{"id":"https://openalex.org/W4361195871","doi":"https://doi.org/10.48550/arxiv.2303.13846","title":"Feature Separation and Recalibration for Adversarial Robustness","display_name":"Feature Separation and Recalibration for Adversarial Robustness","publication_year":2023,"publication_date":"2023-03-24","ids":{"openalex":"https://openalex.org/W4361195871","doi":"https://doi.org/10.48550/arxiv.2303.13846"},"language":"en","primary_location":{"id":"pmh:oai:arXiv.org:2303.13846","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2303.13846","pdf_url":"https://arxiv.org/pdf/2303.13846","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"type":"preprint","indexed_in":["arxiv","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2303.13846","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101741613","display_name":"Woo Jae Kim","orcid":"https://orcid.org/0000-0002-2826-4177"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Kim, Woo Jae","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5057188848","display_name":"Yoonki Cho","orcid":"https://orcid.org/0000-0002-8231-5633"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Cho, Yoonki","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010940618","display_name":"Junsik Jung","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Jung, Junsik","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5078173428","display_name":"Sung\u2010Eui Yoon","orcid":"https://orcid.org/0000-0002-7123-1119"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yoon, Sung-Eui","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5101741613"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11512","display_name":"Anomaly Detection Techniques and Applications","score":0.9060999751091003,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.8654824495315552},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8124639987945557},{"id":"https://openalex.org/keywords/feature","display_name":"Feature (linguistics)","score":0.6618808507919312},{"id":"https://openalex.org/keywords/discriminative-model","display_name":"Discriminative model","score":0.6486108899116516},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6465765833854675},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.6284909248352051},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.4509741961956024},{"id":"https://openalex.org/keywords/feature-extraction","display_name":"Feature extraction","score":0.43376830220222473},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.39228227734565735}],"concepts":[{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.8654824495315552},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8124639987945557},{"id":"https://openalex.org/C2776401178","wikidata":"https://www.wikidata.org/wiki/Q12050496","display_name":"Feature (linguistics)","level":2,"score":0.6618808507919312},{"id":"https://openalex.org/C97931131","wikidata":"https://www.wikidata.org/wiki/Q5282087","display_name":"Discriminative model","level":2,"score":0.6486108899116516},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6465765833854675},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.6284909248352051},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.4509741961956024},{"id":"https://openalex.org/C52622490","wikidata":"https://www.wikidata.org/wiki/Q1026626","display_name":"Feature extraction","level":2,"score":0.43376830220222473},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.39228227734565735},{"id":"https://openalex.org/C41895202","wikidata":"https://www.wikidata.org/wiki/Q8162","display_name":"Linguistics","level":1,"score":0.0},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"pmh:oai:arXiv.org:2303.13846","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2303.13846","pdf_url":"https://arxiv.org/pdf/2303.13846","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},{"id":"doi:10.48550/arxiv.2303.13846","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2303.13846","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2303.13846","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2303.13846","pdf_url":"https://arxiv.org/pdf/2303.13846","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-nc-nd","license_id":"https://openalex.org/licenses/cc-by-nc-nd","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"text"},"sustainable_development_goals":[{"score":0.75,"id":"https://metadata.un.org/sdg/10","display_name":"Reduced inequalities"}],"awards":[{"id":"https://openalex.org/G7541173257","display_name":null,"funder_award_id":"RS-2023-00208506","funder_id":"https://openalex.org/F4320328359","funder_display_name":"Ministry of Science and ICT, South Korea"}],"funders":[{"id":"https://openalex.org/F4320320671","display_name":"National Research Foundation","ror":"https://ror.org/05s0g1g46"},{"id":"https://openalex.org/F4320322120","display_name":"National Research Foundation of Korea","ror":"https://ror.org/013aysd81"},{"id":"https://openalex.org/F4320328359","display_name":"Ministry of Science and ICT, South Korea","ror":"https://ror.org/01wpjm123"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4361195871.pdf","grobid_xml":"https://content.openalex.org/works/W4361195871.grobid-xml"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W2502115930","https://openalex.org/W2482350142","https://openalex.org/W4246396837","https://openalex.org/W3126451824","https://openalex.org/W1561927205","https://openalex.org/W3191453585","https://openalex.org/W4297672492","https://openalex.org/W4288019534","https://openalex.org/W2619203976","https://openalex.org/W1996690921"],"abstract_inverted_index":{"Deep":[0],"neural":[1],"networks":[2],"are":[3,118,176],"susceptible":[4],"to":[5,9,134,151,169],"adversarial":[6,124,164],"attacks":[7],"due":[8],"the":[10,15,27,77,94,99,106,112,131,136,146,160],"accumulation":[11],"of":[12,148,162],"perturbations":[13],"in":[14],"feature":[16,29,84,96,101,114],"level,":[17],"and":[18,46,72,88,111,155],"numerous":[19],"works":[20],"have":[21],"boosted":[22],"model":[23,33,58,107,121,141],"robustness":[24,161],"by":[25,167],"deactivating":[26],"non-robust":[28,79,113,132],"activations":[30,41,80,103,116,133],"that":[31,38,47,75,104,117,157],"cause":[32],"mispredictions.":[34],"However,":[35],"we":[36,63],"claim":[37],"these":[39],"malicious":[40],"still":[42],"contain":[43],"discriminative":[44],"cues":[45,139],"with":[48,102,115,171],"recalibration,":[49],"they":[50],"can":[51],"capture":[52],"additional":[53],"useful":[54,138],"information":[55],"for":[56,81,120,140],"correct":[57,109],"predictions.":[59,142],"To":[60],"this":[61],"end,":[62],"propose":[64],"a":[65],"novel,":[66],"easy-to-plugin":[67],"approach":[68],"named":[69],"Feature":[70],"Separation":[71,87,91],"Recalibration":[73,127],"(FSR)":[74],"recalibrates":[76],"malicious,":[78],"more":[82],"robust":[83,100],"maps":[85],"through":[86],"Recalibration.":[89],"The":[90,126],"part":[92,128],"disentangles":[93],"input":[95],"map":[97],"into":[98],"help":[105],"make":[108],"predictions":[110],"responsible":[119],"mispredictions":[122],"upon":[123],"attack.":[125],"then":[129],"adjusts":[130],"restore":[135],"potentially":[137],"Extensive":[143],"experiments":[144],"verify":[145],"superiority":[147],"FSR":[149],"compared":[150],"traditional":[152],"deactivation":[153],"techniques":[154],"demonstrate":[156],"it":[158],"improves":[159],"existing":[163],"training":[165],"methods":[166],"up":[168],"8.57%":[170],"small":[172],"computational":[173],"overhead.":[174],"Codes":[175],"available":[177],"at":[178],"https://github.com/wkim97/FSR.":[179]},"counts_by_year":[{"year":2025,"cited_by_count":2}],"updated_date":"2026-04-21T08:09:41.155169","created_date":"2025-10-10T00:00:00"}