hummingbird
/
mindarmour
Not watched
2
0
Fork 0
Code
Releases 17 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
Tree: dd93d2d008
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'dd93d2d008'
${ noResults }
mindarmour/mindarmour/attacks/black/black_model.py

76 lines
2.6 kB
Raw Blame History 

  1. # Copyright 2019 Huawei Technologies Co., Ltd

  2. #

  3. # Licensed under the Apache License, Version 2.0 (the "License");

  4. # you may not use this file except in compliance with the License.

  5. # You may obtain a copy of the License at

  6. #

  7. # http://www.apache.org/licenses/LICENSE-2.0

  8. #

  9. # Unless required by applicable law or agreed to in writing, software

  10. # distributed under the License is distributed on an "AS IS" BASIS,

  11. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. # See the License for the specific language governing permissions and

  13. # limitations under the License.

  14. """

  15. Black model.

  16. """

  17. from abc import abstractmethod

  18. 

  19. import numpy as np

  20. 

  21. from mindarmour.utils.logger import LogUtil

  22. 

  23. LOGGER = LogUtil.get_instance()

  24. TAG = 'BlackModel'

  25. 

  26. 

  27. class BlackModel:

  28.     """

  29.     The abstract class which treats the target model as a black box. The model

  30.     should be defined by users.

  31.     """

  32.     def __init__(self):

  33.         pass

  34. 

  35.     @abstractmethod

  36.     def predict(self, inputs):

  37.         """

  38.         Predict using the user specified model. The shape of predict results

  39.         should be (m, n), where n represents the number of classes this model

  40.         classifies.

  41. 

  42.         Args:

  43.             inputs (numpy.ndarray): The input samples to be predicted.

  44. 

  45.         Raises:

  46.             NotImplementedError: It is an abstract method.

  47.         """

  48.         msg = 'The function predict() is an abstract function in class ' \

  49.               '`BlackModel` and should be implemented in child class by user.'

  50.         LOGGER.error(TAG, msg)

  51.         raise NotImplementedError(msg)

  52. 

  53.     def is_adversarial(self, data, label, is_targeted):

  54.         """

  55.         Check if input sample is adversarial example or not.

  56. 

  57.         Args:

  58.             data (numpy.ndarray): The input sample to be check, typically some

  59.                 maliciously perturbed examples.

  60.             label (numpy.ndarray): For targeted attacks, label is intended

  61.                 label of perturbed example. For untargeted attacks, label is

  62.                 original label of corresponding unperturbed sample.

  63.             is_targeted (bool): For targeted/untargeted attacks, select True/False.

  64. 

  65.         Returns:

  66.             bool.

  67.                 - If True, the input sample is adversarial.

  68. 

  69.                 - If False, the input sample is not adversarial.

  70.         """

  71.         logits = self.predict(np.expand_dims(data, axis=0))[0]

  72.         predicts = np.argmax(logits)

  73.         if is_targeted:

  74.             return predicts == label

  75.         return predicts != label