hummingbird
/
mindarmour
Not watched
2
0
Fork 0
Code
Releases 17 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
592 Commits
18 Branches
193 MB
165 Download
Tree: 818a39e42f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '818a39e42f'
${ noResults }
mindarmour/README.md

README.md 6.9 kB
Raw Normal View History

initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
add chinese version readme.md
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
update readme
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
update readme
4 years ago
update readme en
4 years ago
update readme
4 years ago
update readme en
4 years ago
update readme
4 years ago
add chinese version readme.md
4 years ago
update readme
4 years ago
update readme en
4 years ago
update readme
4 years ago
update readme en
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
Add version check with MindSpore.
2 years ago
update readme en
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
modify pip source in readme.md
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
update readme en
4 years ago
initial version
5 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144 
  1. # MindArmour

  2. 

  3. <!-- TOC -->

  4. 

  5. - [MindArmour](#mindarmour)

  6.     - [What is MindArmour](#what-is-mindarmour)

  7.         - [Adversarial Robustness Module](#adversarial-robustness-module)

  8.         - [Fuzz Testing Module](#fuzz-testing-module)

  9.         - [Privacy Protection and Evaluation Module](#privacy-protection-and-evaluation-module)

  10.             - [Differential Privacy Training Module](#differential-privacy-training-module)

  11.             - [Privacy Leakage Evaluation Module](#privacy-leakage-evaluation-module)

  12.     - [Starting](#starting)

  13.         - [System Environment Information Confirmation](#system-environment-information-confirmation)

  14.         - [Installation](#installation)

  15.             - [Installation by Source Code](#installation-by-source-code)

  16.             - [Installation by pip](#installation-by-pip)

  17.         - [Installation Verification](#installation-verification)

  18.     - [Docs](#docs)

  19.     - [Community](#community)

  20.     - [Contributing](#contributing)

  21.     - [Release Notes](#release-notes)

  22.     - [License](#license)

  23. 

  24. <!-- /TOC -->

  25. 

  26. [查看中文](./README_CN.md)

  27. 

  28. ## What is MindArmour

  29. 

  30. MindArmour focus on security and privacy of artificial intelligence. MindArmour can be used as a tool box for MindSpore users to enhance model security and trustworthiness and protect privacy data. MindArmour contains three module: Adversarial Robustness Module, Fuzz Testing Module, Privacy Protection and Evaluation Module.

  31. 

  32. ### Adversarial Robustness Module

  33. 

  34. Adversarial robustness module is designed for evaluating the robustness of the model against adversarial examples, and provides model enhancement methods to enhance the model's ability to resist the adversarial attack and improve the model's robustness.

  35. This module includes four submodule: Adversarial Examples Generation, Adversarial Examples Detection, Model Defense and Evaluation.

  36. 

  37. The architecture is shown as follow:

  38. 

  39. ![mindarmour_architecture](docs/adversarial_robustness_en.png)

  40. 

  41. ### Fuzz Testing Module

  42. 

  43. Fuzz Testing module is a security test for AI models. We introduce neuron coverage gain as a guide to fuzz testing according to the characteristics of neural networks.

  44. Fuzz testing is guided to generate samples in the direction of increasing neuron coverage rate, so that the input can activate more neurons and neuron values have a wider distribution range to fully test neural networks and explore different types of model output results and wrong behaviors.

  45. 

  46. The architecture is shown as follow:

  47. 

  48. ![fuzzer_architecture](docs/fuzzer_architecture_en.png)

  49. 

  50. ### Privacy Protection and Evaluation Module

  51. 

  52. Privacy Protection and Evaluation Module includes two modules: Differential Privacy Training Module and Privacy Leakage Evaluation Module.

  53. 

  54. #### Differential Privacy Training Module

  55. 

  56. Differential Privacy Training Module implements the differential privacy optimizer. Currently, `SGD`, `Momentum` and `Adam` are supported. They are differential privacy optimizers based on the Gaussian mechanism.

  57. This mechanism supports both non-adaptive and adaptive policy. Rényi differential privacy (RDP) and Zero-Concentrated differential privacy(ZCDP) are provided to monitor differential privacy budgets.

  58. 

  59. The architecture is shown as follow:

  60. 

  61. ![dp_architecture](docs/differential_privacy_architecture_en.png)

  62. 

  63. #### Privacy Leakage Evaluation Module

  64. 

  65. Privacy Leakage Evaluation Module is used to assess the risk of a model revealing user privacy. The privacy data security of the deep learning model is evaluated by using membership inference method to infer whether the sample belongs to training dataset.

  66. 

  67. The architecture is shown as follow:

  68. 

  69. ![privacy_leakage](docs/privacy_leakage_en.png)

  70. 

