Singapore

Deep learning-based face recognition models are vulnerable
to adversarial attacks. In contrast to general noises, the
presence of imperceptible adversarial noises can lead to
catastrophic errors in deep face recognition models. The
primary difference between adversarial noise and general
noise lies in its specificity. Adversarial attack methods
give rise to noises tailored to the characteristics of the
individual image and recognition model at hand. Diverse
samples and recognition models can engender specific
adversarial noise patterns, which pose significant
challenges for adversarial defense. Addressing this
challenge in the realm of face recognition presents a more
formidable endeavor due to the inherent nature of face
recognition as an open set task. In order to tackle this
challenge, it is imperative to employ customized processing
for each individual input sample. Drawing inspiration from
the biological immune system, which can identify and
respond to various threats, this paper aims to create an
artificial immune system to provide adversarial defense for
face recognition. The proposed defense model incorporates
the principles of antibody cloning, mutation, selection,
and memory mechanisms to generate a distinct “antibody” for
each input sample, wherein the term “antibody” refers to a
specialized noise removal manner. Furthermore, we introduce
a self-supervised adversarial training mechanism that
serves as a simulated rehearsal of immune system invasions.
Extensive experimental results demonstrate the efficacy of
the proposed method, surpassing state-of-the-art
adversarial defense methods.

AAAI 2026

Artificial Immune System of Secure Face Recognition Against
Adversarial Attacks

technical paper

We are pleased to announce the Fortieth AAAI Conference on Artificial Intelligence (AAAI-26), which will be held in Singapore EXPO from January 20 to January 27, 2026.

The purpose of the AAAI conference series is to promote research in Artificial Intelligence (AI) and foster scientific exchange between researchers, practitioners, scientists, students, and engineers across the entirety of AI and its affiliated disciplines. AAAI-26 will feature technical paper presentations, special tracks, invited speakers, workshops, tutorials, poster sessions, senior member presentations, competitions, and exhibit programs, and a range of other activities to be announced.<br><br>

To access this event page, you need to log in with the **email address you registered with**. <br>Access credentials will be sent to your email from Underline -  subject line "Welcome to AAAI 2026". Please be sure to check your spam email folder if you do not see an email confirmation right away.

Please log in

To access this event page, you are required to register.
Please complete your registration to continue.

We recommend reading [**the registration information**](https://aaai.org/conference/aaai/aaai-26/registration/) first.

**Online Registration Form**: https://aaai.getregistered.net/conference-2026 

Registration Required

We are pleased to announce the Fortieth AAAI Conference on Artificial Intelligence (AAAI-26), which will be held in Singapore EXPO from January 20 to January 27, 2026.

Dual-system theory distinguishes between fast, intuitive System 1 and slow, deliberative System 2. While this dichotomy describes many forms of reasoning, it oversimplifies the reality of expert legal reasoning. Legal reasoning is not merely a process of slow, logical deliberation. It is intrinsically normative, embedding precedent analysis, statutory interpretation, policy balancing, and social values. This paper envisions a reasoning architecture for legal reasoning, System L (Legal System 2), which extends traditional System 2 by integrating domain-specific normative frameworks in a structured manner. Using the IRAC (Issue–Rule–Application–Conclusion) structure as a backbone model, System L represents a blueprint for the next generation of cognitive and AI systems capable of human-like legal reasoning.

System L: Toward System 2-Style Legal Reasoning

This paper surveys studies on the use of neural networks
for optimization in the training-data-free setting.
Specifically, we examine the dataless application of neural
network architectures in optimization by re-parameterizing
problems using fully connected (or MLP), convolutional,
graph, and quadratic neural networks. Although MLPs have
been used to solve linear programs a few decades ago, this
approach has recently gained increasing attention due to
its promising results across diverse applications,
including those based on combinatorial optimization,
inverse problems, and partial differential equations. The
motivation for this setting stems from two key (possibly
over-lapping) factors: (\textit{i}) data-driven learning
approaches are still underdeveloped and have yet to
demonstrate strong results, as seen in combinatorial
optimization, and (\textit{ii}) the availability of
training data is inherently limited, such as in medical
image reconstruction and other scientific applications. In
this paper, we define the dataless setting and categorize
it into two variants based on how a problem
instance—defined by a single datum—is encoded onto the
neural network: (\textit{i}) architecture-agnostic methods
and (\textit{ii}) architecture-specific methods.
Additionally, we discuss similarities and clarify
distinctions between the dataless neural network (dNN)
settings and related concepts such as zero-shot learning,
one-shot learning, lifting in optimization, and
over-parameterization.

