1 Introduction

Any successful machine learning application depends both on procedures for reliable statistical inference, and a computationally efficient implementation of these procedures. This can be formulated using a risk \(R({\varvec{}}{w}) :={{\,\mathrm{{\mathbf {E}}}\,}}l({\varvec{}}{w};{\varvec{}}{z})\), induced by a loss l, where \({\varvec{}}{w}\) is the parameter (vector, function, set, etc.) to be specified, and expectation is with respect to \({\varvec{}}{z}\), namely the underlying data distribution. Given data \({\varvec{}}{z}_{1},\ldots ,{\varvec{}}{z}_{n}\), if an algorithm outputs \(\widehat{{\varvec{}}{w}}\) such that \(R(\widehat{{\varvec{}}{w}})\) is small with high probability over the random draw of the sample, this is formal evidence for good generalization, up to assumptions on the distribution. Performance-wise, the statistical side is important because R is always unknown, and the method of implementation is important since the only \(\widehat{{\varvec{}}{w}}\) we ever have in practice is one we can actually compute.

Empirical risk minimization (ERM), which admits any minimizer of \(n^{-1}\sum _{i=1}^{n}l(\cdot ;{\varvec{}}{z}_{i})\), is the canonical strategy for machine learning problems, and there exists a rich body of literature on its generalization ability (Kearns and Schapire 1994; Bartlett et al. 1996; Alon et al. 1997; Bartlett and Mendelson 2003). In recent years, however, some severe limitations of this technique have come into light. ERM can be implemented by numerous methods, but its performance is sensitive to this implementation (Daniely and Shalev-Shwartz 2014; Feldman 2016), showing sub-optimal guarantees on tasks as simple as multi-class pattern recognition, let alone tasks with unbounded losses. A related issue is highlighted in recent work by Lin and Rosasco (2016), where we see that ERM implemented using a gradient-based method only has appealing guarantees when the data is distributed sharply around the mean in a sub-Gaussian sense. These results are particularly important due to the ubiquity of gradient descent (GD) and its variants in machine learning. They also carry the implication that ERM under typical implementations is liable to become highly inefficient whenever the data has heavy tails, requiring a potentially infinitely large sample to achieve a small risk. Since tasks with such “inconvenient” data are common (Finkenstädt and Rootzén 2003), it is of interest to investigate and develop alternative procedures which can be implemented as readily as the GD-based ERM (henceforth, ERM-GD), but which have desirable performance for a wider class of learning problems. In this paper, we introduce and analyze an iterative routine which takes advantage of robust estimates of the risk gradient.

Review of related work Here we review some of the technical literature related to our work. As mentioned above, the analysis of Lin and Rosasco (2016) includes the generalization of ERM-GD for sub-Gaussian observations. ERM-GD provides a key benchmark to be compared against; it is of particular interest to find a technique that is competitive with ERM-GD when it is optimal, but which behaves better under less congenial data distributions. Other researchers have investigated methods for distribution-robust learning. One notable line of work looks at generalizations of the “median of means” procedure, in which one constructs candidates on disjoint partitions of the data, and aggregates them such that anomalous candidates are effectively ignored. These methods can be implemented and have theoretical guarantees, ranging from the one-dimensional setting (Lerasle and Oliveira 2011; Minsker and Strawn 2017) to multi-dimensional and even functional models (Minsker 2015; Hsu and Sabato 2016; Lecué and Lerasle 2017). Their main limitation is practical: when sample size n is small relative to the complexity of the model, very few subsets can be created, and robustness is poor; conversely, when n is large enough to make many candidates, cheaper and less sophisticated methods often suffice.

An alternative approach is to use all the observations to construct robust estimates \({\widehat{R}}({\varvec{}}{w})\) of the risk \(R({\varvec{}}{w})\) for each \({\varvec{}}{w}\) to be checked, and subsequently minimize \({\widehat{R}}\) as a surrogate. An elegant strategy using M-estimates of R was introduced by Brownlees et al. (2015), based on fundamental results due to Catoni (2009, 2012). While the statistical guarantees are near-optimal under very weak assumptions on the data, the proxy objective \({\widehat{R}}\) is defined implicitly, introducing many computational roadblocks. In particular, even if R is convex, the estimate \({\widehat{R}}\) need not be, and the non-linear optimization required by this method can be both unstable and costly in high dimensions.

Finally, conceptually the closest recent work to our research are those also analyzing novel “robust gradient descent” algorithms, namely steepest descent procedures which utilize a robust estimate of the gradient vector of the underlying (unknown) objective of interest. The first works in this line are due to Holland and Ikeda (2017a) (a preliminary version of our work) and Chen et al. (2017a) (later updated as Chen et al. (2017b)), which appeared as pre-prints almost simultaneously. This was later followed by more recent entries into the literature due to Prasad et al. (2018) and Lecué et al. (2018). We give a more formal description of these methods in Remark 1 at the end of Sect. 2, but describe key similarities and differences here. All of these cited works are based upon the “median of means” strategy for aggregating weak, independent estimators to produce a final estimate of the risk gradient to be plugged into a steepest descent routine. These routines differ from each other in terms of how this aggregation is executed. Both Chen et al. (2017a) and Prasad et al. (2018) compute gradient sample means on independent sub-samples (after partitioning), and then compute the high-dimensional geometric median of these means to aggregate them into a final estimate. On the other hand, Lecué et al. (2018) compute loss sample means on the sub-samples, identify the sub-sample which realizes the median loss, and then plugs in the gradient sample mean based on just this one sub-sample. These routines are fundamentally different from our approach in that we do no partitioning at all, and make no use of any median-like quantity in our sub-routines; using all data is used to construct an M-estimator which can be approximated easily using fixed-point iterative updates, which amounts to a parameter falling between the median and the mean. One key advantage to our approach is the ease of computation (see Remark 2 and “Appendix A.4”). While the geometric median used by Chen et al. (2017b) can indeed be computed using well-known iterative routines (Vardi and Zhang 2000), these suffer from substantial overhead in computing pairwise distances over all partitions at each iteration, and as mentioned above in reference to the work of Minsker (2015) and Hsu and Sabato (2016), can run into significant bias when the number of partitions cannot be made large enough.

To compare our problem setting with the setting of these works: we are considering the potentially heavy-tailed situation, in which we do not assume the higher-order moments of the observations are finite (thereby implying that sub-Gaussianity cannot be used for concentration inequalities). This heavy-tailed setting is shared by Prasad et al. (2018) and Lecué et al. (2018), although we mention that Prasad et al. (2018) also propose an entirely separate gradient-based algorithm for the case of data which may be subject to arbitrarily large contamination, a setting shared with Chen et al. (2017b). This setting is fundamentally different from the heavy-tailed scenario, and methods designed for estimation under adversarial outliers cannot be directly compared to those designed for the heavy-tailed setting, and thus in our subsequent theoretical and empirical comparisons with these works, we constrain our focus to methods proposed for the heavy-tailed setting, which allows for meaningful comparison with our proposal.

We also remark that while our proposed algorithm is designed to be easy to integrate into existing gradient-based learning algorithms, our chief focus is on improving the statistical error incurred when trying to estimate the risk gradient for determining a good update direction, and we do not attend to the problem of update distance, nor long-run convergence via decreasing step sizes. Especially in the situation of small mini-batches, it is perfectly plausible to apply algorithms with principled adaptive step sizes such as AdaGrad (Duchi et al. 2011) or Adam (Kingma and Ba 2014), where instead of the empirical mean of the gradient, one substitutes our robust gradient estimate (see Sects. 2, 3 for details).

Our contributions To deal with these limitations of ERM-GD and its existing robust alternatives, the key idea here is to use robust estimates of the risk gradient, rather than the risk itself, and to feed these estimates into a first-order steepest descent routine. In doing so, at the cost of minor computational overhead, we get formal performance guarantees for a wide class of data distributions, while enjoying the computational ease of a gradient descent update. Our main contributions:

  • A learning algorithm which addresses the vulnerabilities of ERM-GD, is easily implemented, and can be adapted to stochastic sub-sampling for big problems.

  • High-probability bounds on excess risk of this procedure, which hold under mild moment assumptions on the data distribution, and suggest a promising general methodology.