  71. ## Starting

  72. 

  73. ### System Environment Information Confirmation

  74. 

  75. - The hardware platform should be Ascend, GPU or CPU.

  76. - See our [MindSpore Installation Guide](https://www.mindspore.cn/install) to install MindSpore.  

  77.     The versions of MindArmour and MindSpore must be consistent.

  78. - All other dependencies are included in [setup.py](https://gitee.com/mindspore/mindarmour/blob/master/setup.py).

  79. 

  80. ### Installation

  81. 

  82. ### Version dependency

  83. 

  84. Due the dependency between MindArmour and MindSpore, please follow the table below and install the corresponding MindSpore verision from [MindSpore download page](https://www.mindspore.cn/versions/en).

  85. 

  86. | MindArmour Version | Branch                                                    | MindSpore Version |

  87. | ------------------ | --------------------------------------------------------- | ----------------- |

  88. | 2.0.0              | [r2.0](https://gitee.com/mindspore/mindarmour/tree/r2.0/) | 1.7.0 -           |

  89. | 1.9.0              | [r1.9](https://gitee.com/mindspore/mindarmour/tree/r1.9/) | 1.7.0 -           |

  90. | 1.8.0              | [r1.8](https://gitee.com/mindspore/mindarmour/tree/r1.8/) | 1.7.0 -           |

  91. | 1.7.0              | [r1.7](https://gitee.com/mindspore/mindarmour/tree/r1.7/) | r1.7              |

  92. 

  93. #### Installation by Source Code

  94. 

  95. 1. Download source code from Gitee.

  96. 

  97.     ```bash

  98.     git clone https://gitee.com/mindspore/mindarmour.git

  99.     ```

  100. 

  101. 2. Compile and install in MindArmour directory.

  102. 

  103.     ```bash

  104.     cd mindarmour

  105.     python setup.py install

  106.     ```

  107. 

  108. #### Installation by pip

  109. 

  110. ```bash

  111. pip install https://ms-release.obs.cn-north-4.myhuaweicloud.com/{version}/MindArmour/{arch}/mindarmour-{version}-cp37-cp37m-linux_{arch}.whl --trusted-host ms-release.obs.cn-north-4.myhuaweicloud.com -i https://pypi.tuna.tsinghua.edu.cn/simple

  112. ```

  113. 

  114. > - When the network is connected, dependency items are automatically downloaded during .whl package installation. (For details about other dependency items, see [setup.py](https://gitee.com/mindspore/mindarmour/blob/master/setup.py)). In other cases, you need to manually install dependency items.

  115. > - `{version}` denotes the version of MindArmour. For example, when you are downloading MindArmour 1.0.1, `{version}` should be 1.0.1.

  116. > - `{arch}` denotes the system architecture. For example, the Linux system you are using is x86 architecture 64-bit, `{arch}` should be `x86_64`. If the system is ARM architecture 64-bit, then it should be `aarch64`.

  117. 

  118. ### Installation Verification

  119. 

  120. Successfully installed, if there is no error message such as `No module named 'mindarmour'` when execute the following command:

  121. 

  122. ```bash

  123. python -c 'import mindarmour'

  124. ```

  125. 

  126. ## Docs

  127. 

  128. Guidance on installation, tutorials, API, see our [User Documentation](https://gitee.com/mindspore/docs).

  129. 

  130. ## Community

  131. 

  132. [MindSpore Slack](https://join.slack.com/t/mindspore/shared_invite/enQtOTcwMTIxMDI3NjM0LTNkMWM2MzI5NjIyZWU5ZWQ5M2EwMTQ5MWNiYzMxOGM4OWFhZjI4M2E5OGI2YTg3ODU1ODE2Njg1MThiNWI3YmQ) - Ask questions and find answers.

  133. 

  134. ## Contributing

  135. 

  136. Welcome contributions. See our [Contributor Wiki](https://gitee.com/mindspore/mindspore/blob/master/CONTRIBUTING.md) for more details.

  137. 

  138. ## Release Notes

  139. 

  140. The release notes, see our [RELEASE](RELEASE.md).

  141. 

  142. ## License

  143. 

  144. [Apache License 2.0](LICENSE)

MindArmour关注AI的安全和隐私问题。致力于增强模型的安全可信、保护用户的数据隐私。主要包含3个模块:对抗样本鲁棒性模块、Fuzz Testing模块、隐私保护与评估模块。 对抗样本鲁棒性模块 对抗样本鲁棒性模块用于评估模型对于对抗样本的鲁棒性,并提供模型增强方法用于增强模型抗对抗样本攻击的能力,提升模型鲁棒性。对抗样本鲁棒性模块包含了4个子模块:对抗样本的生成、对抗样本的检测、模型防御、攻防评估。