Smooth Kernels Improve Adversarial Robustness and Perceptually-Aligned Gradients

Haohan Wang; Xindi Wu; Songwei Ge; Zachary C. Lipton; Eric P. Xing

Smooth Kernels Improve Adversarial Robustness and Perceptually-Aligned Gradients

Haohan Wang, Xindi Wu, Songwei Ge, Zachary C. Lipton, Eric P. Xing

25 Sept 2019 (modified: 05 May 2023)ICLR 2020 Conference Blind SubmissionReaders: Everyone

TL;DR: We introduce a smoothness regularization for convolutional kernels of CNN that can help improve adversarial robustness and lead to perceptually-aligned gradients

Abstract: Recent research has shown that CNNs are often overly sensitive to high-frequency textural patterns. Inspired by the intuition that humans are more sensitive to the lower-frequency (larger-scale) patterns we design a regularization scheme that penalizes large differences between adjacent components within each convolutional kernel. We apply our regularization onto several popular training methods, demonstrating that the models with the proposed smooth kernels enjoy improved adversarial robustness. Further, building on recent work establishing connections between adversarial robustness and interpretability, we show that our method appears to give more perceptually-aligned gradients.

Keywords: adversarial robustness, computer vision, smoothness regularization

Data: [CIFAR-10](https://paperswithcode.com/dataset/cifar-10), [Fashion-MNIST](https://paperswithcode.com/dataset/fashion-mnist)

Original Pdf: pdf

4 Replies

Loading