Get our free extension to see links to code for papers anywhere online!

Chrome logo Add to Chrome

Firefox logo Add to Firefox
Picture for Yinpeng Dong

Yinpeng Dong

Unrestricted Adversarial Attacks on ImageNet Competition


Oct 25, 2021
Yuefeng Chen, Xiaofeng Mao, Yuan He, Hui Xue, Chao Li, Yinpeng Dong, Qi-An Fu, Xiao Yang, Wenzhao Xiang, Tianyu Pang, Hang Su, Jun Zhu, Fangcheng Liu, Chao Zhang, Hongyang Zhang, Yichi Zhang, Shilong Liu, Chang Liu, Wenzhao Xiang, Yajie Wang, Huipeng Zhou, Haoran Lyu, Yidan Xu, Zixuan Xu, Taoyu Zhu, Wenjun Li, Xianfeng Gao, Guoqiu Wang, Huanqian Yan, Ying Guo, Chaoning Zhang, Zheng Fang, Yang Wang, Bingyang Fu, Yunfei Zheng, Yekui Wang, Haorong Luo, Zhen Yang

Figure 1 for Unrestricted Adversarial Attacks on ImageNet Competition
Figure 2 for Unrestricted Adversarial Attacks on ImageNet Competition
Figure 3 for Unrestricted Adversarial Attacks on ImageNet Competition
* CVPR-2021 AIC Phase VI Track2: Unrestricted Adversarial Attacks on ImageNet 
  Access Paper or Ask Questions

Adversarial Attacks on ML Defense Models Competition


Oct 15, 2021
Yinpeng Dong, Qi-An Fu, Xiao Yang, Wenzhao Xiang, Tianyu Pang, Hang Su, Jun Zhu, Jiayu Tang, Yuefeng Chen, XiaoFeng Mao, Yuan He, Hui Xue, Chao Li, Ye Liu, Qilong Zhang, Lianli Gao, Yunrui Yu, Xitong Gao, Zhe Zhao, Daquan Lin, Jiadong Lin, Chuanbiao Song, Zihao Wang, Zhennan Wu, Yang Guo, Jiequan Cui, Xiaogang Xu, Pengguang Chen

Figure 1 for Adversarial Attacks on ML Defense Models Competition
Figure 2 for Adversarial Attacks on ML Defense Models Competition
Figure 3 for Adversarial Attacks on ML Defense Models Competition
Figure 4 for Adversarial Attacks on ML Defense Models Competition
* Competition Report 
  Access Paper or Ask Questions

Model-Agnostic Meta-Attack: Towards Reliable Evaluation of Adversarial Robustness


Oct 13, 2021
Xiao Yang, Yinpeng Dong, Wenzhao Xiang, Tianyu Pang, Hang Su, Jun Zhu

Figure 1 for Model-Agnostic Meta-Attack: Towards Reliable Evaluation of Adversarial Robustness
Figure 2 for Model-Agnostic Meta-Attack: Towards Reliable Evaluation of Adversarial Robustness
Figure 3 for Model-Agnostic Meta-Attack: Towards Reliable Evaluation of Adversarial Robustness
Figure 4 for Model-Agnostic Meta-Attack: Towards Reliable Evaluation of Adversarial Robustness

  Access Paper or Ask Questions

Boosting Transferability of Targeted Adversarial Examples via Hierarchical Generative Networks


Jul 05, 2021
Xiao Yang, Yinpeng Dong, Tianyu Pang, Hang Su, Jun Zhu

Figure 1 for Boosting Transferability of Targeted Adversarial Examples via Hierarchical Generative Networks
Figure 2 for Boosting Transferability of Targeted Adversarial Examples via Hierarchical Generative Networks
Figure 3 for Boosting Transferability of Targeted Adversarial Examples via Hierarchical Generative Networks
Figure 4 for Boosting Transferability of Targeted Adversarial Examples via Hierarchical Generative Networks

  Access Paper or Ask Questions

Improving Transferability of Adversarial Patches on Face Recognition with Generative Models


Jun 29, 2021
Zihao Xiao, Xianfeng Gao, Chilin Fu, Yinpeng Dong, Wei Gao, Xiaolu Zhang, Jun Zhou, Jun Zhu

Figure 1 for Improving Transferability of Adversarial Patches on Face Recognition with Generative Models
Figure 2 for Improving Transferability of Adversarial Patches on Face Recognition with Generative Models
Figure 3 for Improving Transferability of Adversarial Patches on Face Recognition with Generative Models
Figure 4 for Improving Transferability of Adversarial Patches on Face Recognition with Generative Models
* Accpeted by CVPR 2021. Based on the camera ready version, some typos are fixed 
  Access Paper or Ask Questions

