TasksSotADatasetsPapersMethodsSubmitAbout
Papers With Code 2

A community resource for machine learning research: papers, code, benchmarks, and state-of-the-art results.

Explore

Notable BenchmarksAll SotADatasetsPapersMethods

Community

Submit ResultsAbout

Data sourced from the PWC Archive (CC-BY-SA 4.0). Built by the community, for the community.

Papers/Stochastic Local Winner-Takes-All Networks Enable Profound...

Stochastic Local Winner-Takes-All Networks Enable Profound Adversarial Robustness

Konstantinos P. Panousis, Sotirios Chatzis, Sergios Theodoridis

2021-12-05Adversarial RobustnessAdversarial DefenseRobust classificationAdversarial AttackAll
PaperPDFCode(official)

Abstract

This work explores the potency of stochastic competition-based activations, namely Stochastic Local Winner-Takes-All (LWTA), against powerful (gradient-based) white-box and black-box adversarial attacks; we especially focus on Adversarial Training settings. In our work, we replace the conventional ReLU-based nonlinearities with blocks comprising locally and stochastically competing linear units. The output of each network layer now yields a sparse output, depending on the outcome of winner sampling in each block. We rely on the Variational Bayesian framework for training and inference; we incorporate conventional PGD-based adversarial training arguments to increase the overall adversarial robustness. As we experimentally show, the arising networks yield state-of-the-art robustness against powerful adversarial attacks while retaining very high classification rate in the benign case.

Results

TaskDatasetMetricValueModel
Adversarial DefenseCIFAR-10Accuracy84.3Stochastic-LWTA/PGD/WideResNet-34-10
Adversarial DefenseCIFAR-10Attack: AutoAttack82.6Stochastic-LWTA/PGD/WideResNet-34-10
Adversarial DefenseCIFAR-10Accuracy83.4Ours (Stochastic-LWTA/PGD/WideResNet-34-5)
Adversarial DefenseCIFAR-10Accuracy81.87Ours (Stochastic-LWTA/PGD/WideResNet-34-1)
Adversarial DefenseCIFAR-10Attack: AutoAttack74.71Ours (Stochastic-LWTA/PGD/WideResNet-34-1)
Adversarial DefenseCIFAR-10Attack: AutoAttack81.22Stochastic-LWTA/PGD/WideResNet-34-5
Adversarial RobustnessCIFAR-10Accuracy92.26Stochastic-LWTA/PGD/WideResNet-34-10
Adversarial RobustnessCIFAR-10Attack: AutoAttack82.6Stochastic-LWTA/PGD/WideResNet-34-10
Adversarial RobustnessCIFAR-10Robust Accuracy84.3Stochastic-LWTA/PGD/WideResNet-34-10
Adversarial RobustnessCIFAR-10Accuracy91.88Stochastic-LWTA/PGD/WideResNet-34-5
Adversarial RobustnessCIFAR-10Attack: AutoAttack81.22Stochastic-LWTA/PGD/WideResNet-34-5
Adversarial RobustnessCIFAR-10Robust Accuracy83.4Stochastic-LWTA/PGD/WideResNet-34-5

Related Papers

Modeling Code: Is Text All You Need?2025-07-15All Eyes, no IMU: Learning Flight Attitude from Vision Alone2025-07-15Bridging Robustness and Generalization Against Word Substitution Attacks in NLP via the Growth Bound Matrix Approach2025-07-143DGAA: Realistic and Robust 3D Gaussian-based Adversarial Attack for Autonomous Driving2025-07-14VIP: Visual Information Protection through Adversarial Attacks on Vision-Language Models2025-07-11Identifying the Smallest Adversarial Load Perturbations that Render DC-OPF Infeasible2025-07-10ScoreAdv: Score-based Targeted Generation of Natural Adversarial Examples via Diffusion Models2025-07-08Is Diversity All You Need for Scalable Robotic Manipulation?2025-07-08