search

Day 15 Activation Functions

Day 15 Poster

hashtag
Activation Functions: Tiny Math Gates That Can Break Your Model

Think activation functions (ReLU, Sigmoid, Tanh, Softmax) are just boring math between layers? Think again! They shape how your model learns and how it can be attacked.

hashtag
πŸ” Why They Matter:

  • Introduce non-linearity, enabling models to learn complex patterns

  • Decide if a neuron "fires"

  • Without them, deep learning is just glorified linear regression!

hashtag
πŸ“Œ Common Types

  • ReLU: max(0, x) β€” Fast, promotes sparsity, but neurons can β€œdie” (stay inactive)

  • Sigmoid: S-shaped, squashes outputs to (0,1) β€” great for binary tasks, but prone to vanishing gradients

  • Tanh: Like Sigmoid, but outputs (-1,1) β€” centers data for better gradients

  • Softmax: Turns raw scores into probabilities β€” ideal for classification

hashtag
πŸ” Security Lens:

hashtag
πŸ“‰ Vanishing Gradients (Sigmoid, Tanh)

  • Problem: Gradients shrink in deep networks, stalling learning

  • πŸ’₯ Attack: Poisoned data causes β€œgradient obfuscation,” weakening deep layers

  • πŸ›‘οΈ Mitigation: Use ReLU/variants, Layer Normalization

hashtag
πŸ’€ Dead ReLU Exploits

  • Problem: ReLU outputs 0 for negative inputs β€” neurons can get stuck "off"

  • πŸ’₯ Attack: Crafted inputs force critical neurons into this "dead" state

  • πŸ›‘οΈ Mitigation: Use Leaky ReLU or Parametric ReLU (PReLU)

hashtag
🀯 Softmax Confidence Overload

  • Problem: Softmax assigns high confidence to even nonsensical inputs

  • πŸ’₯ Attack: Fooling models (e.g., near-blank image β†’ β€œStop Sign” with 99% confidence) β€” huge risk in autonomous systems!

  • πŸ›‘οΈ Mitigation: Output regularization, Confidence Calibration (e.g., Temperature Scaling)

hashtag
πŸ‘» Gradient Exploitation (Smooth Activations like Sigmoid/Tanh)

  • Problem: Smooth gradients are easier for attackers to reverse engineer

  • πŸ’₯ Attack: Subtle adversarial examples that fool the model with high confidence

  • πŸ›‘οΈ Mitigation: Add gradient noise, use adversarial training

hashtag
πŸ“š Key References

  • Goodfellow et al. (2014): Introduced adversarial examples

  • Carlini & Wagner (2017): Robustness testing techniques

  • Su et al. (2019): One-pixel attacks on deep neural networks

hashtag
πŸ’¬ Let’s Discuss!

  • ML engineers: How do you prevent dead ReLUs in production?

  • Security pros: Seen activation-related attacks in the wild?

  • Everyone: How do you balance model performance vs. robustness?

πŸ“… Tomorrow: Deep vs. Shallow Models β€” Which fails more gracefully under attack?

πŸ”— Missed Day 14? https://lnkd.in/gvqKwDEKarrow-up-right

#100DaysOfAISec #AISecurity #MLSecurity #MachineLearningSecurity #ActivationFunctions #CyberSecurity #AIPrivacy #AdversarialML #LearningInPublic #100DaysChallenge #ArifLearnsAI #LinkedInTech

PreviousDay 14 Support Vector MachinesNextDay 16 Deep vs Shallow Models

Last updated