Does your NLP model able to prevent adversarial attack?

Adversarial Attack

Photo by Jeffrey F Lin on Unsplash

Adversarial attack is way to fool models through abnormal input. Szegedy et al. (2013) introduces it on computer vision field. Given a set of normal pictures, superior image classification model can classify it correctly. However, same model is no longer classify input with noise (not random noise).