Comments (7)
Thank you @weitianli I'm looking into it.
from adversarial-robustness-toolbox.
Hi, @weitianli! Fix is now out, please install from clone for the issue to be solved. Let us know if you encounter any further problems!
from adversarial-robustness-toolbox.
@weitianli Normally, with the new version of the attack, an max_iter
value significantly smaller than 1000 should suffice. Before we were using gradient descent with decayed learning rate for minimizing the CWL2 objective, now we are using binary line search which should converge faster and be more stable. Please let us know if you have any issues with determining the right value for this parameter.
from adversarial-robustness-toolbox.
Thank you very much! I will try it!
from adversarial-robustness-toolbox.
I have a small problem about the max_iter. I found your tutorial code about cw set max_iter is 10. Is it the same effect like Cleverhans tutorial(max_iter=100) or CW(max_iter=1000) original version?
Also, I have a small problem about eps in FGSM calculation. Is eps formula in ART is 1*(1/255)?
Thank you very much!
@mathsinn @ririnicolae
from adversarial-robustness-toolbox.
@weitianli What is the problem you encounter with max_iter
in C&W? What about the one on the eps
value in FGSM? I would say the number of iterations is not strictly equivalent to the other implementations, just that in ART a small number of iterations should suffice. The eps
value depends on the data range of your classifier. For example, if your data is normalized between 0 and 1, eps
should also be in that range. If your data is between 0 and 255, eps
can take values up to 255.
from adversarial-robustness-toolbox.
I got it. Thank you for your kind response.
from adversarial-robustness-toolbox.
Related Issues (20)
- NaNs in Wasserstein Attack HOT 5
- Some question about computing the adversarial saliency map in JSMA attack HOT 3
- Regarding duplicated queries in the Square Attack HOT 2
- Formatting of Documentation is Broken HOT 2
- `ActivationDefense` and `SpectralSignatures` expect flattened activations HOT 1
- Implement `get_activations()` for PyTorch Object Detectors HOT 1
- TensorFlow Addons is end of life in May 2024 HOT 3
- pgd attack usage
- BrendelBethgeAttack breaks with array clip range HOT 2
- Update the speech recognizer class to work with up-to-date versions of ART
- Update the speech recognizer class to work with up-to-date versions of ART HOT 1
- Implement dirty label poisoning attacks for speech recognition models
- Implement dirty label poisoning attacks for speech recognition models
- BUG web ART HOT 1
- [Citation] v1.0.0 or v1.2.0? HOT 1
- Using Pre Processors in Prediction (ART classifier) HOT 2
- Implement HuggingFace Language Modeling Estimators HOT 1
- Can't execute the generate function from AdversarialPatchPytorch HOT 1
- Apply existing patches without initialising attack object HOT 1
- Upgrade Pylint Version and Review Required Disable Statements
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from adversarial-robustness-toolbox.