  • Using both tightly controlled simulations and real-world benchmarks, we compare our routine with ERM-GD and other cited methods, obtaining results that reinforce the practical utility and flexibility suggested by the theory.

Content overview In Sect. 2, we introduce the key components of the proposed algorithm, and provide an intuitive example meant to highlight the learning principles taken advantage of. Theoretical analysis of algorithm performance is given in Sect. 3, including a sketch of the proof technique and discussion of the main results. Empirical analysis follows in Sect. 4, in which we elucidate both the strengths and limits of the proposed procedure, through a series of tightly controlled numerical tests. Finally, concluding remarks and a look ahead are given in Sect. 5. Proofs and extra information regarding computation is given in “Appendix A”. Additional empirical test results are provided in “Appendix B”.

2 Robust gradient descent

Before introducing the proposed algorithm in more detail, we motivate the practical need for a procedure which deals with the weaknesses of the traditional sample mean-based gradient descent strategy.

2.1 Why robustness?

Recall that since ERM admits any minima of \(n^{-1}\sum _{i=1}^{n}l(\cdot ;{\varvec{}}{z}_{i})\), the simplest implementation of gradient descent (for \(\widehat{{\varvec{}}{w}}_{(t)} \in {\mathbb {R}}^{d}\)) results in the update

$$\begin{aligned} \widehat{{\varvec{}}{w}}_{(t+1)} = \widehat{{\varvec{}}{w}}_{(t)} - \alpha _{(t)} \frac{1}{n}\sum _{i=1}^{n}l^{\prime }(\widehat{{\varvec{}}{w}}_{(t)};{\varvec{}}{z}_{i}) \end{aligned}$$
(1)

where \(\alpha _{(t)}\) are scaling parameters. Taking the derivative under the integral we have \(R^{\prime }(\cdot ) = {{\,\mathrm{{\mathbf {E}}}\,}}l^{\prime }(\cdot ;{\varvec{}}{z})\), meaning ERM-GD uses the sample mean as an estimator of each coordinate of \(R^{\prime }\), in pursuit of a solution minimizing the unknown R. Without rather strong assumptions on the tails and moments of the distribution of \(l({\varvec{}}{w};{\varvec{}}{z})\) for each \({\varvec{}}{w}\), it has become well-known that the sample mean fails to provide sharp estimates (Catoni 2012; Minsker 2015; Devroye et al. 2015; Lugosi and Mendelson 2016). Intuitively, the issue is that we expect bad estimates to imply bad approximate minima. Does this formal sub-optimality indeed manifest itself in natural settings? Can principled modifications improve performance at a tolerable cost?

A simple example suggests affirmative answers to both questions. The plot on the left of Fig. 1 shows contour lines of a strongly convex quadratic risk to be minimized, as well as the trajectory of 10 iterations of ERM-GD, given four independent samples from a common distribution, initiated at a common \(\widehat{{\varvec{}}{w}}_{(0)}\). With data \({\varvec{}}{z}= ({\varvec{}}{x},y) \in {\mathbb {R}}^{d+1}\), losses are generated as \(l({\varvec{}}{w};{\varvec{}}{z}_{i})=(\langle {\varvec{}}{w}, {\varvec{}}{x}_{i} \rangle - y_{i})^{2}/2\). We consider the case where the “noise” \(\langle {\varvec{}}{w}, {\varvec{}}{x}_{i} \rangle - y_{i}\) is heavy-tailed (log-Normal). Half of the samples saw relatively good solutions after ten iterations, and half saw rather stark deviation from the optimal procedure. When the sample contains errant observations, the empirical mean estimate is easily influenced by such points.

Fig. 1
figure 1

A comparison of the minimizing sequence trajectories in a two-dimensional approximate risk minimization task, for the traditional ERM-based gradient descent (left) and a simple re-weighting procedure (right). Trajectories of the oracle update using \(R^{\prime }\) (black) is pictured alongside the approximate methods (red). All procedures use \(\alpha _{(t)}=0.35\), \(t=0,\ldots ,9\) (Color figure online)

Full size image

To deal with this, a classical idea is to re-weight the observations in a principled manner, and then carry out gradient descent as normal. That is, in the gradient estimate of (1), we replace the summands \(n^{-1}l^{\prime }(\cdot ;{\varvec{}}{z}_{i})\) with \(\omega _{i}\,l^{\prime }(\cdot ;{\varvec{}}{z}_{i})\), where \(0 \le \omega _{i} \le 1\), \(i = 1,\ldots ,n\) and \(\sum _{i=1}^{n}\omega _{i}=1\). For example, we could set

$$\begin{aligned} \omega _{i} :=\frac{{\widetilde{\omega }}_{i}}{\sum _{k=1}^{n}{\widetilde{\omega }}_{k}}, \quad {\widetilde{\omega }}_{i} :=\frac{\psi \left( \langle {\varvec{}}{w}, {\varvec{}}{x}\rangle - y_{i}\right) }{\left( \langle {\varvec{}}{w}, {\varvec{}}{x}\rangle - y_{i}\right) } \end{aligned}$$

where \(\psi \) is an odd function of sigmoid form (see A.1 and A.4). The idea is that for observations \({\varvec{}}{z}_{i}\) that induce errors which are inordinately large, the weight \(\omega _{i}\) will be correspondingly small, reducing the impact. In the right-hand plot of Fig. 1, we give analogous results for this procedure, run under the exact same settings as ERM-GD above. The modified procedure at least appears to be far more robust to random idiosyncrasies of the sample; indeed, if we run many trials, the average risk is far better than the ERM-GD procedure, and the variance smaller. The fragility observed here was in the elementary setting of \(d=2\), \(n=500\); it follows a fortiori that we can only expect things to get worse for ERM-GD in higher dimensions and under smaller samples. In what follows, we develop a robust gradient-based minimization method based directly on the principles illustrated here.

2.2 Outline of proposed procedure

Were the risk to be known, we could update using

$$\begin{aligned} {\varvec{}}{w}^{*}_{(t+1)} :={\varvec{}}{w}^{*}_{(t)} - \alpha _{(t)} {\varvec{}}{g}({\varvec{}}{w}^{*}_{(t)}) \end{aligned}$$
(2)

where \({\varvec{}}{g}({\varvec{}}{w}) :=R^{\prime }({\varvec{}}{w})\), an idealized procedure. Any learning algorithm in practice will not have access to R or \({\varvec{}}{g}\), and thus must approximate this update with

$$\begin{aligned} \widehat{{\varvec{}}{w}}_{(t+1)} :=\widehat{{\varvec{}}{w}}_{(t)} - \alpha _{(t)} \widehat{{\varvec{}}{g}}(\widehat{{\varvec{}}{w}}_{(t)}), \end{aligned}$$
(3)

where \(\widehat{{\varvec{}}{g}}\) represents some sample-based estimate of \({\varvec{}}{g}\). Setting \(\widehat{{\varvec{}}{g}}\) to the sample mean reduces to ERM-GD, and conditioned on \(\widehat{{\varvec{}}{w}}_{(t)}\), \({{\,\mathrm{{\mathbf {E}}}\,}}\widehat{{\varvec{}}{g}}(\widehat{{\varvec{}}{w}}_{(t+1)}) = {\varvec{}}{g}(\widehat{{\varvec{}}{w}}_{(t+1)})\), a property used throughout the literature (Rakhlin et al. 2012; Le Roux et al. 2012; Johnson and Zhang 2013; Shalev-Shwartz and Zhang 2013; Frostig et al. 2015; Murata and Suzuki 2016). While convenient from a technical standpoint, there is no conceptual necessity for \(\widehat{{\varvec{}}{g}}\) to be unbiased. More realistically, as long as \(\widehat{{\varvec{}}{g}}\) is sharply distributed around \({\varvec{}}{g}\), then an approximate first-order procedure should not deviate too far from the ideal, even if these estimators are biased. An outline of such a routine is given in Algorithm 1.