Accumulative Poisoning Attacks on Real-time Data


Jun 18, 2021
Tianyu Pang, Xiao Yang, Yinpeng Dong, Hang Su, Jun Zhu

Figure 1 for Accumulative Poisoning Attacks on Real-time Data
Figure 2 for Accumulative Poisoning Attacks on Real-time Data
Figure 3 for Accumulative Poisoning Attacks on Real-time Data
Figure 4 for Accumulative Poisoning Attacks on Real-time Data

  Access Paper or Ask Questions

Exploring Memorization in Adversarial Training


Jun 03, 2021
Yinpeng Dong, Ke Xu, Xiao Yang, Tianyu Pang, Zhijie Deng, Hang Su, Jun Zhu

Figure 1 for Exploring Memorization in Adversarial Training
Figure 2 for Exploring Memorization in Adversarial Training
Figure 3 for Exploring Memorization in Adversarial Training
Figure 4 for Exploring Memorization in Adversarial Training

  Access Paper or Ask Questions

Adversarial Training with Rectified Rejection


May 31, 2021
Tianyu Pang, Huishuai Zhang, Di He, Yinpeng Dong, Hang Su, Wei Chen, Jun Zhu, Tie-Yan Liu

Figure 1 for Adversarial Training with Rectified Rejection
Figure 2 for Adversarial Training with Rectified Rejection
Figure 3 for Adversarial Training with Rectified Rejection
Figure 4 for Adversarial Training with Rectified Rejection

  Access Paper or Ask Questions

Automated Decision-based Adversarial Attacks


May 09, 2021
Qi-An Fu, Yinpeng Dong, Hang Su, Jun Zhu

Figure 1 for Automated Decision-based Adversarial Attacks
Figure 2 for Automated Decision-based Adversarial Attacks
Figure 3 for Automated Decision-based Adversarial Attacks
Figure 4 for Automated Decision-based Adversarial Attacks
* 16 pages, 6 figures 
  Access Paper or Ask Questions

Black-box Detection of Backdoor Attacks with Limited Information and Data


Mar 24, 2021
Yinpeng Dong, Xiao Yang, Zhijie Deng, Tianyu Pang, Zihao Xiao, Hang Su, Jun Zhu

Figure 1 for Black-box Detection of Backdoor Attacks with Limited Information and Data
Figure 2 for Black-box Detection of Backdoor Attacks with Limited Information and Data
Figure 3 for Black-box Detection of Backdoor Attacks with Limited Information and Data
Figure 4 for Black-box Detection of Backdoor Attacks with Limited Information and Data

  Access Paper or Ask Questions

BayesAdapter: Being Bayesian, Inexpensively and Robustly, via Bayeisan Fine-tuning


Oct 05, 2020
Zhijie Deng, Xiao Yang, Hao Zhang, Yinpeng Dong, Jun Zhu

Figure 1 for BayesAdapter: Being Bayesian, Inexpensively and Robustly, via Bayeisan Fine-tuning
Figure 2 for BayesAdapter: Being Bayesian, Inexpensively and Robustly, via Bayeisan Fine-tuning
Figure 3 for BayesAdapter: Being Bayesian, Inexpensively and Robustly, via Bayeisan Fine-tuning
Figure 4 for BayesAdapter: Being Bayesian, Inexpensively and Robustly, via Bayeisan Fine-tuning

  Access Paper or Ask Questions

Bag of Tricks for Adversarial Training


Oct 01, 2020
Tianyu Pang, Xiao Yang, Yinpeng Dong, Hang Su, Jun Zhu

Figure 1 for Bag of Tricks for Adversarial Training
Figure 2 for Bag of Tricks for Adversarial Training
Figure 3 for Bag of Tricks for Adversarial Training
Figure 4 for Bag of Tricks for Adversarial Training

  Access Paper or Ask Questions

Delving into the Adversarial Robustness on Face Recognition


Jul 08, 2020
Xiao Yang, Dingcheng Yang, Yinpeng Dong, Wenjian Yu, Hang Su, Jun Zhu

Figure 1 for Delving into the Adversarial Robustness on Face Recognition
Figure 2 for Delving into the Adversarial Robustness on Face Recognition
Figure 3 for Delving into the Adversarial Robustness on Face Recognition
Figure 4 for Delving into the Adversarial Robustness on Face Recognition

  Access Paper or Ask Questions

Towards Privacy Protection by Generating Adversarial Identity Masks


Mar 15, 2020
Xiao Yang, Yinpeng Dong, Tianyu Pang, Jun Zhu, Hang Su

Figure 1 for Towards Privacy Protection by Generating Adversarial Identity Masks
Figure 2 for Towards Privacy Protection by Generating Adversarial Identity Masks
Figure 3 for Towards Privacy Protection by Generating Adversarial Identity Masks
Figure 4 for Towards Privacy Protection by Generating Adversarial Identity Masks
* 19 pages 
  Access Paper or Ask Questions