On the Dataless Training of Neural Networks

Reinforcement learning (RL) has been recognized as a powerful tool for robot control tasks. RL typically employs reward functions to define task objectives and guide agent learning.
However, since the reward function serves the dual purpose of defining the optimal goal and guiding learning, it is challenging to design the reward function manually, which often results in a suboptimal task representation. 
To tackle the reward design challenge in RL, inspired by the satisficing theory, we propose a Test-driven Reinforcement Learning (TdRL) framework. In the TdRL framework, multiple test functions are used to represent the task objective rather than a single reward function. Test functions can be categorized as pass-fail tests and indicative tests, each dedicated to defining the optimal objective and guiding the learning process, respectively, thereby making defining tasks easier.
Building upon such a task definition, we first prove that if a trajectory return function assigns higher returns to trajectories closer to the optimal trajectory set, maximum entropy policy optimization based on this return function will yield a policy that is closer to the optimal policy set. Then, we introduce a lexicographic heuristic approach to compare the relative distance relationship between trajectories and the optimal trajectory set for learning the trajectory return function. Furthermore, we develop an algorithm implementation of TdRL.
Experimental results on the DeepMind Control Suite benchmark demonstrate that TdRL matches or outperforms handcrafted reward methods in policy training, with greater design simplicity and inherent support for multi-objective optimization.
We argue that TdRL offers a novel perspective for representing task objectives, which could be helpful in addressing the reward design challenges in RL applications.

Test-driven Reinforcement Learning in Continuous Control

The widespread deployment of large vision models such as Stable Diffusion raises significant legal and ethical concerns, as these models can memorize and reproduce copyrighted content without authorization. Existing detection approaches often lack robustness and fail to provide rigorous theoretical underpinnings. To address these gaps, we formalize the concept of copyright infringement and its detection from the perspective of Differential Privacy (DP), and introduce the conditional sensitivity metric, a concept analogous to sensitivity in DP, that quantifies the deviation in a diffusion model's output caused by the inclusion or exclusion of a specific training data point. To operationalize this metric, we propose **D-Plus-Minus (DPM)**, a novel post-hoc detection framework that identifies copyright infringement in text-to-image diffusion models. Specifically, DPM simulates inclusion and exclusion processes by fine-tuning models in two opposing directions: learning or unlearning. Besides, to disentangle concept-specific influence from the global parameter shifts induced by fine-tuning, DPM computes confidence scores over orthogonal prompt distributions using statistical metrics. Moreover, to facilitate standardized benchmarking, we also construct the **C**opyright **I**nfringement **D**etection **D**ataset (CIDD), a comprehensive resource for evaluating detection across diverse categories. Our results demonstrate that DPM reliably detects infringement content without requiring access to the original training dataset or text prompts, offering an interpretable and practical solution for safeguarding intellectual property in the era of generative AI.

Copyright Infringement Detection in Text-to-Image Diffusion Models via Differential Privacy

The proliferation of multi-person sports and collaborative training paradigms has underscored the necessity for comprehensive whole-field motion data integration. However, existing vision/WiFi-based approaches suffer from occlusion-induced tracking errors and interference-driven signal instability, compromising multi-person activity recognition performance. Notably, Electromyography (EMG) recognition, pivotal in Wearable Human Activity Recognition (WHAR) for muscle activity analysis and motion intent decoding, still struggles to balance performance and real-time efficiency in multi-person scenarios. Unlike channel-expansion approaches, we propose a wireless wearable Single-Dimensional Sparse EMG (2SEMG) Sensor for efficient personal sampling. These motion-unaffected sensors leverage the proposed lightweight One-Dimensional Motion Network (OMONet) to facilitate whole-field motion sensing. Experimental results indicate that the OMONet achieves state-of-the-art performance and efficiency in EMG and other physiological signal recognition, with its core components validated through ablation studies. The motion detection results of two representative badminton matches further validate the performance, robustness, and real-time efficiency of the whole-field motion sensing network based on 2SEMG Sensors and OMONet in real-world multi-person sports.

Whole-Field Action Sensing via Wearable Single-Channel EMG Sensors and Resource-Efficient Motion Network

Universal graph pre-training has emerged as a key paradigm in graph representation learning, offering a promising way to train encoders to learn transferable representations from unlabeled graphs and to effectively generalize across a wide range of downstream tasks. However, recent explorations in universal graph pre-training primarily focus on homogeneous graphs and it remains unexplored for heterogeneous graphs, which exhibit greater structural and semantic complexity. This heterogeneity makes it highly challenging to train a universal encoder for diverse heterogeneous graphs: (i) the diverse types with dataset-specific semantics hinder the construction of a unified representation space; (ii) the number and semantics of meta-paths vary across datasets, making encoding and aggregation patterns learned from one dataset difficult to apply to others. To address these challenges, we propose a novel Meta-path-aware Universal heterogeneous Graph pre-training (MUG) approach. Specifically, for challenge (i), MUG introduces a input unification module to bridge heterogeneous types by enriching original attributes with contextual structure information and aligning them within a unified representation space. Furthermore, for challenge (ii), MUG combines meta-path reconstruction with global scattering objective, enabling a shared encoder to capture transferable high-order relational patterns while mitigating dataset-specific biases.
Extensive experiments demonstrate the effectiveness of MUG on some real datasets.

