Efficient Training of Robust Decision Trees Against Adversarial Examples

None, None; None, None

Efficient Training of Robust Decision Trees Against Adversarial Examples

Conference Paper (2021)

Author(s)

Daniël Vos (TU Delft - Cyber Security)

S.E. Verwer (TU Delft - Cyber Security)

Research Group

Cyber Security

Copyright

To reference this document use:

https://resolver.tudelft.nl/uuid:2be8b41c-dfc7-411f-9727-1c4c5df3adaa

More Info

expand_more

Publication Year

2021

Language

English

Copyright

Research Group

Cyber Security

Pages (from-to)

702-703

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Abstract

Recently it has been shown that many machine learning models are vulnerable to adversarial examples: perturbed samples that trick the model into misclassifying them. Neural networks have received much attention but decision trees and their ensembles achieve state-of-the-art results on tabular data, motivating research on their robustness. Recently the first methods have been proposed to train decision trees and their ensembles robustly [4, 3, 2, 1] but the state-of-the-art methods are expensive to run.

Files

Bnaic2021_preproceedings9.pdf

(pdf | 0.235 Mb)

License info not available