Light

yunyuntsai / dnn-model-stealing Goto Github PK

View Code? Open in Web Editor NEW

18.0 2.0 3.0 1.34 MB

Code for "CloudLeak: Large-Scale Deep Learning Models Stealing Through Adversarial Examples" (NDSS 2020)

Python 4.49% Shell 0.06% Jupyter Notebook 95.45%

ndss-2020 adversarial-machine-learning model-stealing adversarial-learning security transfer-attack

dnn-model-stealing's Introduction

DNN Models Extraction

This is the repo for CloudLeak: Large-Scale Deep Learning Models Stealing Through Adversarial Examples, Honggang Yu, Kaichen Yang, Teng Zhang, Yun-Yun Tsai, Tsung-Yi Ho, Yier Jin, in Proceeding of Network and Distributed System Security Symposium (NDSS), 2020. Our code is implemented in Python 3.6 and Caffe.

The following figure illustrates the transfer framework for our proposed model extraction method:

(a) generate unlabeled adversarial examples as synthetic dataset.
(b) query victim model using the generated synthetic dataset.
(c) label adversarial examples according to the output of the victim model.
(d) train the local substitute model using the synthetic dataset.
(e) use the local substitute model for predictions. The local substitute model is expected to match the performance of the victim model.

For more detail, please refer to our slides, and video.

dnn-model-stealing's People

Contributors

Stargazers

Watchers

Forkers

zedoul lanceren wesley1110

dnn-model-stealing's Issues

close

Help Wanted: How to run your code?

Hi,

you proposed a novel idea to steal cloud-based models with great performance [1]. I'm very interested and try to reproduce the results obtained in [1], while there are two problems block me..

I'm a newcomer and was trapped in installing Caffe (>_<) . Can you kind to show me more details about the dependences of this project? (I think it's easy to export the requirements list on your machine with the command conda list -e > requirements.txt or pip freeze > requirements.txt.)
I wonder if you forget to upload the generator of adversarial examples FeatureFool to this repository (Since there is only a readme file in the folder featurefool), or if the functionality is implemented by other code and I've overlooked it.

Looking forward to your reply.

[1] CloudLeak: Large-Scale Deep Learning Models Stealing Through Adversarial Examples (https://www.ndss-symposium.org/wp-content/uploads/2020/02/24178.pdf)

add pic

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.