Timezone: »
Poster
Mixed Nash Equilibria in the Adversarial Examples Game
Laurent Meunier · Meyer Scetbon · Rafael Pinot · Jamal Atif · Yann Chevaleyre
This paper tackles the problem of adversarial examples from a game theoretic point of view. We study the open question of the existence of mixed Nash equilibria in the zero-sum game formed by the attacker and the classifier. While previous works usually allow only one player to use randomized strategies, we show the necessity of considering randomization for both the classifier and the attacker. We demonstrate that this game has no duality gap, meaning that it always admits approximate Nash equilibria. We also provide the first optimization algorithms to learn a mixture of classifiers that approximately realizes the value of this game, \emph{i.e.} procedures to build an optimally robust randomized classifier.
Author Information
Laurent Meunier (Facebook/Dauphine)
Meyer Scetbon (CREST, ENSAE)
Rafael Pinot (EPFL)
Jamal Atif (Université Paris-Dauphine)
Yann Chevaleyre (Univ. Paris Dauphine)
Related Events (a corresponding poster, oral, or spotlight)
-
2021 Spotlight: Mixed Nash Equilibria in the Adversarial Examples Game »
Thu. Jul 22nd 01:20 -- 01:25 PM Room
More from the Same Authors
-
2022 Poster: An Asymptotic Test for Conditional Independence using Analytic Kernel Embeddings »
Meyer Scetbon · Laurent Meunier · Yaniv Romano -
2022 Spotlight: An Asymptotic Test for Conditional Independence using Analytic Kernel Embeddings »
Meyer Scetbon · Laurent Meunier · Yaniv Romano -
2022 Poster: Linear-Time Gromov Wasserstein Distances using Low Rank Couplings and Costs »
Meyer Scetbon · Gabriel Peyré · Marco Cuturi -
2022 Spotlight: Linear-Time Gromov Wasserstein Distances using Low Rank Couplings and Costs »
Meyer Scetbon · Gabriel Peyré · Marco Cuturi -
2021 Poster: Best Arm Identification in Graphical Bilinear Bandits »
Geovani Rizk · Albert Thomas · Igor Colin · Rida Laraki · Yann Chevaleyre -
2021 Spotlight: Best Arm Identification in Graphical Bilinear Bandits »
Geovani Rizk · Albert Thomas · Igor Colin · Rida Laraki · Yann Chevaleyre -
2021 Poster: Low-Rank Sinkhorn Factorization »
Meyer Scetbon · Marco Cuturi · Gabriel Peyré -
2021 Spotlight: Low-Rank Sinkhorn Factorization »
Meyer Scetbon · Marco Cuturi · Gabriel Peyré -
2020 Poster: Randomization matters How to defend against strong adversarial attacks »
Rafael Pinot · Raphael Ettedgui · Geovani Rizk · Yann Chevaleyre · Jamal Atif -
2020 Poster: Harmonic Decompositions of Convolutional Networks »
Meyer Scetbon · Zaid Harchaoui