中文抖动防御：基于多级Floyd-Steinberg抖动的视觉基础模型对抗鲁棒性

视觉基础模型作为冻结骨干易受对抗攻击。本研究采用多级Floyd-Steinberg误差扩散抖动，一种轻量、模型无关的输入变换，在保持语义内容的同时破坏对抗扰动。与以往仅限于二值抖动和单小模型不同，我们在分类、分割、深度估计等六个任务上评估，验证了其有效性与通用性，为保护AI模型提供实用防御手段。

arXiv:2605.23065v1 Announce Type: new Abstract: Vision foundation models are widely used as frozen backbones across many downstream tasks, making them a single point of failure under adversarial attack. We study multi-level Floyd-Steinberg error-diffusion dithering as a lightweight, model-agnostic input transformation that disrupts adversarial perturbations while preserving semantic content. Unlike prior work, which was limited to binary dithering, grayscale CIFAR-10, and a single small model trained from scratch, we evaluate across six tasks (classification, segmentation, depth estimation, re