1 code implementation • ICLR 2021 • Fatemeh Sheikholeslami, Ali Lotfi, J Zico Kolter
Adversarial attacks against deep networks can be defended against either by building robust classifiers or, by creating classifiers that can \emph{detect} the presence of adversarial perturbations.