In [0]:
from __future__ import print_function
import easydict
import torch
import torch.nn as nn
import torch.nn.functional as F
from torch.autograd import Variable
import torch.optim as optim
from torchvision import datasets, transforms
from torch.optim.lr_scheduler import StepLR

In [0]:
class NetDrop(nn.Module):
  def __init__(self):
    super(NetDrop, self).__init__()
    self.conv1 = nn.Conv2d(1, 32, 3, 1)
    self.conv2 = nn.Conv2d(32, 64, 3, 1)
    self.dropout1 = nn.Dropout2d(0.25)
    self.dropout2 = nn.Dropout2d(0.5)
    self.fc1 = nn.Linear(9216, 128)
    self.fc2 = nn.Linear(128, 10)

  def forward(self, x):
    x = self.conv1(x)
    x = F.relu(x)
    x = self.conv2(x)
    x = F.relu(x)
    x = F.max_pool2d(x, 2)
    x = self.dropout1(x)
    x = torch.flatten(x, 1)
    x = self.fc1(x)
    x = F.relu(x)
    x = self.dropout2(x)
    output = self.fc2(x)
    return output

In [0]:
class NetConv(nn.Module):
  def __init__(self):
    super(NetConv, self).__init__()
    self.conv1 = nn.Conv2d(1, 32, 3, 1)
    self.conv2 = nn.Conv2d(32, 64, 3, 1)
    self.fc1 = nn.Linear(36864, 128)
    self.fc2 = nn.Linear(128, 10)

  def forward(self, x):
    x = self.conv1(x)
    x = F.relu(x)
    x = self.conv2(x)
    x = F.relu(x)
    x = torch.flatten(x, 1)
    x = self.fc1(x)
    x = F.relu(x)
    output = self.fc2(x)
    return output

In [0]:
class Net(nn.Module):
  def __init__(self):
    super(Net, self).__init__()
    self.fc1 = nn.Linear(28*28, 500)
    self.fc2 = nn.Linear(500, 10)

  def forward(self, x):
    x = torch.flatten(x, 1)
    x = self.fc1(x)
    x = F.relu(x)
    output = self.fc2(x)
    return output

In [0]:
def train(args, model, device, train_loader, optimizer):
  model.train()
  # cross entropy loss
  criterion = nn.CrossEntropyLoss()
  for epoch in range(1, args.epochs + 1):
    for batch_idx, (image, target) in enumerate(train_loader):
      image, target = image.to(device), target.to(device)
      optimizer.zero_grad()
      
      output = model(image)
      
      loss = criterion(output, target)
      loss.backward()
      optimizer.step()
      
      if batch_idx % args.log_interval == 0:
        print('Train Epoch: {} [{}/{} ({:.0f}%)]\tLoss: {:.6f}'.format(
            epoch, batch_idx * len(image), len(train_loader.dataset),
            100. * batch_idx / len(train_loader), loss.item()))
        

In [0]:
def test(args, model, device, test_loader):
  test_loss = 0
  correct = 0
  adv_correct = 0
  misclassified = 0
  criterion = nn.CrossEntropyLoss()
  for images, targets in test_loader:
    images = Variable(images.to(device), requires_grad=True)
    targets = Variable(targets.to(device))
   
    outputs = model(images)
    loss = criterion(outputs, targets)
    test_loss += loss
    loss.backward()

		# Generate perturbation
    grad = torch.sign(images.grad.data)
    adv_images = torch.clamp(images.data + args.epsilon * grad, 0, 1)

    adv_outputs = model(Variable(adv_images))

    _, pred = torch.max(outputs.data, 1)
    _, adv_preds = torch.max(adv_outputs.data, 1)

    correct += (pred == targets).sum().item()
    adv_correct += (adv_preds == targets).sum().item()
    misclassified += (pred != adv_preds).sum().item()


  test_loss /= len(test_loader.dataset)

  print('\nTest set: Average loss: {:.4f}, Accuracy: {}/{} ({:.0f})\n'.format(
      test_loss, correct, len(test_loader.dataset),
      100. * correct / len(test_loader.dataset)))
  print('\nAdversarial Test: Accuracy: {}/{} ({:.0f})\n'.format(
      adv_correct, len(test_loader.dataset),
      100. * adv_correct / len(test_loader.dataset)))
  print('\nmisclassified examples : {}/ {}\n'.format(
      misclassified, len(test_loader.dataset)))

In [0]:
def main(network='fc', data_normalize=False):
  # args = parser.parse_args()
  args = easydict.EasyDict({
      'batch_size': 64,
      'test_batch_size': 1000,
      'epochs': 5,
      'lr': 0.001,
      'gamma': 0.7,
      'no_cuda': False,
      'log_interval': 64,
      'epsilon': 0.25
  })
  use_cuda = not args.no_cuda and torch.cuda.is_available()

  device = torch.device("cuda" if use_cuda else "cpu")
  
  transformation = transforms.ToTensor()
  if data_normalize:
    transformation = transforms.Compose([transforms.ToTensor(), 
                                         transforms.Normalize((0.1307,),(0.3081,))])  

  train_loader = torch.utils.data.DataLoader(
      datasets.MNIST('data/', train=True, download=True,
                      transform=transformation),
      batch_size=args.batch_size, shuffle=True)
  test_loader = torch.utils.data.DataLoader(
      datasets.MNIST('data/', train=False, download=True,
                     transform=transformation),
      batch_size=args.test_batch_size, shuffle=True)
  
  if network == 'conv':
    model = NetConv().to(device)
  elif network == 'drop':
    model = NetDrop().to(device)
  elif network == 'fc':
    model = Net().to(device)

  optimizer = optim.Adam(model.parameters(), lr= args.lr)

  train(args, model, device, train_loader, optimizer)

  test(args, model, device, test_loader)


In [15]:
# default - fc net
if __name__ == '__main__': 
  main()


Test set: Average loss: 0.0001, Accuracy: 9783/10000 (98)


Adversarial Test: Accuracy: 86/10000 (1)


misclassified examples : 9733/ 10000



In [16]:
# use convolutioal network model
if __name__ == '__main__':
  main(network='conv')


Test set: Average loss: 0.0000, Accuracy: 9876/10000 (99)


Adversarial Test: Accuracy: 3152/10000 (32)


misclassified examples : 6727/ 10000



In [17]:
# use dropout network model
if __name__ == '__main__':
  main(network='drop')



Test set: Average loss: 0.0001, Accuracy: 9793/10000 (98)


Adversarial Test: Accuracy: 6047/10000 (60)


misclassified examples : 3806/ 10000



In [18]:
# data normalizationL True
if __name__ == '__main__':
  main(data_normalize=True)


Test set: Average loss: 0.0001, Accuracy: 9727/10000 (97)


Adversarial Test: Accuracy: 8964/10000 (90)


misclassified examples : 967/ 10000