MUG: Meta-path-aware Universal Heterogeneous Graph Pre-Training

Unsupervised Domain Adaptation (UDA) is a challenging task in person search. It adapts a well-trained model from a labeled source domain to an unlabeled target domain for privacy and efficiency. Currently, most of the state-of-the-art UDA person search methods adopt multi-scale feature alignment techniques to learn domain-invariant representations. However, person search is a multi-granularity task, and such an indiscriminate method of bridging the differences between domains misleads the identity learning process, which significantly limits the model's performance. In this paper, we propose an Instance-Guided Scene Adaptation (IGSA) framework by eradicating scene disparities and focusing the tasks on instances, effectively eliminating the contradiction between person search and domain adaptation. In IGSA, a Scene-Aware Bidirectional Filter (SABF) is desgned to divide the image features into background and foreground to perform bidirectional modulations, thereby achieving simultaneous scene elimination and instance enhancement. To further improve the reliability of identity learning, we also propose an Instance Refinement Consistency Contrastive Learning (IRCCL) method. By performing cross-epoch updates on the instance-level memory bank and re-initializing the cluster-level memory bank, the problem of inconsistent training across epochs caused by instance identity drift can be alleviated. Through the above designs, our method can achieve state-of-the-art performance on two benchmark datasets, with 82.1\% mAP and 83.8\% top-1 on the CUHK-SYSU dataset, 41.1\% mAP and 82.3\% top-1 on the PRW dataset, which is even better than some supervised methods.

Instance-Guided Scene Adaptation for Unsupervised Person Search

Adapting Large Multimodal Models (LMMs) to real-world scenarios poses the dual challenges of learning from sequential data streams while handling frequent modality incompleteness, a task known as Continual Missing Modality Learning (CMML). However, existing works on CMML have predominantly relied on prompt tuning, a technique that struggles with this task due to cross-task interference between its learnable prompts in their shared embedding space. A naive application of Low-Rank Adaptation (LoRA) with modality-shared module will also suffer modality interference from competing gradients. To this end, we propose DeLo, the first framework to leverage a novel dual-decomposed low-rank expert architecture for CMML. Specifically, this architecture resolves modality interference
through decomposed LoRA expert, dynamically composing LoRA updates matrix with rank-one factors from disentangled modality-specific factor pools. Embedded within a task-partitioned framework that structurally prevents catastrophic forgetting, this expert system is supported by two key mechanisms: a Cross-Modal Guided Routing strategy to handle incomplete data and a Task-Key Memory for efficient, task-agnostic inference. Extensive experiments on established CMML benchmarks demonstrate that our method significantly outperforms state-of-the-art approaches. This highlights the value of a principled, architecturally-aware LoRA design for real-world multimodal challenges.

DeLo: Dual Decomposed Low-Rank Experts Collaboration for Continual Missing Modality Learning

Neurosymbolic (NeSy) AI aims to combine the strengths of neural architectures and symbolic reasoning to improve the accuracy, interpretability, and generalization capability of AI models. While logic inference on top of subsymbolic modules has been shown to effectively guarantee these properties, this often comes at the cost of reduced scalability, which can severely limit the usability of NeSy models. 
This paper introduces DeepProofLog (DPrL), a novel NeSy system based on stochastic logic programs, which addresses the scalability limitations of previous methods. DPrL parameterizes all derivation steps with neural networks, allowing efficient neural guidance over the proving system. Additionally, we establish a formal mapping between the resolution process of our deep stochastic logic programs and Markov Decision Processes, enabling the application of dynamic programming and reinforcement learning techniques for efficient inference and learning. This theoretical connection improves scalability for complex proof spaces and large knowledge bases. Our experiments on standard NeSy benchmarks and knowledge graph reasoning tasks demonstrate that DPrL outperforms existing state-of-the-art NeSy systems, advancing scalability to larger and more complex settings than previously possible.

DeepProofLog: Efficient Proving in Deep Stochastic Logic Programs

Current text-to-image models face challenges in visual text rendering: text encoders like CLIP and T5 lack glyph-level understanding and often struggle to distinguish between the specific words to be rendered and their intended semantic meaning within prompts. In addition, inconsistencies between the base model and its plugins further compromise the quality of synthesized images. In this paper, we enhance the existing text-to-image method by addressing the following aspects: (1) Text-Glyph Alignmentin a Visual Question Answering (VQA) manner to enable glyph understanding for the text encoder. This involves establishing an explicit alignment between the representations of the glyphs and their detailed attribute descriptions, which boosts the model's ability to capture fine-grained visual features of the text.
(2) Accurate and harmony visual text rendering: integrating pre-aligned glyph-visual embeddings with semantic text tokens through the Multimodal Diffusion Transformer(MMDiT) synchronously, ensuring coherent feature alignment and enhancing both the robustness and fidelity of visual text rendering. (3) Image Aesthetic Refinement: leveraging a multisource data training strategy that incorporates diverse, high-quality image-text pairs from various domains, exposing the model to extensive linguistic and visual diversity while maintaining superior aesthetic quality throughout training. Our experiments demonstrate that the proposed approach significantly outperforms the existing state-of-the-art method.

Premium content

Next from AAAI 2026

System L: Toward System 2-Style Legal Reasoning

Stay up to date with the latest Underline news!

PRESENTATIONS

CONFERENCES

COMPANY

RESOURCES