Boosting Adversarial Training with Hypersphere Embedding


Feb 20, 2020
Tianyu Pang, Xiao Yang, Yinpeng Dong, Kun Xu, Hang Su, Jun Zhu

Figure 1 for Boosting Adversarial Training with Hypersphere Embedding
Figure 2 for Boosting Adversarial Training with Hypersphere Embedding
Figure 3 for Boosting Adversarial Training with Hypersphere Embedding
Figure 4 for Boosting Adversarial Training with Hypersphere Embedding

  Access Paper or Ask Questions

Adversarial Distributional Training for Robust Deep Learning


Feb 14, 2020
Zhijie Deng, Yinpeng Dong, Tianyu Pang, Hang Su, Jun Zhu

Figure 1 for Adversarial Distributional Training for Robust Deep Learning
Figure 2 for Adversarial Distributional Training for Robust Deep Learning
Figure 3 for Adversarial Distributional Training for Robust Deep Learning
Figure 4 for Adversarial Distributional Training for Robust Deep Learning

  Access Paper or Ask Questions

Benchmarking Adversarial Robustness


Dec 26, 2019
Yinpeng Dong, Qi-An Fu, Xiao Yang, Tianyu Pang, Hang Su, Zihao Xiao, Jun Zhu

Figure 1 for Benchmarking Adversarial Robustness
Figure 2 for Benchmarking Adversarial Robustness
Figure 3 for Benchmarking Adversarial Robustness
Figure 4 for Benchmarking Adversarial Robustness

  Access Paper or Ask Questions

Improving Black-box Adversarial Attacks with a Transfer-based Prior


Jun 17, 2019
Shuyu Cheng, Yinpeng Dong, Tianyu Pang, Hang Su, Jun Zhu

Figure 1 for Improving Black-box Adversarial Attacks with a Transfer-based Prior
Figure 2 for Improving Black-box Adversarial Attacks with a Transfer-based Prior
Figure 3 for Improving Black-box Adversarial Attacks with a Transfer-based Prior
Figure 4 for Improving Black-box Adversarial Attacks with a Transfer-based Prior

  Access Paper or Ask Questions

Rethinking Softmax Cross-Entropy Loss for Adversarial Robustness


May 25, 2019
Tianyu Pang, Kun Xu, Yinpeng Dong, Chao Du, Ning Chen, Jun Zhu

Figure 1 for Rethinking Softmax Cross-Entropy Loss for Adversarial Robustness
Figure 2 for Rethinking Softmax Cross-Entropy Loss for Adversarial Robustness
Figure 3 for Rethinking Softmax Cross-Entropy Loss for Adversarial Robustness
Figure 4 for Rethinking Softmax Cross-Entropy Loss for Adversarial Robustness

  Access Paper or Ask Questions

Efficient Decision-based Black-box Adversarial Attacks on Face Recognition


Apr 09, 2019
Yinpeng Dong, Hang Su, Baoyuan Wu, Zhifeng Li, Wei Liu, Tong Zhang, Jun Zhu

Figure 1 for Efficient Decision-based Black-box Adversarial Attacks on Face Recognition
Figure 2 for Efficient Decision-based Black-box Adversarial Attacks on Face Recognition
Figure 3 for Efficient Decision-based Black-box Adversarial Attacks on Face Recognition
Figure 4 for Efficient Decision-based Black-box Adversarial Attacks on Face Recognition
* CVPR 2019 
  Access Paper or Ask Questions

Evading Defenses to Transferable Adversarial Examples by Translation-Invariant Attacks


Apr 05, 2019
Yinpeng Dong, Tianyu Pang, Hang Su, Jun Zhu

Figure 1 for Evading Defenses to Transferable Adversarial Examples by Translation-Invariant Attacks
Figure 2 for Evading Defenses to Transferable Adversarial Examples by Translation-Invariant Attacks
Figure 3 for Evading Defenses to Transferable Adversarial Examples by Translation-Invariant Attacks
Figure 4 for Evading Defenses to Transferable Adversarial Examples by Translation-Invariant Attacks
* CVPR 2019 (Oral) 
  Access Paper or Ask Questions

Batch Virtual Adversarial Training for Graph Convolutional Networks


Feb 25, 2019
Zhijie Deng, Yinpeng Dong, Jun Zhu

Figure 1 for Batch Virtual Adversarial Training for Graph Convolutional Networks
Figure 2 for Batch Virtual Adversarial Training for Graph Convolutional Networks
Figure 3 for Batch Virtual Adversarial Training for Graph Convolutional Networks
Figure 4 for Batch Virtual Adversarial Training for Graph Convolutional Networks

