Skip to main content
Input restoration adds an extra layer of unknowns and randomness when an adversary evaluates the input and output relationship of the model. This technique reduces the effectiveness of an attacker by preventing or reversing adversarial perturbations.

Explanation

 

How it works

 

How to implement