Black-Box Attack

Adversarial Attack on Attackers: Post-Process to Mitigate Black-Box Score-Based Query Attacks
Adversarial Attack on Attackers: Post-Process to Mitigate Black-Box Score-Based Query Attacks

We propose a novel defense against score-based query attacks, which post-processes model outputs to effectively confound attackers without hurting accuracy and calibration.

Nov 1, 2022