<a href="https://colab.research.google.com/github/abijith007/Bosch/blob/main/Cifar_10_model_steal.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

In [2]:
import numpy
from keras.models import Sequential
from keras.layers import Dense,Dropout,Flatten,Conv2D,MaxPooling2D
from keras.constraints import maxnorm
from keras.optimizers import SGD
from keras.utils import np_utils 
from keras import backend as K 


In [3]:
from keras.datasets import cifar10
# let's load data 
(X_train, y_train), (X_test, y_test) = cifar10.load_data()

Downloading data from https://www.cs.toronto.edu/~kriz/cifar-10-python.tar.gz


In [4]:
#normalizing inputs from 0-255 to 0.0-1.0 
X_train = X_train.astype('float32') 
X_test = X_test.astype('float32') 
X_train = X_train / 255.0 
X_test = X_test / 255.0

In [5]:
# one hot encode outputs 
y_train = np_utils.to_categorical(y_train) 
y_test = np_utils.to_categorical(y_test) 
num_classes = y_test.shape[1]

In [6]:
# Create the model 
model = Sequential()
model.add(Conv2D(32, (3, 3), input_shape=(32,32,3), activation='relu', padding='same')) 
model.add(Dropout(0.2)) 
model.add(Conv2D(32, (3, 3), activation='relu', padding='same')) 
model.add(MaxPooling2D(pool_size=(2, 2))) 
model.add(Conv2D(64, (3, 3), activation='relu', padding='same')) 
model.add(Dropout(0.2)) 
model.add(Conv2D(64, (3, 3), activation='relu', padding='same')) 
model.add(MaxPooling2D(pool_size=(2, 2))) 
model.add(Conv2D(128, (3, 3), activation='relu', padding='same')) 
model.add(Dropout(0.2)) 
model.add(Conv2D(128, (3, 3), activation='relu', padding='same')) 
model.add(MaxPooling2D(pool_size=(2, 2))) 
model.add(Flatten()) 
model.add(Dropout(0.2)) 
model.add(Dense(1024, activation='relu', kernel_constraint=maxnorm(3))) 
model.add(Dropout(0.2)) 
model.add(Dense(512, activation='relu', kernel_constraint=maxnorm(3))) 
model.add(Dropout(0.2)) 
model.add(Dense(num_classes, activation='softmax'))

In [7]:
print(model.summary())

Model: "sequential"
_________________________________________________________________
Layer (type)                 Output Shape              Param #   
conv2d (Conv2D)              (None, 32, 32, 32)        896       
_________________________________________________________________
dropout (Dropout)            (None, 32, 32, 32)        0         
_________________________________________________________________
conv2d_1 (Conv2D)            (None, 32, 32, 32)        9248      
_________________________________________________________________
max_pooling2d (MaxPooling2D) (None, 16, 16, 32)        0         
_________________________________________________________________
conv2d_2 (Conv2D)            (None, 16, 16, 64)        18496     
_________________________________________________________________
dropout_1 (Dropout)          (None, 16, 16, 64)        0         
_________________________________________________________________
conv2d_3 (Conv2D)            (None, 16, 16, 64)        3

In [8]:
# Compile model 
lrate = 0.01 
epochs = 100
decay = lrate/epochs 
sgd = SGD(lr=lrate, momentum=0.9, decay=decay, nesterov=False) 
model.compile(loss='categorical_crossentropy', optimizer=sgd, metrics=['accuracy'])

In [9]:
model.fit(X_train, y_train, validation_data=(X_test, y_test), epochs=100, batch_size=32) 
# Final evaluation of the model 
scores = model.evaluate(X_test, y_test, verbose=1) 
print("Accuracy: %.2f%%" % (scores[1]*100))

Epoch 1/100
Epoch 2/100
Epoch 3/100
Epoch 4/100
Epoch 5/100
Epoch 6/100
Epoch 7/100

KeyboardInterrupt: ignored

In [None]:
import numpy as np

actual = []

for i in range(len(X_test)):
  test_image =np.expand_dims(X_test[i], axis =0) 
  result = model.predict(test_image).argmax() 
  if result==0: 
      actual.append("Aeroplane") 
  elif result==1: 
      actual.append('Automobile') 
  elif result==2: 
      actual.append('Bird') 
  elif result==3: 
      actual.append('Cat') 
  elif result==4: 
      actual.append('Deer') 
  elif result==5: 
      actual.append('Dog') 
  elif result==6: 
      actual.append('Frog') 
  elif result==7: 
      actual.append('Horse') 
  elif result==8: 
      actual.append('Ship') 
  elif result==9: 
      actual.append('Truck') 




print(actual,y_test[0])


