code for "Feature Importance-aware Transferable Adversarial Attacks"

Last update: Nov 24, 2022

Related tags

Deep Learning FIA

Overview

Feature Importance-aware Attack(FIA)

This repository contains the code for the paper:

Feature Importance-aware Transferable Adversarial Attacks (ICCV 2021)

Requirements

Python 3.6.8
Keras 2.2.4
Tensorflow 1.14.0
Numpy 1.16.2
Pillow 6.0.0
Scipy 1.2.1

Experiments

Introduction

attack.py : the implementation for different attacks.
verify.py : the code for evaluating generated adversarial examples on different models.

You should download the pretrained models from ( https://github.com/tensorflow/models/tree/master/research/slim, https://github.com/tensorflow/models/tree/archive/research/adv_imagenet_models) before running the code. Then place these model checkpoint files in ./models_tf.

Example Usage

Generate adversarial examples:

python attack.py --model_name vgg_16 --attack_method FIA --layer_name vgg_16/conv3/conv3_3/Relu --ens 30 --probb 0.7 --output_dir ./adv/FIA/

PIM:

python attack.py --model_name vgg_16 --attack_method PIM --amplification_factor 10 --gamma 1 --Pkern_size 3 --output_dir ./adv/PIM/

FIA+PIDIM

python attack.py --model_name vgg_16 --attack_method FIAPIM --layer_name vgg_16/conv3/conv3_3/Relu --ens 30 --probb 0.7 --amplification_factor 2.5 --gamma 0.5 --Pkern_size 3 --image_size 224 --image_resize 250 --prob 0.7 --output_dir ./adv/FIAPIDIM/

Different attack methods have different parameter setting, and the detailed setting can be found in our paper.

Evaluate the attack success rate

python verify.py --ori_path ./dataset/images/ --adv_path ./adv/FIA/ --output_file ./log.csv

Citing this work

If you find this work is useful in your research, please consider citing:

@article{wang2021feature,
  title={Feature Importance-aware Transferable Adversarial Attacks},
  author={Wang, Zhibo and Guo, Hengchang and Zhang, Zhifei and Liu, Wenxin and Qin, Zhan and Ren, Kui},
  journal={arXiv preprint arXiv:2107.14185},
  year={2021}
}

code for "Feature Importance-aware Transferable Adversarial Attacks"

Related tags

Overview

Feature Importance-aware Attack(FIA)

Requirements

Experiments

Introduction

Example Usage

Generate adversarial examples:

Evaluate the attack success rate

Citing this work

Owner

Hengchang Guo

Lava-DL, but with PyTorch-Lightning flavour

LightSeq is a high performance training and inference library for sequence processing and generation implemented in CUDA

The implementation our EMNLP 2021 paper "Enhanced Language Representation with Label Knowledge for Span Extraction".

x-transformers-paddle 2.x version

Code for paper Adaptively Aligned Image Captioning via Adaptive Attention Time

TensorFlow implementation of original paper : https://github.com/hszhao/PSPNet

Automatic number plate recognition using tech: Yolo, OCR, Scene text detection, scene text recognation, flask, torch

Pre-Training Graph Neural Networks for Cold-Start Users and Items Representation.

[ICCV 2021] Our work presents a novel neural rendering approach that can efficiently reconstruct geometric and neural radiance fields for view synthesis.

Conservative and Adaptive Penalty for Model-Based Safe Reinforcement Learning

Regularized Frank-Wolfe for Dense CRFs: Generalizing Mean Field and Beyond

Keras-retinanet - Keras implementation of RetinaNet object detection.

A playable implementation of Fully Convolutional Networks with Keras.

Meta Learning for Semi-Supervised Few-Shot Classification

Collect some papers about transformer with vision. Awesome Transformer with Computer Vision (CV)

MAVE: : A Product Dataset for Multi-source Attribute Value Extraction

A collection of Jupyter notebooks to play with NVIDIA's StyleGAN3 and OpenAI's CLIP for a text-based guided image generation.

Official implementation of the ICLR 2021 paper

Pixel-Perfect Structure-from-Motion with Featuremetric Refinement (ICCV 2021, Oral)

Official PyTorch implementation for paper Context Matters: Graph-based Self-supervised Representation Learning for Medical Images