Skip to content
/ Splitting-the-Difference-on-Adversarial-Training Public

This repo contains the code used in the paper "Splitting the Difference on Adversarial Training" accepted to USENIX Security 24'

6 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

matanle51/Splitting-the-Difference-on-Adversarial-Training

BranchesTags

Repository files navigation

Splitting the Difference on Adversarial Training

This repository contains the code for the paper: "Splitting the Difference on Adversarial Training" which was accepted to USENIX Security 24'.

In the repository, you can find the training and evaluation code of the method presented in the paper, dubbed: Double Boundary Adversarial Training (DBAT).

Prerequisites (preferable):

  • python = 3.9.2
  • torch = 2.0.1

Code usages:

Running DBAT Training

python train_dbat.py

Running Auto-Attack [1]:

import test_auto_attack
natural_acc, robust_acc = test_auto_attack.main()

Running White-box attacks:

from whitebox_attack import eval_adv_test_whitebox
natural_acc, robust_acc = eval_adv_test_whitebox(model, device, test_loader, num_test_samples, 
                                                 epsilon, step_size, num_attack_steps, num_classes)

Running Black-box attacks:

from blackbox_attack import eval_adv_test_blackbox
natural_acc, robust_acc = eval_adv_test_blackbox(model_target, model_source, device, test_loader, num_test_samples,
                                                 epsilon, step_size, num_attack_steps, num_classes)

References:

[1] Auto-Attack: https://github.com/fra31/auto-attack

About

This repo contains the code used in the paper "Splitting the Difference on Adversarial Training" accepted to USENIX Security 24'

Resources

Readme
Activity

Stars

6 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages