Deep minimax probability machine

Lirong He; Ziyi Guo; Kaizhu Huang; Zenglin Xu

doi:10.1109/ICDMW.2019.00127

Deep minimax probability machine

Lirong He, Ziyi Guo, Kaizhu Huang, Zenglin Xu

School of Advanced Technology

Research output: Chapter in Book or Report/Conference proceeding › Conference Proceeding › peer-review

3 Citations (Scopus)

Abstract

Deep neural networks enjoy a powerful representation and have proven effective in a number of applications. However, recent advances show that deep neural networks are vulnerable to adversarial attacks incurred by the so-called adversarial examples. Although the adversarial example is only slightly different from the input sample, the neural network classifies it as the wrong class. In order to alleviate this problem, we propose the Deep Minimax Probability Machine (DeepMPM), which applies MPM to deep neural networks in an end-to-end fashion. In a worst-case scenario, MPM tries to minimize an upper bound of misclassification probabilities, considering the global information (i.e., mean and covariance information of each class). DeepMPM can be more robust since it learns the worst-case bound on the probability of misclassification of future data.

Original language	English
Title of host publication	Proceedings - 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019
Editors	Panagiotis Papapetrou, Xueqi Cheng, Qing He
Publisher	IEEE Computer Society
Pages	869-876
Number of pages	8
ISBN (Electronic)	9781728146034
DOIs	https://doi.org/10.1109/ICDMW.2019.00127
Publication status	Published - Nov 2019
Event	19th IEEE International Conference on Data Mining Workshops, ICDMW 2019 - Beijing, China Duration: 8 Nov 2019 → 11 Nov 2019

Publication series

Name	IEEE International Conference on Data Mining Workshops, ICDMW
Volume	2019-November
ISSN (Print)	2375-9232
ISSN (Electronic)	2375-9259

Conference

Conference	19th IEEE International Conference on Data Mining Workshops, ICDMW 2019
Country/Territory	China
City	Beijing
Period	8/11/19 → 11/11/19

Keywords

Adversarial attacks
Deep neural networks
Mimimax probability machine

Access to Document

10.1109/ICDMW.2019.00127

Cite this

He, L., Guo, Z., Huang, K., & Xu, Z. (2019). Deep minimax probability machine. In P. Papapetrou, X. Cheng, & Q. He (Eds.), Proceedings - 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019 (pp. 869-876). Article 8955575 (IEEE International Conference on Data Mining Workshops, ICDMW; Vol. 2019-November). IEEE Computer Society. https://doi.org/10.1109/ICDMW.2019.00127

@inproceedings{16a2b8bdca2d4eba9a4c0e4f40543dae,

title = "Deep minimax probability machine",

abstract = "Deep neural networks enjoy a powerful representation and have proven effective in a number of applications. However, recent advances show that deep neural networks are vulnerable to adversarial attacks incurred by the so-called adversarial examples. Although the adversarial example is only slightly different from the input sample, the neural network classifies it as the wrong class. In order to alleviate this problem, we propose the Deep Minimax Probability Machine (DeepMPM), which applies MPM to deep neural networks in an end-to-end fashion. In a worst-case scenario, MPM tries to minimize an upper bound of misclassification probabilities, considering the global information (i.e., mean and covariance information of each class). DeepMPM can be more robust since it learns the worst-case bound on the probability of misclassification of future data.",

keywords = "Adversarial attacks, Deep neural networks, Mimimax probability machine",

author = "Lirong He and Ziyi Guo and Kaizhu Huang and Zenglin Xu",

note = "Funding Information: This paper was in part supported by Grants from the Natural Science Foundation of China(No. 61572111), and two Fundamental Research Funds for the Central Universities of China (Nos.ZYGX2016Z003, ZYGX2017KYQD177), Publisher Copyright: {\textcopyright} 2019 IEEE.; 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019 ; Conference date: 08-11-2019 Through 11-11-2019",

year = "2019",

month = nov,

doi = "10.1109/ICDMW.2019.00127",

language = "English",

series = "IEEE International Conference on Data Mining Workshops, ICDMW",

publisher = "IEEE Computer Society",

pages = "869--876",

editor = "Panagiotis Papapetrou and Xueqi Cheng and Qing He",

booktitle = "Proceedings - 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019",

