A Unified Detector for Both Adversarial Attacks and Out-of-Distribution Samples Based on Kernel Path Distribution
- Authors
- Kim, Seonggyeom; Kim, Minju; Chae, Dong-Kyu
- Issue Date
- Jun-2025
- Publisher
- Springer Verlag
- Keywords
- Adversarial attack detection; Out-of-distribution detection
- Citation
- Lecture Notes in Computer Science, v.15870, pp 57 - 69
- Pages
- 13
- Indexed
- SCOPUS
- Journal Title
- Lecture Notes in Computer Science
- Volume
- 15870
- Start Page
- 57
- End Page
- 69
- URI
- https://scholarworks.bwise.kr/hanyang/handle/2021.sw.hanyang/208316
- DOI
- 10.1007/978-981-96-8170-9_5
- ISSN
- 0302-9743
1611-3349
- Abstract
- The ability to detect abnormal examples is a critical function in building reliable AI systems. Various methods have been developed to detect adversarial examples (AE) and out-of-distribution (OOD) cases. However, existing methods suffer from limitations such as high execution time and limited accuracy. In addition, most existing approaches aim to solve only one of the AE or OOD detection tasks. We propose Kernel Path Distribution (KPD), a novel abnormal sample detector that is accurate, fast, and seamlessly applicable to both AE and OOD detection tasks. Our key idea is to selectively utilize a small number of crucial kernels for each layer, which are highly confident to in-distribution samples. A probability density function drawn from the paths of the selected kernels is then used to filter out abnormal samples. Empirically, we show that KPD achieves the best performance on both the AE and OOD detection problems while being computationally efficient. We also confirm the robustness of KPD against the adaptive attack specifically designed to defeat it. Our code is available at: https://github.com/gyeomo/KPD.
- Files in This Item
-
Go to Link
- Appears in
Collections - 서울 공과대학 > 서울 컴퓨터소프트웨어학부 > 1. Journal Articles

Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.