figure a

Let us flesh out the key sub-routines used in a single iteration, for the \({\varvec{}}{w}\in {\mathbb {R}}^{d}\) case. When the data is prone to outliers, a “soft” truncation of errant values is a prudent alternative to discarding valuable data. This can be done systematically using a convenient class of M-estimators of location and scale (van der Vaart 1998; Huber and Ronchetti 2009). The locate sub-routine entails taking a convex, even function \(\rho \), and for each coordinate, computing \(\widehat{{\varvec{}}{\theta }} = ({\widehat{\theta }}_{1},\ldots ,{\widehat{\theta }}_{d})\) as

$$\begin{aligned} {\widehat{\theta }}_{j} \in {{\,\mathrm{arg\,min}\,}}_{\theta \in {\mathbb {R}}} \sum _{i=1}^{n} \rho \left( \frac{l^{\prime }_{j}({\varvec{}}{w};{\varvec{}}{z}_{i})-\theta }{s_{j}} \right) , \quad j = 1,\ldots ,d. \end{aligned}$$
(4)

Note that if \(\rho (u) = u^{2}\), then \({\widehat{\theta }}_{j}\) reduces to the sample mean of \(\{l^{\prime }_{j}({\varvec{}}{w};{\varvec{}}{z}_{i})\}_{i=1}^{n}\), thus to reduce the impact of extreme observations, it is useful to take \(\rho (u)=o(u^{2})\) as \(u \rightarrow \pm \infty \). Here the \(s_{j}>0\) factors are used to ensure that consistent estimates take place irrespective of the order of magnitude of the observations. We set the scaling factors in two steps. First is rescale, in which a rough dispersion estimate of the data is computed for each j using

$$\begin{aligned} {\widehat{\sigma }}_{j} \in \left\{ \sigma > 0: \sum _{i=1}^{n} \chi \left( \frac{l^{\prime }_{j}({\varvec{}}{w};{\varvec{}}{z}_{i})-\gamma _{j}}{\sigma }\right) = 0 \right\} . \end{aligned}$$
(5)

Here \(\chi :{\mathbb {R}}\rightarrow {\mathbb {R}}\) is an even function, satisfying \(\chi (0)<0\), and \(\chi (u)>0\) as \(u \rightarrow \pm \infty \) to ensure that the resulting \({\widehat{\sigma }}_{j}\) is an adequate measure of the dispersion of \(l^{\prime }_{j}({\varvec{}}{w};{\varvec{}}{z})\) about a pivot point, say \(\gamma _{j}=\sum _{i=1}^{n}l^{\prime }_{j}({\varvec{}}{w};{\varvec{}}{z}_{i})/n\). Second, we adjust this estimate based on the available sample size and desired confidence level, as

$$\begin{aligned} s_{j} = {\widehat{\sigma }}_{j}\sqrt{n/\log (2\delta ^{-1})} \end{aligned}$$
(6)

where \(\delta \in (0,1)\) specifies the desired confidence level \((1-\delta )\), and n is the sample size. This last step appears rather artificial, but can be derived from a straightforward theoretical argument, given in Sect. 3.1. This concludes all the stepsFootnote 1 in one full iteration of Algorithm 1 on \({\mathbb {R}}^{d}\).

In the remainder of this paper, we shall investigate the learning properties of this procedure, through analysis of both a theoretical (Sect. 3) and empirical (Sect. 4) nature. As an example, in the strongly convex risk case, our formal argument yields excess risk bounds of the form

$$\begin{aligned} R(\widehat{{\varvec{}}{w}}_{(T)}) - R^{*} \le O\left( \frac{d(\log (d\delta ^{-1})+d\log (n))}{n}\right) + O\left( (1-\alpha \beta )^{T}\right) \end{aligned}$$

with probability no less than \(1-\delta \), for small enough \(\alpha _{(t)} = \alpha \) over T iterations. Here \(\beta > 0\) is a constant that depends only on R, and analogous results hold without strong convexity (see “Appendix A.3”). Of the underlying distribution, all that is assumed is a bound on the variance of \(l^{\prime }(\cdot ;{\varvec{}}{z})\), suggesting formally that the procedure should be competitive over a diverse range of data distributions.

Remark 1

(Comparison with other robust gradient descent methods) Here we more formally describe the algorithms of other robust gradient descent methods in the literature (Chen et al. 2017b; Prasad et al. 2018; Lecué et al. 2018). The core idea is to partition the sample into k disjoint subsets \({\mathcal {D}}_{1} \cup \cdots \cup {\mathcal {D}}_{k} = \{1,2,\ldots ,n\}\), generate inexpensive empirical estimators on each subset, and then robustly aggregate these estimators to output a final gradient estimate. In the case of both Chen et al. (2017b) and Prasad et al. (2018), the estimate vector \(\widehat{{\varvec{}}{g}}\) is constructed as

$$\begin{aligned} \widehat{{\varvec{}}{g}}({\varvec{}}{w})&= {{\,\mathrm{arg\,min}\,}}_{{\varvec{}}{u}} \sum _{m=1}^{k} \Vert {\varvec{}}{u}- {\widetilde{{\varvec{}}{g}}}_{m}({\varvec{}}{w})\Vert \\ {\widetilde{{\varvec{}}{g}}}_{m}({\varvec{}}{w})&= \frac{1}{|{\mathcal {D}}_{m}|} \sum _{i \in {\mathcal {D}}_{m}} {\varvec{}}{l}^{\prime }({\varvec{}}{w};{\varvec{}}{z}_{i}), \quad m=1,\ldots ,k \end{aligned}$$

and plugged in to the gradient update (3). On the other hand, the update of Lecué et al. (2018) uses

Compare these updates to Eqs. (4) and (6), which determine our setting of \(\widehat{{\varvec{}}{g}}({\varvec{}}{w})\) for use in the steepest descent update (3). Both median (or geometric median, as above) updates and M-estimator updates (as in our proposal) involve doing convex optimization as a sub-routine, but the nature of the respective objective functions is in general completely different.

Remark 2

(On the efficiency of rescale and locate) Both of these sub-routines can be efficiently solved using fixed-point updates, as described in “Appendix A.4”. Both routines have convergence guarantees, and can be confirmed empirically to converge rapidly irrespective of the underlying distribution. Formal proofs of convergence of the rescale and locate sub-routines along with controlled empirical tests is given by Holland and Ikeda (2017b).

3 Theoretical analysis

Here we analyze the performance of Algorithm 1 on hypothesis class \({\mathcal {W}}\subseteq {\mathbb {R}}^{d}\), as measured by the risk achieved, which we estimate using upper bounds that depend on key parameters of the learning task. A general sketch is given, followed by some key conditions, representative results, and discussion. All proofs are relegated to Appendix A.2.

Notation For integer k, write \([k] :=\{1,\ldots ,k\}\) for all the positive integers from 1 to k. Let \(\mu \) denote the data distribution, with \({\varvec{}}{z}_{1},\ldots ,{\varvec{}}{z}_{n}\) independent observations from \(\mu \), and \({\varvec{}}{z}\sim \mu \) an independent copy. Risk is then \(R({\varvec{}}{w}) :={{\,\mathrm{{\mathbf {E}}}\,}}_{\mu }l({\varvec{}}{w};{\varvec{}}{z})\), its gradient \({\varvec{}}{g}({\varvec{}}{w}) :=R^{\prime }({\varvec{}}{w})\), and \(R^{*} :=\inf _{{\varvec{}}{w}\in {\mathcal {W}}} R({\varvec{}}{w})\). \({{\,\mathrm{{\mathbf {P}}}\,}}\) denotes a generic probability measure, typically the product measure induced by the sample. We write \(\Vert \cdot \Vert \) for the usual (\(\ell _{2}\)) norm on \({\mathbb {R}}^{d}\). For function F on \({\mathbb {R}}^{d}\) with partial derivatives defined, write the gradient as \(F^{\prime }({\varvec{}}{u}) :=(F^{\prime }_{1}({\varvec{}}{u}),\ldots ,F^{\prime }_{d}({\varvec{}}{u}))\) where for short, we write \(F^{\prime }_{j}({\varvec{}}{u}) :=\partial F({\varvec{}}{u})/\partial u_{j}\).

3.1 Sketch of the general argument

The analysis here requires only two steps: (i) A good estimate \(\widehat{{\varvec{}}{g}}\approx {\varvec{}}{g}\) implies that approximate update (3) is near the optimal update. (ii) Under variance bounds, coordinate-wise M-estimation yields a good gradient estimate. We are then able to conclude that with enough samples and iterations, the output of Algorithm 1 can achieve an arbitrarily small excess risk. Here we spell out the key facts underlying this approach.

