Skip to content

Breaking High-level representation Guided Denoiser (Liao et al. 2018)

Notifications You must be signed in to change notification settings

anishathalye/Guided-Denoise

 
 

Repository files navigation

Guided-Denoise

The code in this repository demonstrates that Defense against Adversarial Attacks Using High-Level Representation Guided Denoiser (Liao et al. 2018) is ineffective in the white-box threat model.

With an L-infinity perturbation of 4/255, we generate targeted adversarial examples with 100% success rate.

See our note for more context and details: https://arxiv.org/abs/1804.03286

Pretty pictures

Obligatory picture of sample of adversarial examples against this defense.

Citation

@unpublished{cvpr2018breaks,
  author = {Anish Athalye and Nicholas Carlini},
  title = {On the Robustness of the CVPR 2018 White-Box Adversarial Example Defenses},
  year = {2018},
  url = {https://arxiv.org/abs/1804.03286},
}

robustml evaluation

Run with:

cd nips_deploy
python robustml_attack.py --imagenet-path <path>

Credits

Thanks to Dimitris Tsipras for writing the robustml model wrapper.

About

Breaking High-level representation Guided Denoiser (Liao et al. 2018)

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages

  • Python 99.4%
  • Other 0.6%