Yunrui Yu

defense arXiv Mar 25, 2026 · 14d ago

Why the Maximum Second Derivative of Activations Matters for Adversarial Robustness

Yunrui Yu, Hang Su, Jun Zhu · Tsinghua University

Discovers optimal adversarial robustness occurs when activation function curvature falls within 4-10, revealing fundamental expressivity-sharpness trade-off

Input Manipulation Attack vision

PDF

attack arXiv Mar 31, 2026 · 8d ago

Dummy-Aware Weighted Attack (DAWA): Breaking the Safe Sink in Dummy Class Defenses

Yunrui Yu, Xuxiang Feng, Pengda Qin et al. · Tsinghua University · University of Macau +1 more

Novel adversarial attack targeting dummy-class defenses by simultaneously attacking true and dummy labels with adaptive weighting

Input Manipulation Attack vision

PDF

Papers in Database (2)

Why the Maximum Second Derivative of Activations Matters for Adversarial Robustness

Dummy-Aware Weighted Attack (DAWA): Breaking the Safe Sink in Dummy Class Defenses