For the first step, let \({\varvec{}}{w}^{*}\in {\mathbb {R}}^{d}\) be a minimizer of R. When the risk R is strongly convex, then using well-established convex optimization theory (Nesterov 2004), we can easily control \(\Vert {\varvec{}}{w}^{*}_{(t+1)}-{\varvec{}}{w}^{*}\Vert \) as a function of \(\Vert {\varvec{}}{w}^{*}_{(t)}-{\varvec{}}{w}^{*}\Vert \) for any step \(t \ge 0\). Thus to control \(\Vert \widehat{{\varvec{}}{w}}_{(t+1)}-{\varvec{}}{w}^{*}\Vert \), in comparing the approximate case and optimal case, all that matters is the difference between \({\varvec{}}{g}(\widehat{{\varvec{}}{w}}_{(t)})\) and \(\widehat{{\varvec{}}{g}}(\widehat{{\varvec{}}{w}}_{(t)})\) (Lemma 7). For the general case of convex R, since we cannot easily control the distance of the optimal update from any potential minimum, one can directly compare the trajectories of \(\widehat{{\varvec{}}{w}}_{(t)}\) and \({\varvec{}}{w}^{*}_{(t)}\) over \(t=0,1,\ldots ,T\), which once again amounts to a comparison of \({\varvec{}}{g}\) and \(\widehat{{\varvec{}}{g}}\). This inevitably leads to more error propagation and thus a stronger dependence on T, but the essence of the argument is identical to the strongly convex case.

For the second step, since both \(\widehat{{\varvec{}}{g}}\) and \(\widehat{{\varvec{}}{w}}_{(t)}\) are based on a random sample \(\{{\varvec{}}{z}_{1},\ldots ,{\varvec{}}{z}_{n}\}\), we need an estimation technique which admits guarantees for any step, with high probability over the random draw of this sample. A basic requirement is that

$$\begin{aligned} {{\,\mathrm{{\mathbf {P}}}\,}}\left\{ \max _{t \le T} \Vert \widehat{{\varvec{}}{g}}(\widehat{{\varvec{}}{w}}_{(t)})-{\varvec{}}{g}(\widehat{{\varvec{}}{w}}_{(t)})\Vert \le \varepsilon (\delta ) \right\} \ge 1-\delta . \end{aligned}$$
(7)

Of course this must be proved (see Lemmas 5 and 11 ), but if valid, then running Algorithm 1 for T steps, we can invoke (7) to get a high-probability event on which \(\widehat{{\varvec{}}{w}}_{(T)}\) closely approximates the optimal GD output, up to the accuracy specified by \(\varepsilon \). Naturally this \(\varepsilon =\varepsilon (\delta )\) will depend on confidence level \(\delta \), which implies that to get \(1-\delta \) confidence intervals, the upper bound in (7) will increase as \(\delta \) gets smaller.

In the locate sub-routine of Algorithm 1, we construct a more robust estimate of the risk gradient than can be provided by the empirical mean, using an ancillary estimate of the gradient variance. This is conducted using a smooth truncation scheme, as follows. One important property of \(\rho \) in (4) is that for any \(u \in {\mathbb {R}}\), one has

$$\begin{aligned} -\log (1-u+Cu^{2}) \le \rho ^{\prime }(u) \le \log (1+u+Cu^{2}) \end{aligned}$$
(8)

for a fixed \(C>0\), a simple generalization of the key property utilized by Catoni (2012). For the Gudermannian function (Sect. 2 footnote), we can take \(C \le 2\), with the added benefit that \(\rho ^{\prime }\) is bounded and increasing. As to the quality of these estimates, note that they are distributed sharply around the risk gradient, as follows.

Lemma 3

(Concentration of M-estimates) For each coordinate \(j \in [d]\), the estimates \({\widehat{\theta }}_{j}\) of (4) satisfy

$$\begin{aligned} \frac{1}{2}|{\widehat{\theta }}_{j}-g_{j}({\varvec{}}{w})| \le \frac{C{{\,\mathrm{var}\,}}_{\mu }l_{j}^{\prime }({\varvec{}}{w};{\varvec{}}{z})}{s_{j}} + \frac{s_{j}\log (2\delta ^{-1})}{n} \end{aligned}$$
(9)

with probability no less than \(1-\delta \), given large enough n and \(s_{j}\).

To get the tightest possible confidence interval as a function of \(s_{j} > 0\), we must set

$$\begin{aligned} s_{j}^{2} = \frac{Cn{{\,\mathrm{var}\,}}_{\mu }l_{j}^{\prime }({\varvec{}}{w};{\varvec{}}{z})}{\log (2\delta ^{-1})}, \end{aligned}$$

from which we derive (6), with \({\widehat{\sigma }}_{j}^{2}\) corresponding to a computable estimate of \({{\,\mathrm{var}\,}}_{\mu }l_{j}^{\prime }({\varvec{}}{w};{\varvec{}}{z})\). If the variance over all choices of \({\varvec{}}{w}\) is bounded by some \(V < \infty \), then up to the variance estimates, we have \(\Vert \widehat{{\varvec{}}{g}}({\varvec{}}{w})-{\varvec{}}{g}({\varvec{}}{w})\Vert \le O(\sqrt{dV\log (2d\delta ^{-1})/n})\), with \(\widehat{{\varvec{}}{g}}= \widehat{{\varvec{}}{\theta }}\) from Algorithm 1, yielding a bound for (7) free of \({\varvec{}}{w}\).

Remark 4

(Comparison with ERM-GD) As a reference example, assume we were to run ERM-GD, namely using an empirical mean estimate of the gradient. Using Markov’s inequality, with probability \(1-\delta \) all we can guarantee is \(\varepsilon \le O(\sqrt{d/(n\delta )})\). In the case of only assuming finite variance (matching our scenario), Catoni (2012, Proposition 6.2) derives a lower bound on the deviations of the empirical mean which scales with \(1/\delta \). This implies that under a heavy-tailed setting such as ours, the upper bound given by Markov’s inequality is in fact tight in terms of dependence on \(1/\delta \). On the other hand, using the location estimate of Algorithm 1 provides guarantees with \(\log (1/\delta )\) dependence on the confidence level, realizing an exponential improvement over the \(1/\delta \) dependence of ERM-GD, and an appealing formal motivation for using M-estimates of location as a novel strategy.

3.2 Conditions and results

On the learning task, we make the following assumptions.

  1. A1.

    \(R(\cdot )\) is to be minimized over a closed, convex \({\mathcal {W}}\subset {\mathbb {R}}^{d}\) with diameter \(\varDelta < \infty \).

  2. A2.

    \(R(\cdot )\) and \(l(\cdot ;{\varvec{}}{z})\) (for all \({\varvec{}}{z}\)) are \(\lambda \)-smooth, convex, and continuously differentiable on \({\mathcal {W}}\).

  3. A3.

    There exists \({\varvec{}}{w}^{*}\in {\mathcal {W}}\) at which \({\varvec{}}{g}({\varvec{}}{w}^{*}) = 0\).

  4. A4.

    Distribution \(\mu \) satisfies \({{\,\mathrm{var}\,}}_{\mu } l_{j}^{\prime }({\varvec{}}{w};{\varvec{}}{z}) \le V < \infty \), for all \({\varvec{}}{w}\in {\mathcal {W}}\), \(j \in [d]\).

Algorithm 1 is run following (4), (5), and (6) as specified in Sect. 2. For rescale, the choice of \(\chi \) is only important insofar as the scale estimates (the \({\widehat{\sigma }}_{j}\)) should be moderately accurate. To make the dependence on this accuracy precise, take constants \(c_{min},c_{max} > 0\) such that

$$\begin{aligned} c_{min}^{2} \le \frac{{\widehat{\sigma }}_{j}}{{{\,\mathrm{var}\,}}_{\mu }l_{j}^{\prime }({\varvec{}}{w};{\varvec{}}{z})} \le c_{max}^{2}, \quad j \in [d] \end{aligned}$$
(10)

for all choices of \({\varvec{}}{w}\in {\mathcal {W}}\), and write \(c_{0} :=(c_{max}+C/c_{min})\). For \(1-\delta \) confidence, we need a large enough sample; more precisely, for each \({\varvec{}}{w}\), it is sufficient if for each j,

$$\begin{aligned} \frac{1}{4} \ge \frac{C\log (2\delta ^{-1})}{n}\left( 1 + \frac{C{{\,\mathrm{var}\,}}_{\mu }l_{j}^{\prime }({\varvec{}}{w};{\varvec{}}{z})}{{\widehat{\sigma }}_{j}^{2}}\right) . \end{aligned}$$
(11)

For simplicity, fix a small enough step size,

$$\begin{aligned} \alpha _{(t)} = \alpha , \forall \, t \in \{0,\ldots ,T-1\}, \quad \alpha \in (0,2/\lambda ). \end{aligned}$$
(12)

Dependence on initialization is captured by two related factors \(R_{0} :=R({\varvec{}}{w}^{*}_{(0)})-R^{*}\), and \(D_{0} :=\Vert {\varvec{}}{w}^{*}_{(0)}-{\varvec{}}{w}^{*}\Vert \). Under this setup, we can control the estimation error.

