SOTAVerified

Adversarial Defense

Competitions with currently unpublished results:

Papers

Recently AddedMost HypedMost ActiveNeeds VerificationMost Verified

Showing 5175 of 403 papers

TitleStatusHype
Guided Adversarial Attack for Evaluating and Enhancing Adversarial DefensesCode1
Learnable Boundary Guided Adversarial TrainingCode1
A Reputation Mechanism Is All You Need: Collaborative Fairness and Adversarial Robustness in Federated LearningCode1
Information Obfuscation of Graph Neural NetworksCode1
Stereopagnosia: Fooling Stereo Networks with Adversarial PerturbationsCode1
Open-set Adversarial DefenseCode1
SimAug: Learning Robust Representations from Simulation for Trajectory PredictionCode1
Stylized Adversarial DefenseCode1
Multitask Learning Strengthens Adversarial RobustnessCode1
Boundary thickness and robustness in learning modelsCode1
Can We Mitigate Backdoor Attack Using Adversarial Detection Methods?Code1
Smooth Adversarial TrainingCode1
Perceptual Adversarial Robustness: Defense Against Unseen Threat ModelsCode1
Targeted Adversarial Perturbations for Monocular Depth PredictionCode1
Stochastic Security: Adversarial Defense Using Long-Run Dynamics of Energy-Based ModelsCode1
PatchAttack: A Black-box Texture-based Attack with Reinforcement LearningCode1
Toward Adversarial Robustness via Semi-supervised Robust TrainingCode1
Learn2Perturb: an End-to-end Feature Perturbation Learning to Improve Adversarial RobustnessCode1
ATHENA: A Framework based on Diverse Weak Defenses for Building Adversarial DefenseCode1
Provably Robust Deep Learning via Adversarially Trained Smoothed ClassifiersCode1
Adversarial Training for Free!Code1
Wasserstein Adversarial Examples via Projected Sinkhorn IterationsCode1
On Evaluating Adversarial RobustnessCode1
Certified Adversarial Robustness via Randomized SmoothingCode1
Theoretically Principled Trade-off between Robustness and AccuracyCode1
Show:102550
← PrevPage 3 of 17Next →
All datasetsCIFAR-10ImageNet (non-targeted PGD, max perturbation=4)ImageNetImageNet (targeted PGD, max perturbation=16)MNISTCAAD 2018miniImageNet

Benchmark Results

#ModelMetricClaimedVerifiedStatus
1WRN-28-10Accuracy90.03Unverified
2Diffusion ClassifierAccuracy89.85Unverified
3Stochastic-LWTA/PGD/WideResNet-34-10Accuracy84.3Unverified
4Ours (Stochastic-LWTA/PGD/WideResNet-34-5)Accuracy83.4Unverified
5Ours (Stochastic-LWTA/PGD/WideResNet-34-1)Accuracy81.87Unverified
6ResNet18 (TRADES-ANCRA/PGD-40)Accuracy81.7Unverified
7Stochastic-LWTA/PGD/WideResNet-34-5Attack: AutoAttack81.22Unverified
8PCL (against PGD, white box)Accuracy46.7Unverified
#ModelMetricClaimedVerifiedStatus
1SAT-EfficientNet-L1Accuracy58.6Unverified
2LLR-ResNet-152Accuracy47Unverified
3ResNet-152 free-m=4Accuracy36Unverified
4ResNet-101 free-m=4Accuracy34.3Unverified
5ResNet-50 free-m=4Accuracy31.8Unverified
#ModelMetricClaimedVerifiedStatus
1ResNet101Accuracy99.8Unverified
2InceptionV3Accuracy98.6Unverified
3Feature DenoisingAccuracy49.5Unverified
#ModelMetricClaimedVerifiedStatus
1ResNet-152 DenoiseAccuracy42.8Unverified
2ResNeXt-101 DenoiseAllAccuracy40.4Unverified
3ResNet-152Accuracy39Unverified
#ModelMetricClaimedVerifiedStatus
1Defense GANAccuracy0.85Unverified
2PuVAEAccuracy0.81Unverified
#ModelMetricClaimedVerifiedStatus
1Feature DenoisingAccuracy50.6Unverified
#ModelMetricClaimedVerifiedStatus
1Auto Encoder-Block Switching defense with GradCAMAccuracy 88.54Unverified