}

He, L, Guo, Z, Huang, K & Xu, Z 2019, Deep minimax probability machine. in P Papapetrou, X Cheng & Q He (eds), Proceedings - 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019., 8955575, IEEE International Conference on Data Mining Workshops, ICDMW, vol. 2019-November, IEEE Computer Society, pp. 869-876, 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019, Beijing, China, 8/11/19. https://doi.org/10.1109/ICDMW.2019.00127

Deep minimax probability machine. / He, Lirong; Guo, Ziyi; Huang, Kaizhu et al.
Proceedings - 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019. ed. / Panagiotis Papapetrou; Xueqi Cheng; Qing He. IEEE Computer Society, 2019. p. 869-876 8955575 (IEEE International Conference on Data Mining Workshops, ICDMW; Vol. 2019-November).

Research output: Chapter in Book or Report/Conference proceeding › Conference Proceeding › peer-review

TY - GEN

T1 - Deep minimax probability machine

AU - He, Lirong

AU - Guo, Ziyi

AU - Huang, Kaizhu

AU - Xu, Zenglin

N1 - Funding Information: This paper was in part supported by Grants from the Natural Science Foundation of China(No. 61572111), and two Fundamental Research Funds for the Central Universities of China (Nos.ZYGX2016Z003, ZYGX2017KYQD177), Publisher Copyright: © 2019 IEEE.

PY - 2019/11

Y1 - 2019/11

N2 - Deep neural networks enjoy a powerful representation and have proven effective in a number of applications. However, recent advances show that deep neural networks are vulnerable to adversarial attacks incurred by the so-called adversarial examples. Although the adversarial example is only slightly different from the input sample, the neural network classifies it as the wrong class. In order to alleviate this problem, we propose the Deep Minimax Probability Machine (DeepMPM), which applies MPM to deep neural networks in an end-to-end fashion. In a worst-case scenario, MPM tries to minimize an upper bound of misclassification probabilities, considering the global information (i.e., mean and covariance information of each class). DeepMPM can be more robust since it learns the worst-case bound on the probability of misclassification of future data.

AB - Deep neural networks enjoy a powerful representation and have proven effective in a number of applications. However, recent advances show that deep neural networks are vulnerable to adversarial attacks incurred by the so-called adversarial examples. Although the adversarial example is only slightly different from the input sample, the neural network classifies it as the wrong class. In order to alleviate this problem, we propose the Deep Minimax Probability Machine (DeepMPM), which applies MPM to deep neural networks in an end-to-end fashion. In a worst-case scenario, MPM tries to minimize an upper bound of misclassification probabilities, considering the global information (i.e., mean and covariance information of each class). DeepMPM can be more robust since it learns the worst-case bound on the probability of misclassification of future data.

KW - Adversarial attacks

KW - Deep neural networks

KW - Mimimax probability machine

UR - http://www.scopus.com/inward/record.url?scp=85078764095&partnerID=8YFLogxK

U2 - 10.1109/ICDMW.2019.00127

DO - 10.1109/ICDMW.2019.00127

M3 - Conference Proceeding

AN - SCOPUS:85078764095

T3 - IEEE International Conference on Data Mining Workshops, ICDMW

SP - 869

EP - 876

BT - Proceedings - 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019

A2 - Papapetrou, Panagiotis

A2 - Cheng, Xueqi

A2 - He, Qing

PB - IEEE Computer Society

T2 - 19th IEEE International Conference on Data Mining Workshops, ICDMW 2019

Y2 - 8 November 2019 through 11 November 2019

ER -

Deep minimax probability machine

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this