accuracy	40.4	—	Unverified
3	ResNet-152	Accuracy	39	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	Defense GAN	Accuracy	0.85	—	Unverified
2	PuVAE	Accuracy	0.81	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	Feature Denoising	Accuracy	50.6	—	Unverified

#	Model	Metric	Claimed	Verified	Status
1	Auto Encoder-Block Switching defense with GradCAM	Accuracy	88.54	—	Unverified