Improving neural network’s robustness on tabular data with D-layers

Haiyang Xia, Nayyar Zaidi*, Yishuo Zhang, Gang Li

*Corresponding author for this work

    Research output: Contribution to journalArticlepeer-review

    Abstract

    Artificial neural networks (ANN) are widely used machine learning models. Their widespread use has attracted a lot of interest in their robustness. Many studies show that ANN’s performance can be highly vulnerable to input manipulation such as adversarial attacks and covariate drift. Therefore, various techniques that focus on improving ANN ’s robustness have been proposed in the last few years. However, most of these works have mostly focused on image data. In this paper, we investigate the role of discretization in improving ANN ’s robustness on tabular datasets. Two custom ANN layers– D1-Layer and D2-Layer (collectively called D-Layers) are proposed. The two layers integrate discretization during the training phase to improve ANN ’s ability to defend against adversarial attacks. Additionally, D2-Layer integrates dynamic discretization during testing phase as well, to provide a unified strategy to handle adversarial attacks and covariate drift. The experimental results on 24 publicly available datasets show that our proposed D-Layers add much-needed robustness to ANN for tabular datasets.

    Original languageEnglish
    Article number1
    Pages (from-to)173-205
    Number of pages23
    JournalData Mining and Knowledge Discovery
    Volume38
    Issue number1
    DOIs
    Publication statusPublished - 31 Aug 2023

    Fingerprint

    Dive into the research topics of 'Improving neural network’s robustness on tabular data with D-layers'. Together they form a unique fingerprint.

    Cite this