Our new paper Optimal Zero-Shot Detector for Multi-Armed Attacks has been accepted to appear at AISTATS 2024. In this paper we propose a minimum-regret optimal framework to aggregate adverarial attack detectors to minimize the worst-case risk.
Marco Romanelli
Research Associate
My research interests include applications of Information Theory notions to Privacy and Security, Safety in AI, Machine Learning and Information Leakage Measurement.