Memory Efficient Full-gradient Attacks (MEFA) Framework for Adversarial Defense Evaluations
概要
arXiv:2605.06357v1 Announce Type: cross Abstract: This work studies the robust evaluation of iterative stochastic purification defenses under white-box adversarial attacks. Our key technical insight is that gradient checkpointing makes exact end-to-end gradient computation through long purification…
