TY - GEN
T1 - Adversarial robust model compression using in-train pruning
AU - Vemparala, Manoj Rohit
AU - Fasfous, Nael
AU - Frickenstein, Alexander
AU - Sarkar, Sreetama
AU - Zhao, Qi
AU - Kuhn, Sabine
AU - Frickenstein, Lukas
AU - Singh, Anmol
AU - Unger, Christian
AU - Nagaraja, Naveen Shankar
AU - Wressnegger, Christian
AU - Stechele, Walter
N1 - Publisher Copyright:
© 2021 IEEE.
PY - 2021/6
Y1 - 2021/6
N2 - Efficiently deploying learning-based systems on embedded hardware is challenging for various reasons, two of which are considered in this paper: The model's size and its robustness against attacks. Both need to be addressed even-handedly. We combine adversarial training and model pruning in a joint formulation of the fundamental learning objective during training. Unlike existing post-train pruning approaches, our method does not use heuristics and eliminates the need for a pre-trained model. This allows for a classifier which is robust against attacks and enables better compression of the model, reducing its computational effort. In comparison to prior work, our approach yields 6.21 pp higher accuracy for an 85 % reduction in parameters for ResNet20 on the CIFAR-10 dataset.
AB - Efficiently deploying learning-based systems on embedded hardware is challenging for various reasons, two of which are considered in this paper: The model's size and its robustness against attacks. Both need to be addressed even-handedly. We combine adversarial training and model pruning in a joint formulation of the fundamental learning objective during training. Unlike existing post-train pruning approaches, our method does not use heuristics and eliminates the need for a pre-trained model. This allows for a classifier which is robust against attacks and enables better compression of the model, reducing its computational effort. In comparison to prior work, our approach yields 6.21 pp higher accuracy for an 85 % reduction in parameters for ResNet20 on the CIFAR-10 dataset.
UR - http://www.scopus.com/inward/record.url?scp=85116002440&partnerID=8YFLogxK
U2 - 10.1109/CVPRW53098.2021.00016
DO - 10.1109/CVPRW53098.2021.00016
M3 - Conference contribution
AN - SCOPUS:85116002440
T3 - IEEE Computer Society Conference on Computer Vision and Pattern Recognition Workshops
SP - 66
EP - 75
BT - Proceedings - 2021 IEEE/CVF Conference on Computer Vision and Pattern Recognition Workshops, CVPRW 2021
PB - IEEE Computer Society
T2 - 2021 IEEE/CVF Conference on Computer Vision and Pattern Recognition Workshops, CVPRW 2021
Y2 - 19 June 2021 through 25 June 2021
ER -