| dc.contributor.author | Jin, Di | |
| dc.contributor.author | Jin, Zhijing | |
| dc.contributor.author | Zhou, Joey Tianyi | |
| dc.contributor.author | Szolovits, Peter | |
| dc.date.accessioned | 2022-07-20T18:28:47Z | |
| dc.date.available | 2022-07-20T18:28:47Z | |
| dc.date.issued | 2020 | |
| dc.identifier.uri | https://hdl.handle.net/1721.1/143905 | |
| dc.description.abstract | <jats:p>Machine learning algorithms are often vulnerable to adversarial examples that have imperceptible alterations from the original counterparts but can fool the state-of-the-art models. It is helpful to evaluate or even improve the robustness of these models by exposing the maliciously crafted adversarial examples. In this paper, we present TextFooler, a simple but strong baseline to generate adversarial text. By applying it to two fundamental natural language tasks, text classification and textual entailment, we successfully attacked three target models, including the powerful pre-trained BERT, and the widely used convolutional and recurrent neural networks. We demonstrate three advantages of this framework: (1) effective—it outperforms previous attacks by success rate and perturbation rate, (2) utility-preserving—it preserves semantic content, grammaticality, and correct types classified by humans, and (3) efficient—it generates adversarial text with computational complexity linear to the text length.1</jats:p> | en_US |
| dc.language.iso | en | |
| dc.publisher | Association for the Advancement of Artificial Intelligence (AAAI) | en_US |
| dc.relation.isversionof | 10.1609/AAAI.V34I05.6311 | en_US |
| dc.rights | Article is made available in accordance with the publisher's policy and may be subject to US copyright law. Please refer to the publisher's site for terms of use. | en_US |
| dc.source | Association for the Advancement of Artificial Intelligence (AAAI) | en_US |
| dc.title | Is BERT Really Robust? A Strong Baseline for Natural Language Attack on Text Classification and Entailment | en_US |
| dc.type | Article | en_US |
| dc.identifier.citation | Jin, Di, Jin, Zhijing, Zhou, Joey Tianyi and Szolovits, Peter. 2020. "Is BERT Really Robust? A Strong Baseline for Natural Language Attack on Text Classification and Entailment." Proceedings of the AAAI Conference on Artificial Intelligence, 34 (05). | |
| dc.contributor.department | Massachusetts Institute of Technology. Computer Science and Artificial Intelligence Laboratory | |
| dc.relation.journal | Proceedings of the AAAI Conference on Artificial Intelligence | en_US |
| dc.eprint.version | Final published version | en_US |
| dc.type.uri | http://purl.org/eprint/type/ConferencePaper | en_US |
| eprint.status | http://purl.org/eprint/status/NonPeerReviewed | en_US |
| dc.date.updated | 2022-07-20T18:23:43Z | |
| dspace.orderedauthors | Jin, D; Jin, Z; Zhou, JT; Szolovits, P | en_US |
| dspace.date.submission | 2022-07-20T18:23:44Z | |
| mit.journal.volume | 34 | en_US |
| mit.journal.issue | 05 | en_US |
| mit.license | PUBLISHER_POLICY | |
| mit.metadata.status | Authority Work and Publication Information Needed | en_US |
