https://github.com/astorfi/adversarial-model-inversion
Code for "Neural Network Inversion in Adversarial Setting via Background Knowledge Alignment" (CCS 2019)
Science Score: 23.0%
This score indicates how likely this project is to be science-related based on various indicators:
-
○CITATION.cff file
-
○codemeta.json file
-
○.zenodo.json file
-
✓DOI references
Found 2 DOI reference(s) in README -
✓Academic publication links
Links to: acm.org -
○Academic email domains
-
○Institutional organization owner
-
○JOSS paper metadata
-
○Scientific vocabulary similarity
Low similarity (9.9%) to scientific vocabulary
Last synced: 9 months ago
·
JSON representation
Repository
Code for "Neural Network Inversion in Adversarial Setting via Background Knowledge Alignment" (CCS 2019)
Statistics
- Stars: 0
- Watchers: 1
- Forks: 0
- Open Issues: 0
- Releases: 0
Fork of yziqi/adversarial-model-inversion
Created about 4 years ago
· Last pushed over 6 years ago
https://github.com/astorfi/adversarial-model-inversion/blob/master/
# Adversarial Model Inversion Attack
This repo provides an example of the adversarial model inversion attack in the
paper ["Neural Network Inversion in Adversarial Setting via Background Knowledge Alignment"](https://dl.acm.org/citation.cfm?id=3354261)
## Data
The target classifier (identity classification) is trained on the [FaceScrub](http://vintage.winklerbros.net/facescrub.html)
dataset, and the adversary will use the [CelebA](http://mmlab.ie.cuhk.edu.hk/projects/CelebA.html) dataset as background
knowledge to train the inversion model.
#### Download
[FaceScrub](http://vintage.winklerbros.net/facescrub.html), [CelebA](http://mmlab.ie.cuhk.edu.hk/projects/CelebA.html)
#### Extract Face
[FaceScrub](http://vintage.winklerbros.net/facescrub.html): Extract the face of each image according to the official
bounding box information.
[CelebA](http://mmlab.ie.cuhk.edu.hk/projects/CelebA.html): To extract the face of each image, crop the official
align-cropped version (size 178 218) by width and height of 108 from upper left coordinate (35, 70). Please contact
the authors of CelebA for details about the face identities, and then "clean" the CelebA by removing celebrities that
are included in FaceScrub.
Transform both datasets to greyscale images with each pixel value in [0, 1]. Resize both datasets to 64 64.
## Setup
The code is written in Python3. You can install the required packages by running:
```
$ pip3 install -r requirements.txt
```
## Run
Train the target classifier:
```
$ python3 train_classifier.py
```
Train the inversion model:
```
$ python3 train_inversion.py
```
You can set the truncation size by the `--truncation` parameter.
## Citation
```
@inproceedings{Yang:2019:NNI:3319535.3354261,
author = {Yang, Ziqi and Zhang, Jiyi and Chang, Ee-Chien and Liang, Zhenkai},
title = {Neural Network Inversion in Adversarial Setting via Background Knowledge Alignment},
booktitle = {Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security},
series = {CCS '19},
year = {2019},
isbn = {978-1-4503-6747-9},
location = {London, United Kingdom},
pages = {225--240},
numpages = {16},
url = {http://doi.acm.org/10.1145/3319535.3354261},
doi = {10.1145/3319535.3354261},
acmid = {3354261},
publisher = {ACM},
address = {New York, NY, USA},
keywords = {deep learning, model inversion, neural networks, privacy, security},
}
```
Owner
- Name: Sina Torfi
- Login: astorfi
- Kind: user
- Location: San Jose
- Company: Meta
- Website: https://astorfi.github.io/
- Repositories: 196
- Profile: https://github.com/astorfi
PhD & Developer working on Deep Learning, Computer Vision & NLP