Interpolated Joint Space Adversarial Training for Robust and
Generalizable Defenses
Interpolated Joint Space Adversarial Training for Robust and
Generalizable Defenses
Adversarial training (AT) is considered to be one of the most reliable defenses against adversarial attacks. However, models trained with AT sacrifice standard accuracy and do not generalize well to novel attacks. Recent works show generalization improvement with adversarial samples under novel threat models such as on-manifold threat model or …