Go to DBLP homepageImproving neural network's robustness on tabular data with D-layers
Abstract: Artificial neural networks (\({{{\texttt {ANN}}}}\)) are widely used machine learning models. Their widespread use has attracted a lot of interest in their robustness. Many studies show that ANN’s performance can be highly vulnerable to input manipulation such as adversarial attacks and covariate drift. Therefore, various techniques that focus on improving \({{{\texttt {ANN}}}}\)’s robustness have been proposed in the last few years. However, most of these works have mostly focused on image data. In this paper, we investigate the role of discretization in improving \({{{\texttt {ANN}}}}\)’s robustness on tabular datasets. Two custom \({{{\texttt {ANN}}}}\) layers– D1-Layer and D2-Layer (collectively called D-Layers) are proposed. The two layers integrate discretization during the training phase to improve \({{{\texttt {ANN}}}}\)’s ability to defend against adversarial attacks. Additionally, D2-Layer integrates dynamic discretization during testing phase as well, to provide a unified strategy to handle adversarial attacks and covariate drift. The experimental results on 24 publicly available datasets show that our proposed D-Layers add much-needed robustness to \({{{\texttt {ANN}}}}\) for tabular datasets.
External IDs:dblp:journals/datamine/XiaZZL24
Loading