Adversarial Attacks on Hyperbolic Networks

van Spengler, Max; Zahálka, Jan; Mettes, Pascal

doi:10.1007/978-3-031-91585-7_22

Adversarial Attacks on Hyperbolic Networks

Max van Spengler, Jan Zahálka, Pascal Mettes

ECCVW 2024 pp. 363-381

doi:10.1007/978-3-031-91585-7_22 /eccvw/2024/vanspengler2024eccvw-adversarial/

Abstract

As hyperbolic deep learning grows in popularity, so does the need for adversarial robustness in the context of such a non-Euclidean geometry. To this end, this paper proposes hyperbolic alternatives to the commonly used FGM and PGD adversarial attacks. Through interpretable synthetic benchmarks and experiments on existing datasets, we show how the existing and newly proposed attacks differ. Moreover, we investigate the differences in adversarial robustness between Euclidean and fully hyperbolic networks. We find that these networks suffer from different types of vulnerabilities and that the newly proposed hyperbolic attacks cannot address these differences. Therefore, we conclude that the shifts in adversarial robustness are due to the models learning distinct patterns resulting from their different geometries.

PDF ECCVW Semantic Scholar

Cite

Text

van Spengler et al. "Adversarial Attacks on Hyperbolic Networks." European Conference on Computer Vision Workshops, 2024. doi:10.1007/978-3-031-91585-7_22

Markdown

[van Spengler et al. "Adversarial Attacks on Hyperbolic Networks." European Conference on Computer Vision Workshops, 2024.](https://mlanthology.org/eccvw/2024/vanspengler2024eccvw-adversarial/) doi:10.1007/978-3-031-91585-7_22

BibTeX

@inproceedings{vanspengler2024eccvw-adversarial,
  title     = {{Adversarial Attacks on Hyperbolic Networks}},
  author    = {van Spengler, Max and Zahálka, Jan and Mettes, Pascal},
  booktitle = {European Conference on Computer Vision Workshops},
  year      = {2024},
  pages     = {363-381},
  doi       = {10.1007/978-3-031-91585-7_22},
  url       = {https://mlanthology.org/eccvw/2024/vanspengler2024eccvw-adversarial/}
}