Lemma 5

(Uniform accuracy of gradient estimates) For all steps \(t=0,\ldots ,T-1\) of Algorithm 1, we have

$$\begin{aligned} \Vert \widehat{{\varvec{}}{\theta }}_{(t)}-{\varvec{}}{g}(\widehat{{\varvec{}}{w}}_{(t)})\Vert \le \frac{{\widetilde{\varepsilon }}}{\sqrt{n}} :=\frac{\lambda (\sqrt{d}+1)}{\sqrt{n}} + 2c_{0} \sqrt{\frac{dV(\log (2d\delta ^{-1}) + d\log (3\varDelta \sqrt{n}/2))}{n}} \end{aligned}$$

with probability no less than \(1-\delta \).

Remark 6

(On the technical assumptions) We remark here that the assumptions made above can be considered standard in the literature. Assuming at the very least bounded variance is essential (Devroye et al. 2015), and both Prasad et al. (2018, Section 7) and Lecué et al. (2018, Sections 2–3) utilize similar moment assumptions for controlling the statistical error. Convexity is generally needed to control the optimization error, and is utilized in all the robust gradient descent works we have cited (Chen et al. 2017b; Lecué et al. 2018; Prasad et al. 2018). We assume the smoothness of the loss (a Lipschitz condition on the gradient), whereas for example Lecué et al. (2018) work with Lipschitz losses. This excludes from their analysis the case of, for example, linear regression under the squared loss with unbounded noise, while this setting is valid under our assumptions.

Under strongly convex risk In addition to assumptions A1–A4, assume that R is \(\kappa \)-strongly convex. In this case, \({\varvec{}}{w}^{*}\) in A3 is the unique minimum. First, we control the estimation error by showing that the approximate update (3) does not differ much from the optimal update (2).

Lemma 7

(Minimizer control) Consider the general approximate GD update (3), with \(\alpha _{(t)}=\alpha \) such that \(0< \alpha < 2/(\kappa +\lambda )\). Assume that (7) holds with bound \(\varepsilon \). Write \(\beta :=2\kappa \lambda /(\kappa +\lambda )\). Then, with probability no less than \(1-\delta \), we have

$$\begin{aligned} \Vert \widehat{{\varvec{}}{w}}_{(T)}-{\varvec{}}{w}^{*}\Vert \le (1-\alpha \beta )^{T/2}D_{0} + \frac{2\varepsilon }{\beta }. \end{aligned}$$

Since Algorithm 1 indeed satisfies (7), as proved in Lemma 5, we can use the control over the parameter deviation provided by Lemma 7 and the smoothness of R to prove a finite-sample excess risk bound.

Theorem 8

(Excess risk bounds) Write \(\widehat{{\varvec{}}{w}}_{(T)}\) for the output of Algorithm 1 after T iterations, run such that (11)–(12) hold, with step size \(\alpha _{(t)}=\alpha \) for all \(0<t<T\), as in Lemma 7. It follows that

$$\begin{aligned} R(\widehat{{\varvec{}}{w}}_{(T)})-R^{*} \le \lambda (1-\alpha \beta )^{T}D_{0}^{2} + \frac{4\lambda {\widetilde{\varepsilon }}}{\beta ^{2} n} \end{aligned}$$

with probability no less than \(1-\delta \), where \({\widetilde{\varepsilon }}\) is as given in Lemma 5.

Remark 9

(Interpretation of bounds) There are two terms in the upper bound of Theorem 8, an optimization term decreasing in T, and an estimation term decreasing in n. The optimization error decreases at the usual gradient descent rate, and due to the uniformity of the bounds obtained, the statistical error is not hurt by taking T arbitrarily large, thus with enough samples we can guarantee arbitrarily small excess risk. Finally, the most important assumption on the distribution is weak: finite second-order moments. If we assume finite kurtosis, the argument of Catoni (2012) can be used to create analogous guarantees for an explicit scale estimation procedure, yielding guarantees whether the data is sub-Gaussian or heavy-tailed an appealing robustness to the data distribution.

Remark 10

(Doing projected descent) The above analysis proceeds on the premise that \(\widehat{{\varvec{}}{w}}_{(t)} \in {\mathcal {W}}\) holds after all the updates, \(t \in [T]\). To enforce this, a standard variant of Algorithm 1 is to update as

$$\begin{aligned} \widehat{{\varvec{}}{w}}_{(t+1)} \leftarrow \pi _{{\mathcal {W}}}\left( \widehat{{\varvec{}}{w}}_{(t)} - \alpha _{(t)}\widehat{{\varvec{}}{\theta }}_{(t)} \right) , \quad t \in \{0,\ldots ,T-1\} \end{aligned}$$

where \(\pi _{{\mathcal {W}}}({\varvec{}}{u}) :={{\,\mathrm{arg\,min}\,}}_{{\varvec{}}{v}\in {\mathcal {W}}}\Vert {\varvec{}}{u}-{\varvec{}}{v}\Vert \). By A1, this projection is well-defined (Luenberger 1969, Sec. 3.12, Thm. 3.12). Using this fact, it follows that \(\Vert \pi _{{\mathcal {W}}}({\varvec{}}{u})-\pi _{{\mathcal {W}}}({\varvec{}}{v})\Vert \le \Vert {\varvec{}}{u}-{\varvec{}}{v}\Vert \) for all \({\varvec{}}{u},{\varvec{}}{v}\in {\mathcal {W}}\), by which we can immediately show that Lemma 7 holds for the projected robust gradient descent version of Algorithm 1.

With prior information An interesting concept in machine learning is that of the relationship between learning efficiency, and the task-related prior information available to the learner. In the previous results, the learner is assumed to have virtually no information beyond the data available, and the ability to set a small enough step-size. What if, for example, just the gradient variance was known? A classic example from decision theory is the dominance of the estimator of James and Stein over the maximum likelihood estimator, in multivariate Normal mean estimation using prior variance information. In our more modern and non-parametric setting, the impact of rough, data-driven scale estimates was made explicit by the factor \(c_{0}\). Here we give complementary results that show how partial prior information on the distribution \(\mu \) can improve learning.

Lemma 11

(Accuracy with variance information) Conditioning on \(\widehat{{\varvec{}}{w}}_{(t)}\) and running one scale-location sequence of Algorithm 1, with \({\varvec{}}{{\widehat{\sigma }}}_{(t)}=({\widehat{\sigma }}_{1},\ldots ,{\widehat{\sigma }}_{d})\) modified to satisfy \({\widehat{\sigma }}_{j}^{2} = C{{\,\mathrm{var}\,}}_{\mu }l^{\prime }_{j}(\widehat{{\varvec{}}{w}}_{(t)};{\varvec{}}{z})\), \(j \in [d]\). It follows that

$$\begin{aligned} \Vert {\varvec{}}{{\widehat{\theta }}}_{(t)}-{\varvec{}}{g}(\widehat{{\varvec{}}{w}}_{(t)})\Vert \le 4\left( \frac{C{{\,\mathrm{trace}\,}}(\varSigma _{(t)})\log (2d\delta ^{-1})}{n}\right) ^{1/2} \end{aligned}$$

with probability no less than \(1-\delta \), where \(\varSigma _{(t)}\) is the covariance matrix of \(l^{\prime }(\widehat{{\varvec{}}{w}}_{(t)};{\varvec{}}{z})\).