In [None]:
predicted = []

for i in range(len(y_test)):
  if y_test[i].argmax()==0: 
      predicted.append("Aeroplane") 
  elif y_test[i].argmax()==1: 
      predicted.append('Automobile') 
  elif y_test[i].argmax()==2: 
      predicted.append('Bird') 
  elif y_test[i].argmax()==3: 
      predicted.append('Cat') 
  elif y_test[i].argmax()==4: 
      predicted.append('Deer') 
  elif y_test[i].argmax()==5: 
      predicted.append('Dog') 
  elif y_test[i].argmax()==6: 
      predicted.append('Frog') 
  elif y_test[i].argmax()==7: 
      predicted.append('Horse') 
  elif y_test[i].argmax()==8: 
      predicted.append('Ship') 
  elif y_test[i].argmax()==9: 
      predicted.append('Truck') 


print(len(actual),len(predicted))

In [None]:
import pandas as pd
import seaborn as sn
import matplotlib.pyplot as plt

data = {'y_Actual':    actual,
        'y_Predicted': predicted
        }

df = pd.DataFrame(data, columns=['y_Actual','y_Predicted'])
confusion_matrix = pd.crosstab(df['y_Actual'], df['y_Predicted'], rownames=['Actual'], colnames=['Predicted'])

fig, ax = plt.subplots(figsize=(10,10))  
sn.heatmap(confusion_matrix, annot=True, linewidths=1.5)
plt.show()

In [None]:
from sklearn.metrics import classification_report
target_names = ['Aeroplane', 'Automobile', 'Bird','Cat','Deer','Dog', 'Frog','Horse', 'Ship', 'Truck']
print(classification_report(actual, predicted, target_names=target_names))

In [14]:
from keras.models import load_model 
model.save('cifar-10_original_model.h5')

In [17]:
import tensorflow as tf

converter = tf.lite.TFLiteConverter.from_keras_model(model)
tflite_model = converter.convert()

# Save the model.
with open('cifar-10_original_model.tflite', 'wb') as f:
  f.write(tflite_model)

INFO:tensorflow:Assets written to: /tmp/tmplqefjv5d/assets


In [18]:
from google.colab import drive
drive.mount('drive')

Mounted at drive


In [23]:
#!ls drive/MyDrive/Bosch
#!cp cifar-10_original_model.h5 drive/MyDrive/Bosch/
#!cp cifar-10_original_model.tflite drive/MyDrive/Bosch/
#!ls drive/MyDrive/Bosch

'Bosch Report - 01-04-2021.docx'


##**Model steal**


Label generation of noisy input using original model


In [None]:
import numpy as np
import os
import cv2

In [None]:
def noisy(noise_typ,image):
   if noise_typ == "gauss":
      row,col,ch= image.shape
      mean = 0
      var = 0.1
      sigma = var**0.5
      gauss = np.random.normal(mean,sigma,(row,col,ch))
      gauss = gauss.reshape(row,col,ch)
      noisy = image + gauss
      return noisy
   elif noise_typ == "s&p":
      row,col,ch = image.shape
      s_vs_p = 0.5
      amount = 0.7
      out = np.copy(image)
      # Salt mode
      num_salt = np.ceil(amount * image.size * s_vs_p)
      coords = [np.random.randint(0, i - 1, int(num_salt))
              for i in image.shape]
      out[coords] = np.random.randint(low=0,high=124,size=1)

      # Pepper mode
      num_pepper = np.ceil(amount* image.size * (1. - s_vs_p))
      coords = [np.random.randint(0, i - 1, int(num_pepper))
              for i in image.shape]
      out[coords] = np.random.randint(low=124,high=255,size=1)
      return out
   elif noise_typ == "poisson":
      vals = len(np.unique(image))
      vals = 2 ** np.ceil(np.log2(vals))
      noisy = np.random.poisson(image * vals) / float(vals)
      return noisy
   elif noise_typ =="speckle":
      row,col,ch = image.shape
      gauss = np.random.randn(row,col,ch)
      gauss = gauss.reshape(row,col,ch)        
      noisy = image + image * gauss
      return noisy

In [None]:
(x_train_rLabel, y_train_rLabel), (x_test_rLabel, y_test_rLabel) = cifar10.load_data()

In [None]:
percentage = 1
num_of_img = int(len(x_train_rLabel)*(percentage/100))
x_train_noise = []
for i in range(num_of_img):
  x_train_noise.append(x_train_rLabel[i])

In [None]:
for i in range(num_of_img):
  x_train_noise[i] = noisy('s&p',x_train_noise[i])

