hummingbird
/
mindarmour
Not watched
2
0
Fork 0
Code
Releases 17 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
184 Commits
18 Branches
193 MB
189 Download
Tree: 913e2fc98c
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '913e2fc98c'
${ noResults }
mindarmour/tests/ut/python/adv_robustness/attacks/test_cw.py

test_cw.py 2.5 kB
Raw Normal View History

initial version
5 years ago
adjust the project structure according to diff features
4 years ago
initial version
5 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990 
  1. # Copyright 2019 Huawei Technologies Co., Ltd

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the "License");

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. # http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an "AS IS" BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. """

  15. CW-Attack test.

  16. """

  17. import numpy as np

  18. import pytest

  19. 

  20. import mindspore.ops.operations as M

  21. from mindspore.nn import Cell

  22. from mindspore import context

  23. 

  24. from mindarmour.adv_robustness.attacks import CarliniWagnerL2Attack

  25. 

  26. 

  27. context.set_context(mode=context.GRAPH_MODE, device_target="Ascend")

  28. 

  29. 

  30. # for user

  31. class Net(Cell):

  32.     """

  33.     Construct the network of target model.

  34. 

  35.     Examples:

  36.         >>> net = Net()

  37.     """

  38. 

  39.     def __init__(self):

  40.         """

  41.         Introduce the layers used for network construction.

  42.         """

  43.         super(Net, self).__init__()

  44.         self._softmax = M.Softmax()

  45. 

  46.     def construct(self, inputs):

  47.         """

  48.         Construct network.

  49. 

  50.         Args:

  51.             inputs (Tensor): Input data.

  52.         """

  53.         out = self._softmax(inputs)

  54.         return out

  55. 

  56. 

  57. @pytest.mark.level0

  58. @pytest.mark.platform_arm_ascend_training

  59. @pytest.mark.platform_x86_ascend_training

  60. @pytest.mark.env_card

  61. @pytest.mark.component_mindarmour

  62. def test_cw_attack():

  63.     """

  64.     CW-Attack test

  65.     """

  66.     net = Net()

  67.     input_np = np.array([[0.1, 0.2, 0.7, 0.5, 0.4]]).astype(np.float32)

  68.     label_np = np.array([3]).astype(np.int64)

  69.     num_classes = input_np.shape[1]

  70.     attack = CarliniWagnerL2Attack(net, num_classes, targeted=False)

  71.     adv_data = attack.generate(input_np, label_np)

  72.     assert np.any(input_np != adv_data)

  73. 

  74. 

  75. @pytest.mark.level0

  76. @pytest.mark.platform_arm_ascend_training

  77. @pytest.mark.platform_x86_ascend_training

  78. @pytest.mark.env_card

  79. @pytest.mark.component_mindarmour

  80. def test_cw_attack_targeted():

  81.     """

  82.     CW-Attack test

  83.     """

  84.     net = Net()

  85.     input_np = np.array([[0.1, 0.2, 0.7, 0.5, 0.4]]).astype(np.float32)

  86.     target_np = np.array([1]).astype(np.int64)

  87.     num_classes = input_np.shape[1]

  88.     attack = CarliniWagnerL2Attack(net, num_classes, targeted=True)

  89.     adv_data = attack.generate(input_np, target_np)

  90.     assert np.any(input_np != adv_data)

MindArmour关注AI的安全和隐私问题。致力于增强模型的安全可信、保护用户的数据隐私。主要包含3个模块:对抗样本鲁棒性模块、Fuzz Testing模块、隐私保护与评估模块。 对抗样本鲁棒性模块 对抗样本鲁棒性模块用于评估模型对于对抗样本的鲁棒性,并提供模型增强方法用于增强模型抗对抗样本攻击的能力,提升模型鲁棒性。对抗样本鲁棒性模块包含了4个子模块:对抗样本的生成、对抗样本的检测、模型防御、攻防评估。