Observe that in addition to being able to remove the \(c_{0}\) factor, we also are able to replace the \(d\,V\) factor observed in Lemma 5 with \({{\,\mathrm{trace}\,}}(\varSigma _{(t)})\). Certainly, if the variance in all coordinates is the same, then the trace will essentially scale with \(d\,V\). However, if most coordinates have variance much smaller than the maximum coordinate, then this d coefficient can be reduced proportionally.

One would expect that with sharp gradient estimates, the variance of the updates should be small with a large enough sample. Here we show that the procedure stabilizes quickly as the estimates get closer to an optimum.

Theorem 12

(Control of update variance) Run Algorithm 1 as in Lemma 11, with arbitrary step-size \(\alpha _{(t)}\). Then, for any \(t<T\), taking expectation with respect to the sample \(\{{\varvec{}}{z}_{i}\}_{i=1}^{n}\), conditioned on \(\widehat{{\varvec{}}{w}}_{(t)}\), we have

$$\begin{aligned} {{\,\mathrm{{\mathbf {E}}}\,}}\Vert \widehat{{\varvec{}}{w}}_{(t+1)}-\widehat{{\varvec{}}{w}}_{(t)}\Vert ^{2} \le 2\alpha _{(t)}^{2}\left( \frac{32Cd{{\,\mathrm{trace}\,}}(\varSigma _{(t)})}{n} + \Vert {\varvec{}}{g}(\widehat{{\varvec{}}{w}}_{(t)})\Vert ^{2}\right) . \end{aligned}$$

In addition to these results, one can prove an improved version of Theorem 8 in a perfectly analogous fashion, using Lemma 11.

4 Empirical analysis

The chief goal of our experiments is to elucidate the relationship between factors of the learning task (e.g., sample size, model dimension, initial value, underlying data distribution) and the behavior of the robust gradient procedure proposed in Algorithm 1. We are interested in how these factors influence performance, both in an absolute sense and relative to the key competitors cited in Sect. 1.

We have carried out two classes of experiments. The first considers a concrete risk minimization task given noisy function observations, and takes an in-depth look at how each experimental factor influences algorithm behavior, in particular the trajectory of performance over time (as we iterate). The latter is an application of the proposed algorithm to the corresponding regression task under a large variety of data distributions, meant to rigorously evaluate the practical utility and robustness in an agnostic learning setting.

4.1 Controlled tests

Experimental setup Our first set of controlled numerical experiments uses a “noisy convex minimization” model, designed as follows. We construct a risk function taking a canonical quadratic form, setting \(R({\varvec{}}{w}) = \langle \varSigma {\varvec{}}{w}, {\varvec{}}{w}\rangle /2 + \langle {\varvec{}}{w}, {\varvec{}}{u}\rangle + c\), for pre-fixed constants \(\varSigma \in {\mathbb {R}}^{d \times d}\), \({\varvec{}}{u}\in {\mathbb {R}}^{d}\), and \(c \in {\mathbb {R}}\). The task is to minimize \(R(\cdot )\) without knowledge of R itself, but rather only access to n random function observations \(r_{1},\ldots ,r_{n}\). These \(r:{\mathbb {R}}^{d} \rightarrow {\mathbb {R}}\) are generated independently from a common distribution, satisfying the property \({{\,\mathrm{{\mathbf {E}}}\,}}r({\varvec{}}{w}) = R({\varvec{}}{w})\) for all \({\varvec{}}{w}\in {\mathbb {R}}^{d}\). In particular, here we generate observations \(r_{i}({\varvec{}}{w})=(\langle {\varvec{}}{w}^{*}-{\varvec{}}{w}, {\varvec{}}{x}_{i}\rangle + \epsilon _{i})^{2}/2\), \(i \in [n]\), with \({\varvec{}}{x}\) and \(\epsilon \) independent of each other. Here \({\varvec{}}{w}^{*}\) denotes the minimum, and we have that \(\varSigma = {{\,\mathrm{{\mathbf {E}}}\,}}{\varvec{}}{x}{\varvec{}}{x}^{T}\). The inputs \({\varvec{}}{x}\) shall follow an isotropic d-dimensional Gaussian distribution throughout all the following experiments, meaning \(\varSigma \) is positive definite, and R is strongly convex.

We consider three main performance metrics in this section: the average excess empirical risk (based on the losses \(r_{1},\ldots ,r_{n}\)), the average excess risk (based on true risk R), and the variance of the risk. Averages and variances are computed over trials, with each trial corresponding to a new independent random sample. For all tests, the number of trials is 250.

For these first tests, we run three procedures. First is ideal gradient descent, denoted oracle, which has access to the true objective function R. This corresponds to (2). Second, as a standard approximate procedure (3) when R is unknown, we use ERM-GD, denoted erm and discussed at the start of Sect. 2, which approximates the optimal procedure using the empirical risk. Against these two benchmarks, we compare our Algorithm 1, denoted rgd, as a robust alternative for (3).

Impact of heavy-tailed noise Let us examine the results. We begin with a simple question: are there natural learning settings in which rgd outperforms ERM-GD? How does the same algorithm fare in situations where ERM is optimal? Under Gaussian noise, ERM-GD is effectively optimal (Lin and Rosasco 2016, Appendix C). We thus consider the case of Gaussian noise (mean 0, standard deviation 20) as a baseline, and use centered log-Normal noise (log-location 0, log-scale 1.75) as an archetype of asymmetric heavy-tailed data. Risk results for the two routines are given alongside training error in Fig. 2.

Fig. 2
figure 2

Performance metrics as a function of iterative updates. Top row: Normal noise. Bottom row: log-Normal noise. Settings: \(n = 500, d=2, \alpha _{(t)}=0.1\) for all t

Full size image

In the situation favorable to erm, differences in performance are basically negligible. On the other hand, in the heavy-tailed setting, the performance of rgd is superior in terms of quality of the solution found and the variance of the estimates. Furthermore, we see that at least in the situation of small d and large n, taking T beyond numerical convergence has minimal negative effect on rgd performance; on the other hand erm is more sensitive. Comparing true risk with sample error, we see that while there is some unavoidable overfitting, in the heavy-tailed setting rgd departs from the ideal routine at a slower rate, a desirable trait.

At this point, we still have little more than a proof of concept, with rather arbitrary choices of n, d, noise distribution, and initialization method. We proceed to investigate how each of these experimental parameters independently impacts performance.

Impact of initialization Given a fixed data distribution and sample size, how does the quality of the initial guess impact learning performance? We consider three initializations of the form \({\varvec{}}{w}^{*}+ \text {Unif}[-{\varvec{}}{\varDelta },{\varvec{}}{\varDelta }]\), with \({\varvec{}}{\varDelta } = (\varDelta _{1},\ldots ,\varDelta _{d})\), values ranging over \(\varDelta _{j} \in \{2.5, 5.0, 10.0\}\), \(j \in [d]\), where larger \(\varDelta _{j}\) naturally correspond to potentially worse initialization. Relevant results are displayed in Fig. 3.

Fig. 3
figure 3

Performance over iterations, under strong/poor initialization. Here del refers to \(\varDelta _{j}\). Top row: Normal noise. Bottom row: log-Normal noise. Settings: \(n = 500, d=2, \alpha _{(t)}=0.1\) for all t

Full size image

Some interesting observations can be made. That rgd matches erm when the latter is optimal is clear, but more importantly, we see that under heavy-tailed noise, rgd is far more robust to poor initial value settings. Indeed, while a bad initialization leads to a much worse solution in the limit for erm, we see that rgd is able to achieve the same performance as if it were initialized at a better value.

Impact of distribution It is possible for very distinct distributions to have exactly the same risk functions. Learning efficiency naturally depends heavily on the process generating the sample; the underlying optimization problem is the same, but the statistical inference task changes. Here we run the two algorithms of interest from common initial values as in the first experimental setting, and measure performance changes as the noise distribution is modified. We consider six situations, three for Normal noise, three for log-Normal noise. The location and scale parameters for the former are respectively (0, 0, 0), (1, 20, 34); the log-location and log-scale parameters for the latter are respectively (0, 0, 0), (1.25, 1.75, 1.9). Results are given in Fig. 4.

