Adversarial Robustness of NTK Neural Networks

Researchers establish minimax optimal adversarial robustness rates for Neural Tangent Kernel networks in Sobolev spaces, proving gradient flow training with early stopping achieves these rates. Critically, minimum norm interpolation in the overfitting regime is provably vulnerable to adversarial perturbations. ML theorists and safety-critical deployment engineers should note this early stopping imperative as a formal robustness guarantee, advancing beyond prior empirical adversarial training heuristics.