We show that hybrid quantum classifiers based on quantum kernel methods and support vector machines are vulnerable against adversarial attacks, namely small engineered perturbations of the input data can deceive the classifier into predicting the wrong result. Nonetheless, we also show that simple defense strategies based on data augmentation with a few crafted perturbations can make the classifier robust against new attacks. Our results find applications in security-critical learning problems and in mitigating the effect of some forms of quantum noise, since the attacker can also be understood as part of the surrounding environment.
Quantum adversarial learning for kernel methods / Montalbano, Giuseppe; Banchi, Leonardo. - In: QUANTUM MACHINE INTELLIGENCE. - ISSN 2524-4906. - ELETTRONICO. - 7:(2025), pp. 15.0-15.0. [10.1007/s42484-025-00238-8]
Quantum adversarial learning for kernel methods
Banchi, Leonardo
2025
Abstract
We show that hybrid quantum classifiers based on quantum kernel methods and support vector machines are vulnerable against adversarial attacks, namely small engineered perturbations of the input data can deceive the classifier into predicting the wrong result. Nonetheless, we also show that simple defense strategies based on data augmentation with a few crafted perturbations can make the classifier robust against new attacks. Our results find applications in security-critical learning problems and in mitigating the effect of some forms of quantum noise, since the attacker can also be understood as part of the surrounding environment.
| File | Dimensione | Formato | |
|---|---|---|---|
|
s42484-025-00238-8.pdf
Accesso chiuso
Tipologia:
Pdf editoriale (Version of record)
Licenza:
Open Access
Dimensione
1.73 MB
Formato
Adobe PDF
|
1.73 MB | Adobe PDF | Richiedi una copia |
I documenti in FLORE sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
