RobustMap: Visual Exploration of DNN Adversarial Robustness in Generative Latent Space.

IEEE transactions on visualization and computer graphics Pub Date : 2024-10-03 DOI:10.1109/TVCG.2024.3471551

Jie Li, Jielong Kuang

{"title":"RobustMap: Visual Exploration of DNN Adversarial Robustness in Generative Latent Space.","authors":"Jie Li, Jielong Kuang","doi":"10.1109/TVCG.2024.3471551","DOIUrl":null,"url":null,"abstract":"<p><p>The paper presents a novel approach to visualizing adversarial robustness (called robustness below) of deep neural networks (DNNs). Traditional tests only return a value reflecting a DNN's overall robustness across a fixed number of test samples. Unlike them, we use test samples to train a generative model (GM) and render a DNN's robustness distribution over infinite generated samples within the GM's latent space. The approach extends test samples, enabling users to obtain new test samples to improve feature coverage constantly. Moreover, the distribution provides more information about a DNN's robustness, enabling users to understand a DNN's robustness comprehensively. We propose three methods to resolve the challenges of realizing the approach. Specifically, we (1) map a GM's high-dimensional latent space onto a plane with less information loss for visualization, (2) design a network to predict a DNN's robustness on massive samples to speed up the distribution rendering, and (3) develop a system to supports users to explore the distribution from multiple perspectives. Subjective and objective experiment results prove the usability and effectiveness of the approach.</p>","PeriodicalId":94035,"journal":{"name":"IEEE transactions on visualization and computer graphics","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2024-10-03","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE transactions on visualization and computer graphics","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/TVCG.2024.3471551","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

The paper presents a novel approach to visualizing adversarial robustness (called robustness below) of deep neural networks (DNNs). Traditional tests only return a value reflecting a DNN's overall robustness across a fixed number of test samples. Unlike them, we use test samples to train a generative model (GM) and render a DNN's robustness distribution over infinite generated samples within the GM's latent space. The approach extends test samples, enabling users to obtain new test samples to improve feature coverage constantly. Moreover, the distribution provides more information about a DNN's robustness, enabling users to understand a DNN's robustness comprehensively. We propose three methods to resolve the challenges of realizing the approach. Specifically, we (1) map a GM's high-dimensional latent space onto a plane with less information loss for visualization, (2) design a network to predict a DNN's robustness on massive samples to speed up the distribution rendering, and (3) develop a system to supports users to explore the distribution from multiple perspectives. Subjective and objective experiment results prove the usability and effectiveness of the approach.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

RobustMap：生成潜空间中 DNN 对抗鲁棒性的可视化探索。

本文提出了一种可视化深度神经网络（DNN）对抗鲁棒性（以下称为鲁棒性）的新方法。传统测试只返回一个值，反映 DNN 在固定数量测试样本中的整体鲁棒性。与之不同的是，我们使用测试样本来训练生成模型（GM），并呈现 DNN 在 GM 潜在空间内无限生成样本上的鲁棒性分布。这种方法扩展了测试样本，使用户能够获得新的测试样本，从而不断提高特征覆盖率。此外，该分布还提供了更多有关 DNN 鲁棒性的信息，使用户能够全面了解 DNN 的鲁棒性。我们提出了三种方法来解决实现该方法所面临的挑战。具体来说，我们（1）将 GM 的高维潜空间映射到信息损失较少的平面上，以实现可视化；（2）设计一个网络，在海量样本上预测 DNN 的鲁棒性，以加快分布渲染的速度；（3）开发一个系统，支持用户从多个角度探索分布。主观和客观的实验结果证明了该方法的可用性和有效性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

IEEE transactions on visualization and computer graphics

自引率

0.00%

发文量