In [None]:
plt.imshow(x_train_noise[10])

In [None]:
plt.imshow(x_train_noise[11])

In [None]:
rLabels = []
rLabels.append(model.predict(x_train_noise[0]))
print(rLabels)

#for i in range(num_of_img):
#  rLabels.append(model.predict(x_train_rLabel))
#  print(rLabels)

Model training of the generated input with labels

In [None]:
model_steal = Sequential()
model_steal.add(Conv2D(32, (3, 3), input_shape=(32,32,3), activation='relu', padding='same')) 
model_steal.add(Dropout(0.2)) 
model_steal.add(Conv2D(32, (3, 3), activation='relu', padding='same')) 
model_steal.add(MaxPooling2D(pool_size=(2, 2))) 
model_steal.add(Conv2D(64, (3, 3), activation='relu', padding='same')) 
model_steal.add(Dropout(0.2)) 
model_steal.add(Conv2D(64, (3, 3), activation='relu', padding='same')) 
model_steal.add(MaxPooling2D(pool_size=(2, 2))) 
model_steal.add(Conv2D(128, (3, 3), activation='relu', padding='same')) 
model_steal.add(Dropout(0.2))
model_steal.add(Conv2D(128, (3, 3), activation='relu', padding='same')) 
model_steal.add(Dropout(0.4)) 
model_steal.add(Conv2D(128, (3, 3), activation='relu', padding='same')) 
model_steal.add(MaxPooling2D(pool_size=(2, 2))) 
model_steal.add(Flatten()) 
model_steal.add(Dropout(0.2)) 
model_steal.add(Dense(1024, activation='relu', kernel_constraint=maxnorm(3))) 
model_steal.add(Dropout(0.2)) 
model_steal.add(Dense(512, activation='relu', kernel_constraint=maxnorm(3))) 
model_steal.add(Dropout(0.2)) 
model_steal.add(Dense(num_classes, activation='softmax'))
print(model_steal.summary)

In [None]:
opt = SGD(lr=0.001, momentum=0.9)
model.compile(optimizer=opt, loss='categorical_crossentropy', metrics=['accuracy'])
datagen = ImageDataGenerator(width_shift_range=0.1, height_shift_range=0.1, horizontal_flip=True)
it_train = datagen.flow(x_train_noise, rLabels, batch_size=64)
steps = int(x_train.shape[0] / 64)
history = model_steal.fit_generator(it_train, steps_per_epoch=steps, epochs=200, validation_data=(x_test, y_test), verbose=1)

In [None]:
import numpy as np

actual_stolen = []

for i in range(len(X_test)):
  test_image =np.expand_dims(X_test[i], axis =0) 
  result = model_steal.predict(test_image).argmax() 
  if result==0: 
      actual_stolen.append("Aeroplane") 
  elif result==1: 
      actual_stolen.append('Automobile') 
  elif result==2: 
      actual_stolen.append('Bird') 
  elif result==3: 
      actual_stolen.append('Cat') 
  elif result==4: 
      actual_stolen.append('Deer') 
  elif result==5: 
      actual_stolen.append('Dog') 
  elif result==6: 
      actual_stolen.append('Frog') 
  elif result==7: 
      actual_stolen.append('Horse') 
  elif result==8: 
      actual_stolen.append('Ship') 
  elif result==9: 
      actual_stolen.append('Truck') 




print(actual_stolen,y_test[0])

In [None]:
import pandas as pd
import seaborn as sn
import matplotlib.pyplot as plt

data = {'y_Actual':    actual,
        'y_Predicted': predicted
        }

df = pd.DataFrame(data, columns=['y_Actual','y_Predicted'])
confusion_matrix = pd.crosstab(df['y_Actual'], df['y_Predicted'], rownames=['Actual'], colnames=['Predicted'])

fig, ax = plt.subplots(figsize=(10,10))  
sn.heatmap(confusion_matrix, annot=True, linewidths=1.5)
plt.show()

In [None]:
from sklearn.metrics import classification_report
target_names = ['Aeroplane', 'Automobile', 'Bird','Cat','Deer','Dog', 'Frog','Horse', 'Ship', 'Truck']
print(classification_report(actual, predicted, target_names=target_names))

In [None]:
from keras.models import load_model 
model.save('cifar-10_stolen_model.h5')

In [None]:
import tensorflow as tf

converter = tf.lite.TFLiteConverter.from_keras_model(model)
tflite_model = converter.convert()

# Save the model.
with open('cifar-10_stolenl_model.tflite', 'wb') as f:
  f.write(tflite_model)