I am a third year Ph.D student at LAMSADE, Université Paris Dauphine - PSL, where I work under the supervision of of Yann Chevaleyre and Benjamin Negrevergne
I am interested in achieving robustness to adversarial attacks by randomization, particularly mixtures of models, both in theory and practice.
Mixtures of models are like ensembles, but instead of aggregating the decision of every model in a deterministic way, the final decision is taken by first sampling one of the models and using it to predict.
These models are stochastic in nature and therefore harder to attack in the context of adversarial attacks. My goal is to better understand mixtures, how to attack them and ultimately how to build robust mixtures to adversarial attacks.