Skip to content
master
Switch branches/tags
Code
This branch is 15 commits ahead of lfz:master.
Contribute
Fetch upstream

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Guided-Denoise

The code in this repository demonstrates that Defense against Adversarial Attacks Using High-Level Representation Guided Denoiser (Liao et al. 2018) is ineffective in the white-box threat model.

With an L-infinity perturbation of 4/255, we generate targeted adversarial examples with 100% success rate.

See our note for more context and details: https://arxiv.org/abs/1804.03286

Pretty pictures

Obligatory picture of sample of adversarial examples against this defense.

Citation

@unpublished{cvpr2018breaks,
  author = {Anish Athalye and Nicholas Carlini},
  title = {On the Robustness of the CVPR 2018 White-Box Adversarial Example Defenses},
  year = {2018},
  url = {https://arxiv.org/abs/1804.03286},
}

robustml evaluation

Run with:

cd nips_deploy
python robustml_attack.py --imagenet-path <path>

Credits

Thanks to Dimitris Tsipras for writing the robustml model wrapper.

About

Breaking High-level representation Guided Denoiser (Liao et al. 2018)

Resources

Releases

No releases published

Packages

No packages published

Languages