X
BASIS Independent Schools
Campuses
Menu
Student wearing graduation capAchievements
BASIS Curriculum students attend prestigious colleges and universities and grow into participants, not spectators, in their academic and professional lives.
Woman sitting at computerMedia Recognition
Our curriculum provides students opportunities to demonstrate excellence in and out of the classroom.
Students reading bookCurriculum
Creativity, innovation, and disciplined experimentation powered by traditional content knowledge is the signature of our worldwide learning community.
Teacher working at whiteboardFaculty
The foundation of our culture and the success of our students lies in the hands of our teachers. Our administration exists to support our teachers.
Students in classroomApplication Process
We offer plenty of opportunities to discover the difference of a BASIS Independent Brooklyn education. We look forward to meeting you!
Students working in classroomAdmissions Events
Learn all there is to know about how to apply for admission to BASIS Independent Brooklyn.
BASIS_specialty-camps.jpgSummer Programs
From traditional day camps to virtual academic programs, BASIS Independent offers more ways for your child to shine than ever before!
Basketball courtSports & Athletics
Our comprehensive sports & athletics program ranges from interscholastic, competitive team sports to individual, movement-based after school activities. Go BEARS!

Week Seven: Writing and Experiment Planning

May 27, 2022

Hello everyone! I spent this last week focusing on writing an introduction to my paper and on planning some experiments to do over the course of the next two weeks. Reading papers on saturated autoencoders and how they tend to be more overfitted to the data has piqued my interest in adversarial subspaces. As theory goes, adversarial subspaces are areas of the input space (in the case of my autoencoder, a 784-dimensional space because each pixel of the 28×28 image is considered one dimension) where there are no data points yet the classifier has a high certainty of a label for that space. This allows adversarial attacks to find adversarial examples close to correctly labeled data by finding the closest subspace rather than finding an area close to correctly labeled points of a different class to fool the classifier.

Some of the experiments I want to conduct are:

  • Using latent dimension data of my autoencoder to create a visualization of the properties of the high dimensional space in 2D. Possible create a classifier and visualize how it labels the input space to see if we can see adversarial examples
  • Using the distance of adversarial examples from the attacked image to the closest data point of the same label as the adversarial image to see if these adversarial attacks are really using these subspaces.
  • See if it is possible to map out these subspaces using an algorithm that takes an adversarial example and finds the borders of the input group it lays on

Leave a Reply