  Access Paper or Ask Questions

Towards Interpretable Deep Neural Networks by Leveraging Adversarial Examples


Jan 25, 2019
Yinpeng Dong, Fan Bao, Hang Su, Jun Zhu

Figure 1 for Towards Interpretable Deep Neural Networks by Leveraging Adversarial Examples
Figure 2 for Towards Interpretable Deep Neural Networks by Leveraging Adversarial Examples
Figure 3 for Towards Interpretable Deep Neural Networks by Leveraging Adversarial Examples
Figure 4 for Towards Interpretable Deep Neural Networks by Leveraging Adversarial Examples
* In AAAI-19 Workshop on Network Interpretability for Deep Learning 
  Access Paper or Ask Questions

Composite Binary Decomposition Networks


Nov 16, 2018
You Qiaoben, Zheng Wang, Jianguo Li, Yinpeng Dong, Yu-Gang Jiang, Jun Zhu

Figure 1 for Composite Binary Decomposition Networks
Figure 2 for Composite Binary Decomposition Networks
Figure 3 for Composite Binary Decomposition Networks
Figure 4 for Composite Binary Decomposition Networks

  Access Paper or Ask Questions

Technical Report on the CleverHans v2.1.0 Adversarial Examples Library


Jun 27, 2018
Nicolas Papernot, Fartash Faghri, Nicholas Carlini, Ian Goodfellow, Reuben Feinman, Alexey Kurakin, Cihang Xie, Yash Sharma, Tom Brown, Aurko Roy, Alexander Matyasko, Vahid Behzadan, Karen Hambardzumyan, Zhishuai Zhang, Yi-Lin Juang, Zhi Li, Ryan Sheatsley, Abhibhav Garg, Jonathan Uesato, Willi Gierke, Yinpeng Dong, David Berthelot, Paul Hendricks, Jonas Rauber, Rujun Long, Patrick McDaniel

* Technical report for https://github.com/tensorflow/cleverhans 
  Access Paper or Ask Questions

Learning Visual Knowledge Memory Networks for Visual Question Answering


Jun 13, 2018
Zhou Su, Chen Zhu, Yinpeng Dong, Dongqi Cai, Yurong Chen, Jianguo Li

Figure 1 for Learning Visual Knowledge Memory Networks for Visual Question Answering
Figure 2 for Learning Visual Knowledge Memory Networks for Visual Question Answering
Figure 3 for Learning Visual Knowledge Memory Networks for Visual Question Answering
Figure 4 for Learning Visual Knowledge Memory Networks for Visual Question Answering
* Supplementary to CVPR 2018 version 
  Access Paper or Ask Questions

Defense against Adversarial Attacks Using High-Level Representation Guided Denoiser


May 08, 2018
Fangzhou Liao, Ming Liang, Yinpeng Dong, Tianyu Pang, Xiaolin Hu, Jun Zhu

Figure 1 for Defense against Adversarial Attacks Using High-Level Representation Guided Denoiser
Figure 2 for Defense against Adversarial Attacks Using High-Level Representation Guided Denoiser
Figure 3 for Defense against Adversarial Attacks Using High-Level Representation Guided Denoiser
Figure 4 for Defense against Adversarial Attacks Using High-Level Representation Guided Denoiser
* CVPR 2018 
  Access Paper or Ask Questions

Adversarial Attacks and Defences Competition


Mar 31, 2018
Alexey Kurakin, Ian Goodfellow, Samy Bengio, Yinpeng Dong, Fangzhou Liao, Ming Liang, Tianyu Pang, Jun Zhu, Xiaolin Hu, Cihang Xie, Jianyu Wang, Zhishuai Zhang, Zhou Ren, Alan Yuille, Sangxia Huang, Yao Zhao, Yuzhe Zhao, Zhonglin Han, Junjiajia Long, Yerkebulan Berdibekov, Takuya Akiba, Seiya Tokui, Motoki Abe

Figure 1 for Adversarial Attacks and Defences Competition
Figure 2 for Adversarial Attacks and Defences Competition
Figure 3 for Adversarial Attacks and Defences Competition
Figure 4 for Adversarial Attacks and Defences Competition
* 36 pages, 10 figures 
  Access Paper or Ask Questions

Boosting Adversarial Attacks with Momentum


Mar 22, 2018
Yinpeng Dong, Fangzhou Liao, Tianyu Pang, Hang Su, Jun Zhu, Xiaolin Hu, Jianguo Li

Figure 1 for Boosting Adversarial Attacks with Momentum
Figure 2 for Boosting Adversarial Attacks with Momentum
Figure 3 for Boosting Adversarial Attacks with Momentum
Figure 4 for Boosting Adversarial Attacks with Momentum
* CVPR 2018 Spotlight 
  Access Paper or Ask Questions