Fig. 4
figure 4

Performance over iterations, under varying noise intensities. Here low, med, and high refer to the three noise distribution settings described in the main text. Settings: \(n = 500, d = 2, \alpha _{(t)}=0.1\) for all t

Full size image

Looking first at the Normal case, where we expect ERM-based methods to perform well, we see that rgd is able to match erm in all settings. In the log-Normal case, as our previous example suggested, the performance of erm degrades rather dramatically, and a clear gap in performance appears, which grows wider as the variance increases. This flexibility of rgd in dealing with both symmetric and asymmetric noise, both exponential and heavy tails, is indicative of the robustness suggested by the weak conditions of Sect. 3.2. In addition, it suggests that our simple dispersion-based technique (\({\widehat{\sigma }}_{j}\) settings in Sect. 2.2) provides tolerable accuracy, implying a small enough \(c_{0}\) factor, and reinforcing the insights from the proof of concept case seen in Fig. 2.

Impact of sample size Since the true risk is unknown, the size and quality of the sample \(\{{\varvec{}}{z}_{i}\}_{i=1}^{n}\) is critical to the output of all learners. To evaluate learning efficiency, we examine how performance depends on the available sample size, with dimension and all algorithm parameters fixed. Figure 5 gives the accuracy of erm and rgd in tests analogous to those above, using common initial values across methods, and \(n \in \{10, 40, 160, 640\}\).

Fig. 5
figure 5

Performance over iterations, under different sample sizes. Settings: \(d=2, \alpha _{(t)}=0.1\) for all t

Full size image

Both algorithms naturally show monotonic performance improvements as the sample size grows, but the most salient feature of these figures is the performance of rgd under heavy-tailed noise, especially when sample sizes are small. When our data may be heavy-tailed, this provides clear evidence that the proposed RGD methods can achieve better generalization than ERM-GD with less data, in less iterations.

Impact of dimension Given a fixed number of observations, the role of dimension d, namely the number of parameters to be determined, plays an important from both practical and theoretical standpoints, as seen in the error bounds of Sect. 3.2. Fixing the sample size and all algorithm parameters as above, we investigate the relative difficulty each algorithm has as the dimension increases. Figure 6 shows the risk of erm and rgd in tests just as above, with \(d \in \{2, 8, 32, 128\}\).

Fig. 6
figure 6

Performance over iterations, under increasing dimension. Settings: \(n = 500, \alpha _{(t)}=0.1\) for all t

Full size image

As the dimension increases, since the sample size is fixed, both non-oracle algorithms tend to require more iterations to converge. The key difference is that under heavy tails, the excess risk achieved by our proposed method is clearly superior to ERM-GD over all d settings, while matching it in the case of Gaussian noise. In particular, erm hits bottom very quickly in higher dimensions, while rgd continues to improve for more iterations, presumably due to updates which are closer to that of the optimal (2).

Comparison with robust loss minimizer Another interesting question: instead of paying the overhead to robustify gradient estimates (d dimensions to handle), why not just make robust estimates of the risk itself, and use those estimates to fuel an iterative optimizer? Just such a procedure is analyzed by Brownlees et al. (2015) (denoted bjl henceforth). To compare our gradient-centric approach with their loss-centric approach, we implement bjl using the non-linear conjugate gradient method of Polak and Ribière (Nocedal and Wright 1999), which is provided by fmin_cg in the optimize module of the SciPy scientific computation library (default maximum number of iterations is 200d). This gives us a standard first-order general-purpose optimizer for minimizing the bjl objective. To see how well our procedure can compete with a pre-fixed max iteration number, we set \(T=25\) for all settings. Computation time is computed using the Python time module. To give a simple comparison between bjl and rgd, we run multiple independent trials of the same task, starting both routines at the same (random) initial value each time, generating a new sample, and repeating the whole process for different settings of \(d = 2, 4, 8, 16, 32, 64\). Median times taken over all trials (for each d setting) are recorded, and presented in Fig. 7 alongside performance results.

Fig. 7
figure 7

Comparison of our robust gradient-based approach with the robust objective-based approach. Top: Normal noise. Bottom: log-Normal noise. Performance is given as a function of the number of d, the number of parameters to optimize, given in \(\log _{2}\) scale. Settings: \(n = 500, \alpha _{(t)}=0.1\) for all t (Color figure online)

Full size image

From the results, we can see that while the performance of both methods is similar in low dimensions and under Gaussian noise, in higher dimensions and under heavy-tailed noise, our proposed rgd realizes much better performance in much less time. Regarding excess empirical risk, random deviations in the sample cause the minimum of the empirical risk function to deviate away from \({\varvec{}}{w}^{*}\), causing the rgd solution to be closer to the ERM solution in higher dimensions. On the other hand, bjl is minimizing a different objective function. It should be noted that there are assuredly other ways of approaching the bjl optimization task, but all of which require minimizing an implicitly defined objective which need not be convex. We believe that rgd provides a simple and easily implemented alternative, while still utilizing the same statistical principles.

Regression application In this experiment, we apply our algorithm to a general regression task, under a wide variety of data distributions, and compare its performance against standard regression algorithms, both classical and modern. For each experimental condition, and for each trial, we generate n training observations of the form \(y_{i} = {\varvec{}}{x}_{i}^{T}{\varvec{}}{w}^{*}+ \epsilon _{i}, i \in [n]\). Distinct experimental conditions are delimited by the setting of (nd) and \(\mu \). Inputs \({\varvec{}}{x}\) are assumed to follow a d-dimensional isotropic Gaussian distribution, and thus our setting of \(\mu \) will be determined by the distribution of noise \(\epsilon \). In particular, we look at several families of distributions, and within each family look at 15 distinct noise levels, namely parameter settings designed such that \({{\,\mathrm{sd}\,}}_{\mu }(\epsilon )\) monotonically increases over the range 0.3–20.0, approximately linearly over the levels.

To capture a range of signal/noise ratios, for each trial, \({\varvec{}}{w}^{*}\in {\mathbb {R}}^{d}\) is randomly generated as follows. Defining the sequence \(w_{k} :=\pi /4 + (-1)^{k-1}(k-1)\pi /8, k=1,2,\ldots \) and uniformly sampling \(i_{1},\ldots ,i_{d} \in [d_{0}]\) with \(d_{0}=500\), we set \({\varvec{}}{w}^{*}= (w_{i_{1}},\ldots ,w_{i_{d}})\). Computing \(\text {SN}_{\mu } = \Vert {\varvec{}}{w}^{*}\Vert _{2}^{2}/{{\,\mathrm{var}\,}}_{\mu }(\epsilon )\), we have \(0.2 \le SN_{\mu } \le 1460.6\). Noise families: log-logistic (denoted llog in figures), log-Normal (lnorm), Laplace (lap), and arcsine (asin). Even with just these four, we capture bounded, sub-Gaussian (arcsine), and sub-exponential (Laplace) noise, and heavy-tailed data both with (log-Normal) and without (log-logistic) finite higher-order moments. Results for many more noise distributions are given in “Appendix B”.

Our key performance metric of interest is off-sample prediction error, here computed as excess RMSE on an independent large testing set, averaged over trials. For each condition and each trial, an independent test set of m observations is generated identically to the corresponding n-sized training set. All competing methods use common sample sets for training and are evaluated on the same test data, for all conditions/trials. For each method, in the kth trial, some estimate \(\widehat{{\varvec{}}{w}}(k)\) is determined. To approximate the \(\ell _{2}\)-risk, compute root mean squared test error \(e_{k}(\widehat{{\varvec{}}{w}}) :=(m^{-1}\sum _{i=1}^{m}(\widehat{{\varvec{}}{w}}^{T}{\varvec{}}{x}_{k,i}-y_{k,i})^{2})^{1/2}\), and output prediction error as the average of normalized errors \(e_{k}(\widehat{{\varvec{}}{w}}(k)) - e_{k}({\varvec{}}{w}^{*}(k))\) taken over all K trials. While n values vary, in all experiments we fix \(K=250\) and test size \(m=1000\).

