Dirty-Label Backdoor Poisoning Attack for Audio

[Swanand-Kadhe]

Description

This PR adds a dirty-label backdoor attack on audio classification. Key files added are as follows:

• art/attacks/poisoning/perturbations/audio_perturbations.py
• tests/attacks/poison/test_audio_perturbations.py
• notebooks/poisoning_attack_backdoor_audio.ipynb

Type of change

Please check all relevant options.

• Improvement (non-breaking)
• Bug fix (non-breaking)
• New feature (non-breaking)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

Testing

Please describe the tests that you ran to verify your changes. Consider listing any relevant details of your test configuration.

• Test A
• Test B

Test Configuration:

• OS
• Python version
• ART version or commit number
• TensorFlow / Keras / PyTorch / MXNet version

Checklist

• My code follows the style guidelines of this project
• I have performed a self-review of my own code
• I have commented my code
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• I have added tests that prove my fix is effective or that my feature works
• New and existing unit tests pass locally with my changes

[lgtm-com]

This pull request introduces 1 alert when merging 0e419a6 into 301df37 - view on LGTM.com

new alerts:

• 1 for Unused import

[codecov-commenter]

Codecov Report

Merging #1740 (1ec261e) into dev_1.11.0 (f73029b) will decrease coverage by 0.02%.
The diff coverage is 86.00%.

@@              Coverage Diff               @@
##           dev_1.11.0    #1740      +/-   ##
==============================================
- Coverage       86.31%   86.29%   -0.03%     
==============================================
  Files             264      270       +6     
  Lines           22323    22787     +464     
  Branches         3966     4054      +88     
==============================================
+ Hits            19268    19663     +395     
- Misses           2086     2125      +39     
- Partials          969      999      +30     

Impacted Files	Coverage Δ
...cks/poisoning/perturbations/audio_perturbations.py	86.00% <86.00%> (ø)
art/defences/detector/poison/activation_defence.py	84.28% <0.00%> (-0.34%)	⬇️
art/utils.py	75.45% <0.00%> (ø)
art/estimators/certification/__init__.py	100.00% <0.00%> (ø)
art/estimators/object_detection/__init__.py	100.00% <0.00%> (ø)
...estimators/object_detection/pytorch_faster_rcnn.py	100.00% <0.00%> (ø)
...mators/object_detection/pytorch_object_detector.py	79.21% <0.00%> (ø)
...n/derandomized_smoothing/derandomized_smoothing.py	88.81% <0.00%> (ø)
...rs/certification/derandomized_smoothing/pytorch.py	88.00% <0.00%> (ø)
art/estimators/object_detection/pytorch_yolo.py	79.04% <0.00%> (ø)
... and 4 more

[lgtm-com]

This pull request introduces 1 alert when merging c3cb9f1 into 301df37 - view on LGTM.com

new alerts:

• 1 for Unused import

[beat-buesser]

Hi @Swanand-Kadhe Thank you very much for your first pull request to ART! The code looks good to me! I have added a small suggestion above and would like to ask if you could update the notebooks/README.md file to include your new notebook?

[Swanand-Kadhe]

Hi @beat-buesser Thank you so much for reviewing the PR and for the suggestions. I have incorporated them. Please take a look and let me know if there are any other suggestions. Many thanks!

[beat-buesser]

Hi @Swanand-Kadhe Thank you very much!