{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,28]],"date-time":"2025-11-28T04:35:49Z","timestamp":1764304549151,"version":"3.28.0"},"reference-count":38,"publisher":"IEEE","license":[{"start":{"date-parts":[[2019,7,1]],"date-time":"2019-07-01T00:00:00Z","timestamp":1561939200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/ieeexplore.ieee.org\/Xplorehelp\/downloads\/license-information\/IEEE.html"},{"start":{"date-parts":[[2019,7,1]],"date-time":"2019-07-01T00:00:00Z","timestamp":1561939200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-029"},{"start":{"date-parts":[[2019,7,1]],"date-time":"2019-07-01T00:00:00Z","timestamp":1561939200000},"content-version":"stm-asf","delay-in-days":0,"URL":"https:\/\/doi.org\/10.15223\/policy-037"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2019,7]]},"DOI":"10.1109\/ijcnn.2019.8852285","type":"proceedings-article","created":{"date-parts":[[2019,10,1]],"date-time":"2019-10-01T03:44:32Z","timestamp":1569901472000},"page":"1-9","source":"Crossref","is-referenced-by-count":18,"title":["Detecting Adversarial Perturbations Through Spatial Behavior in Activation Spaces"],"prefix":"10.1109","author":[{"given":"Ziv","family":"Katzir","sequence":"first","affiliation":[]},{"given":"Yuval","family":"Elovici","sequence":"additional","affiliation":[]}],"member":"263","reference":[{"key":"ref38","first-page":"2579","article-title":"Visualizing data using t-SNE","volume":"9","author":"maaten","year":"2008","journal-title":"Journal of Machine Learning Research"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/ICASSP.2017.7953159"},{"article-title":"Intriguing properties of neural networks","year":"2013","author":"szegedy","key":"ref32"},{"key":"ref31","first-page":"1891","article-title":"Deep learning face representation from predicting 10,000 classes","author":"sun","year":"2014","journal-title":"Proceedings of the IEEE Conference on Computer Vision and Pattern Recognition"},{"article-title":"One pixel attack for fooling deep neural networks","year":"2017","author":"su","key":"ref30"},{"article-title":"Deep k-nearest neighbors: Towards confident, interpretable and robust deep learning","year":"2018","author":"papernot","key":"ref37"},{"article-title":"On detecting adversarial perturbations","year":"2017","author":"metzen","key":"ref36"},{"key":"ref35","doi-asserted-by":"publisher","DOI":"10.1109\/ICCV.2017.615"},{"article-title":"On the (statistical) detection of adversarial examples","year":"2017","author":"grosse","key":"ref34"},{"article-title":"Explaining and harnessing adversarial examples","year":"2014","author":"goodfellow","key":"ref10"},{"article-title":"Early methods for detecting adversarial images","year":"2016","author":"hendrycks","key":"ref11"},{"article-title":"The robust manifold defense: Adversarial training using generative models","year":"2017","author":"ilyas","key":"ref12"},{"year":"0","key":"ref13","article-title":"Keras MNIST CNN Tutorial"},{"key":"ref14","first-page":"7","article-title":"Learning multiple layers of features from tiny images (Vol","volume":"1","author":"krizhevsky","year":"2009"},{"article-title":"Adversarial examples in the physical world","year":"2016","author":"kurakin","key":"ref15"},{"article-title":"Adversarial machine learning at scale","year":"2016","author":"kurakin","key":"ref16"},{"key":"ref17","first-page":"2","article-title":"MNIST handwritten digit database","author":"lecun","year":"2010","journal-title":"AT&T Labs"},{"article-title":"Generative Adversarial Trainer: Defense to Adversarial Perturbations with GAN","year":"2017","author":"lee","key":"ref18"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/CVPR.2017.17"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1145\/2976749.2978392"},{"article-title":"Dimensionality reduction as a defense against evasion attacks on machine learning classifiers","year":"2017","author":"bhagoji","key":"ref4"},{"article-title":"Defense-GAN: Protecting classifiers against adversarial attacks using generative models","year":"2018","author":"samangouei","key":"ref27"},{"article-title":"Obfuscated gradients give a false sense of security: Circumventing defenses to adversarial examples","year":"2018","author":"athalye","key":"ref3"},{"article-title":"Towards evaluating the robustness of neural networks","year":"2016","author":"carlini","key":"ref6"},{"article-title":"Pixeldefend: Leveraging generative models to understand and defend against adversarial examples","year":"2017","author":"song","key":"ref29"},{"article-title":"Defensive distillation is not robust to adversarial examples","year":"2016","author":"carlini","key":"ref5"},{"year":"0","key":"ref8","article-title":"CIFAR VGG16 Implementation"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1145\/3128572.3140444"},{"article-title":"Synthesizing robust adversarial examples","year":"2017","author":"athalye","key":"ref2"},{"article-title":"Detecting adversarial samples from artifacts","year":"2017","author":"feinman","key":"ref9"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2018.2807385"},{"article-title":"Biologically inspired protection of deep networks from adversarial attacks","year":"2017","author":"nayebi","key":"ref20"},{"article-title":"cleverhans v2. 0.0: an adversarial machine learning library","year":"2016","author":"papernot","key":"ref22"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/CVPR.2015.7298640"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1145\/3052973.3053009"},{"article-title":"Transferability in machine learning: from phenomena to black-box attacks using adversarial samples","year":"2016","author":"papernot","key":"ref23"},{"article-title":"Distillation as a defense to adversarial perturbations against deep neural networks","year":"2015","author":"papernot","key":"ref26"},{"key":"ref25","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2016.36"}],"event":{"name":"2019 International Joint Conference on Neural Networks (IJCNN)","start":{"date-parts":[[2019,7,14]]},"location":"Budapest, Hungary","end":{"date-parts":[[2019,7,19]]}},"container-title":["2019 International Joint Conference on Neural Networks (IJCNN)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8840768\/8851681\/08852285.pdf?arnumber=8852285","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,7,17]],"date-time":"2022-07-17T21:46:59Z","timestamp":1658094419000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8852285\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2019,7]]},"references-count":38,"URL":"https:\/\/doi.org\/10.1109\/ijcnn.2019.8852285","relation":{},"subject":[],"published":{"date-parts":[[2019,7]]}}}