Regarding the competing methods, classical choices are ordinary least squares (\(\ell _{2}\)-ERM, denoted OLS) and least absolute deviations (\(\ell _{1}\)-ERM, LAD). We also look at four recent methods of practical and theoretical importance described in Sect. 1, namely the robust regression routines of Hsu and Sabato (2016) (HS) and Minsker (2015) (Minsker), and the robust gradient descent methods of Prasad et al. (2018) (Pras18) and Lecué et al. (2018) (Lec18). For HS, we used the source published online by the authors. For Minsker, on each subset the ols solution is computed, and solutions are aggregated using the geometric median (in \(\ell _{2}\) norm), computed using the well-known algorithm of Vardi and Zhang (2000, Eqn. 2.6), and the number of partitions is set to \(\max ( 2, \lfloor n/(2d) \rfloor )\). For Pras18, we follow their Algorithm 3 and partition into \(1+\lfloor 3.5\log (\delta ^{-1})\rfloor \) blocks. This same setting is used for the partitioning done in Lec18. Both of these robust gradient descent methods are initialized to the OLS solution. For comparison to these methods, we also initialize RGD to the OLS solution, with confidence \(\delta =0.005\), and \(\alpha _{(t)} = 0.1\) for all iterations. Maximum number of iterations is \(T \le 100\); the routine finishes after hitting this maximum or when the absolute value of the gradient falls below 0.001 for all conditions. Illustrative results are given in Fig. 8.

Fig. 8
figure 8

Top row: Prediction error over sample size \(12 \le n \le 122\), fixed \(d=5\), noise level = 8. Center row: Prediction error over noise levels, for \(n=30, d=5\). Bottom row: Prediction error over dimensions \(5 \le d \le 40\), with ratio \(n/d = 6\) fixed, and noise level = 8. Each column corresponds to a distinct noise family (Color figure online)

Full size image

First we fix the model dimension d, and evaluate performance as sample size n ranges from very small to quite large (top row of Fig. 8). We see that regardless of distribution, rgd effectively matches the optimal convergence of OLS in the norm and tri_s cases, and is resilient to the remaining two scenarios where ols breaks down. There are clear issues with the median of means based methods at very small sample sizes, though the geometric median based method does eventually at least surpass OLS in the llog and lnorm cases. Essentially the same trends can be observed at all noise levels.

Next, we look at performance over noise settings, from negligible noise to significant noise with potentially infinite higher-order moments (middle row of Fig. 8). We see that rgd generalizes well, in a manner which is effectively uniform across the distinct noise families. We note that even in such diverse settings with pre-fixed step-size and iteration numbers, very robust performance is shown. It appears that under small sample size, rgd reduces the variance due to errant observations, while incurring a smaller bias than the other robust methods. When ols (effectively ERM-GD) is optimal, note that rgd follows it closely, with virtually negligible bias. When the former breaks down, rgd remains stable.

Finally, we fix the ratio n / d and look at the role played by increasingly large dimension (bottom row of Fig. 8). We see that for all distributions, the performance of rgd is essentially constant. This coincides with the theory of Sect. 3.2, and our intuition since Algorithm 1 is run in a by-coordinate fashion. On the other hand, competing methods show sensitivity to the number of free parameters, especially in the case of asymmetric data with heavy tails.

4.2 Application to real-world benchmarks

To close out this section, and to gain some additional perspective on algorithm performance, we shift our focus to some nascent applications to real-world benchmark data sets.

Having already paid close attention to regression models in the previous section, here we consider applications of robust gradient descent to classification tasks, under both binary and multi-class settings. The model assumed is standard multi-class logistic regression: if the number of classes is C, and the number of input features is F, then the total number of parameters to be determined is \(d = (C-1)F\). The loss function is convex in the parameters, and its partial derivatives all exist, so the model aligns well with our problem setting of interest. In addition, a squared \(\ell _{2}\)-norm regularization term \(a \Vert {\varvec{}}{w}\Vert ^{2}\) is added to the loss, with a varying over datasets (see below). All learning algorithms are given a fixed budget of gradient computations, set here to 20n, where n is the size of the training set made available to the learner.

We use three well-known data sets for benchmarking: the CIFAR-10 data set of tiny images,Footnote 2 the MNIST data set of handwritten digits,Footnote 3 and the protein homology dataset made popular by its inclusion in the KDD Cup.Footnote 4 For all data sets, we carry out 10 independent trials, with training and testing tests randomly sampled as will be described shortly. For all datasets, we normalize the input features to the unit interval [0, 1] in a per-dimension fashion. For CIFAR-10, we average the RGD color channels to obtain a single greyscale channel. As a result, \(F=1024\). There are ten classes, so \(C=10\), meaning \(d=(C-1)F=9216\). We take a sample size of \(n=4d=36864\) for training, with the rest for testing, and set \(a=0.001\). For MNIST, we have \(F=784\) and once again \(C=10\), so \(d=7056\). As with the previous dataset, we set \(n=4d=28224\), and \(a=0.0001\). Note that both of these datasets have all classes in equal proportions, so with uniform random sampling, class frequencies are approximately equal in each trial. On the other hand, the protein homology dataset (binary classification) has highly unbalanced labels, with only 1296 positive labels out of over 145,000 observations. We thus take random samples such that the training and test sets are balanced. For each trial, we randomly select 296 positively labeled examples, and the same amount of negatively labeled examples, yielding a test set of 592 examples. As for the training set size, we use the rest of the positive labels (1000 examples) plus a random selection of 1000 negatively labeled examples, so \(n=2000\), and with \(C=2\) and \(F=74\), we have \(d=74\). Regularization parameter a is 0.001. For all datasets, the parameter weights are initialized uniformly over the interval \([-0.05,0.05]\).

Regarding the competing methods used, we test out a random mini-batch version of robust gradient descent given in Algorithm 1, with mini-batch sizes ranging over \(\{5,10,15,20\}\), roughly on the order of \(n^{-1/4}\) for the largest datasets. We also consider a mini-batch in the sense of randomly selecting coordinates to robustify: select \(\min (100,d)\) indices randomly at each iteration, and run the RGD sub-routine on just these coordinates, using the sample mean for all the rest. Furthermore, we considered several minor alterations to the original routine, including using \(\log \cosh (\cdot )\) instead of the Gudermannian function for \(\rho \), updating the scale much less frequently (compared to every iteration), and different choices of \(\chi \) for re-scaling. We compare our proposed algorithm with stochastic gradient descent (SGD), and stochastic variance-reduced gradient descent (SVRG) proposed by Johnson and Zhang (2013). For each method, pre-fixed step sizes ranging over \(\{0.0001, 0.001, 0.01, 0.05, 0.10, 0.15, 0.20\}\) are tested. SGD uses mini-batches of size 1, as does the inner loop of SVRG. The outer loop of SVRG continues until the budget is spent, with the inner loop repeating n / 2 times.

Fig. 9
figure 9

Test error (misclassification rate) over budget spent, as measured by gradient computations, for the top two performers within each method class. Each plot corresponds to a distinct dataset (Color figure online)

Full size image

Representative results are given in Fig. 9. For each of the three methods of interest, and each dataset, we chose the top two performance settings, displayed as *_1 and *_2 respectively. Here “top performance” is measured by the median value of the last five iterations. We see that in general, robust gradient descent is competitive with the best settings of these well-known routines, has minimal divergence between the performance of its first- and second-best settings, and in the case of smaller data sets (protein homology), indeed significantly outperforms the competitors. While these are simply nascent applications of RGD, the strong initial performance suggests that further investigation of efficient strategies under high-dimensional data is a promising direction.

5 Concluding remarks

In this work, we introduced and analyzed a learning algorithm which takes advantage of robust estimates of the unknown risk gradient, integrating statistical estimation and practical implementation into a single routine. Doing so allows us to deal with the statistical vulnerabilities of ERM-GD and partition-based methods, while circumventing computational issues posed by minimizers of robust surrogate objectives. The price to be paid is new computational overhead and potentially biased estimates. Is this price worth paying? Bounds on the excess risk are available under very weak assumptions on the data distribution, and we find empirically that the proposed algorithm has desirable learning efficiency, in that it can competitively generalize, with less samples, over more distributions than its competitors.

Moving forward, a more careful analysis of the role that prior knowledge can play on learning efficiency, starting with the first-order optimizer setting, is of significant interest. Characterizing the learning efficiency enabled by sharper estimates could lead to useful insights in the context of larger-scale problems, where a small overhead might save countless iterations and dramatically reduce budget requirements, while simultaneously leading to more consistent performance across samples. Another natural line of work is to look at alternative strategies which operate on the data vector as a whole (rather than coordinate-wise), integrating information across coordinates, in order to infer more efficiently.