Timezone: »

 
Lost in Translation: Modern Image Classifiers still degrade even under simple Translations
Leander Kurscheidt · Matthias Hein

Fri Jul 22 11:00 AM -- 11:02 AM (PDT) @
in Shift happens: Crowdsourcing metrics and test datasets beyond ImageNet »
Event URL: https://openreview.net/forum?id=L8awC6wq_Fs »

Modern image classifiers are used potentially in safety-critical applications and thus should not be vulnerable to natural transformations of the image as it can happen due to variations in the image acquisition.While it is known that image classifiers can degrade significantly in performance with respect to translations and rotations, the corresponding works did not ensure that the object of interest is fully contained in the image and also introduce boundary artefacts so that the input is not a natural image. In this paper we leverage pixelwise segmentations of the ImageNet-S dataset in order to search for the translation and rotation which ensures that the object is i) fully contained in the image (potentially together with a zoom) and ii) the image is natural (no padding with black pixels) such that the resulting natural image is misclassified. We observe a consistent drop in accuracy over a large set of image classifiers showing that natural adversarial changes are an important threat model which deserves more attention.

Author Information

Leander Kurscheidt (Eberhard-Karls-Universität Tübingen)
Leander Kurscheidt

Master Student at the University of Tübingen Looking for a PhD! Leander.Kurscheidt@gmx.de

Matthias Hein (University of Tübingen)

Related Events (a corresponding poster, oral, or spotlight)

More from the Same Authors