Web: http://arxiv.org/abs/2303.08944

March 17, 2023, 1:10 a.m. | Saba Ahmadi, Avrim Blum, Omar Montasser, Kevin Stangl

cs.CR updates on arXiv.org arxiv.org

Consider patch attacks, where at test-time an adversary manipulates a test
image with a patch in order to induce a targeted misclassification. We consider
a recent defense to patch attacks, Patch-Cleanser (Xiang et al. [2022]). The
Patch-Cleanser algorithm requires a prediction model to have a ``two-mask
correctness'' property, meaning that the prediction model should correctly
classify any image when any two blank masks replace portions of the image.
Xiang et al. learn a prediction model to be robust to two-mask …

attacks patch robustness

More from arxiv.org / cs.CR updates on arXiv.org

Analyste de risques/GRC F/H

@ CS GROUP | Le Plessis-Robinson, France

Network Threat Analyst

@ Wyetech | Annapolis Junction, Maryland

Security Engineer - Insider Threat

@ Anduril Industries | Costa Mesa, CA

Data Security Engineer

@ Box | Warsaw, Poland

Zero Trust Solutions Engineer

@ Cloudflare, Inc. | Remote Sweden

Senior Cyber Security Engineer

@ Definitive Logic | Chantilly, VA

Security Operations Intern

@ KAYAK | Concord

Firmware Security Consultant

@ Eclypsium | Remote (United States)

Federal Vuln Scan Staff Consultant

@ A-LIGN | Remote - US, Nationwide

Senior Penetration Tester (India)

@ BreachLock | Noida, Uttar Pradesh, India

Product Security Architect

@ TuSimple | San Diego, CA

Staff Product Security Engineer

@ ServiceNow | Madison, Wisconsin, United States