# Welcome to the AIShield Integration Notebook!

**We are delighted to have you here!**

## What to Expect !!
This notebook serves as a comprehensive demonstration of the seamless integration capabilities of AIShield. As a powerful tool for securing your AI/ML assets against adversarial threats, AIShield ensures the integrity and robustness of your models, preventing financial loss, protecting brand reputation, and mitigating the risk of intellectual property theft.

## What to Do !!
- **Explore the notebook** at your own pace to gain deep insights into the functionalities and features offered by AIShield.
- **Run the first code cell/block**, which includes **Support functionalities** crucial for the smooth execution of the notebook. This setup will enhance your experience and enable the seamless integration of AIShield.
- Even without running the entire notebook, you can get a glimpse of AIShield's capabilities and its approach to vulnerability assessments through sample scenarios.
- **Run the code cells** to witness firsthand how AIShield seamlessly integrates with your existing codebase, empowering you to protect your AI models against adversarial attacks.
- **Experiment and adapt the code** to suit your specific use cases, leveraging the flexibility and customization options provided by AIShield.
- Should you have any questions or require assistance, our dedicated [AIShield.Contact@bosch.com](mailto:AIShield.Contact@bosch.com) is just a click away.

## What You'll Get !!
Throughout this notebook, you'll find:
- Code snippets demonstrating step-by-step procedures for incorporating AIShield into your existing workflows, ensuring comprehensive protection against adversarial threats.
- Detailed guidance on the integration process, including any additional inputs required for thorough vulnerability analysis.
- A comprehensive threat-informed defense model, empowering you to understand the vulnerabilities in your AI models and undertake appropriate remediation measures.
- Report artifacts and a sample attack dataset, providing valuable insights into potential attack scenarios and assisting in devising robust defense strategies.
- In-depth explanations of defense remediation techniques, equipping you with the knowledge and tools to safeguard your AI assets effectively.

## <span style="color:teal">AIShield Website and LinkedIn</span>
To learn more about AIShield and its cutting-edge features, visit the official [AIShield website](https://www.boschaishield.com/). Connect with AIShield on [LinkedIn](https://www.linkedin.com/company/bosch-aishield/about/) to stay updated on the latest advancements in AI security.

We hope this notebook empowers you to seamlessly integrate AIShield into your projects, ensuring the utmost protection for your AI/ML assets. If you have any questions or need further assistance, please don't hesitate to reach out. **Happy exploring!**


<a target="_blank" href="https://colab.research.google.com/github/bosch-aisecurity-aishield/Reference-Implementations/blob/main/Product_Taskpair_wise/Image_Classification_UseModelApi/Image_Classification_Extraction.ipynb">
  <img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/>
</a>


## 1.0 Support Functionalities:

In [1]:
"""
Description: if you want to do the vulnerability analysis through the hosted endpoint
             then mark it as yes or else mark it as no
"""

use_model_api = "yes"

In [2]:
def make_code_input_scrollable():
    """Description : To make the input code cell scrollable for jupyternotebook"""
    from IPython.display import display, HTML
    display(HTML('''
        <style>
        .scrollable-code-input {
            max-height: 500px;
            overflow-y: scroll;
        }
        </style>
        <script>
        var codeInputCells = document.querySelectorAll('div.code_cell .input');
        codeInputCells.forEach(function(cell) {
            cell.classList.add('scrollable-code-input');
        });
        </script>
    '''))

def display_pdf(runtime_environment,output_filename, pdf_path=None, file_id=None):

    """Descrption : To embeded pdf file in the ntoebook"""

    from IPython.display import display, HTML
    import os
    output_file = output_filename+'.html'

    # Check if the output file exists
    if os.path.exists(output_file):
        with open(output_file, 'r') as f:
            saved_output = f.read()
            display(HTML(saved_output))
    else:
        if 'colab' in runtime_environment.lower():
            # Generate the Google Drive Viewer URL
            if file_id is None:
                print(pdf_path)
                # Generate the Google Drive Viewer URL
                drive_viewer_url = f'https://drive.google.com/viewerng/viewer?embedded=true&url={pdf_path}'
                html_code = f'<iframe src="{drive_viewer_url}" width="100%" height="600px"></iframe>'
            else:
                viewer_url = f"https://drive.google.com/file/d/{file_id}/preview"
                html_code = f'<iframe src="{viewer_url}" width="100%" height="600px"></iframe>'
        else:
            html_code = f'<embed src="{pdf_path}" width="100%" height="600px" type="application/pdf">'
        # Save the output to a file
        with open(output_file, 'w') as f:
            f.write(html_code)

        # Display the output
        display(HTML(html_code))


def check_runtime_environment():
    """
    Description : Check notebook is running on colab or jupyter-notebook
    """
    import os
    colab = False
    if 'google.colab' in str(get_ipython()):
        colab = True
        return 'Colab' , colab
    else:
        return 'Jupyter Notebook' , colab

# Check the runtime environment
runtime_environment,colab_running  = check_runtime_environment()

print("Notebook is running in", runtime_environment)

make_code_input_scrollable()




Notebook is running in Jupyter Notebook



<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/wk1.png"/>

## 2.0 Below code cell/block performs Step 1 to 4 with following these sequential steps :
**STEP 1 : Installing libraries:** The required libraries will be installed to provide necessary functionalities for the task at hand.

**STEP 2 : Loading the dataset:** The dataset containing the relevant information will be loaded into the program, allowing access to the data for analysis and modeling.

**STEP 3 : Model development and training:** A sophisticated model will be developed to analyze and interpret the dataset. The model will then be trained using appropriate techniques to optimize its performance.

**STEP 4 : Preparing the Data, Model, and Label:** Prior to further analysis, essential steps such as data preprocessing, model configuration, and label preparation will be carried out. This will ensure that the data, model, and labels are properly structured and ready for subsequent stages needed for aishield.



In [2]:
#@title Show/Hide Code
'''
Descri`aption: user input about dataset information, for eg: number of classes, input_shape
'''

img_row,img_col,channel=28,28,1
num_classes=10
epochs = 1
batch_size= 64
input_shape=(img_row,img_col,channel)
model_encryption=0 #0 if model is uploaded directly as a zip, 1 if model is encryted as .pyc and uploaded as a zip
Normalized =  'yes'
run_code = True
install = True #to install the prerequisite libraries or not


## installing libraries if not and then importing
if install:
    print("Started of installing all the prerequisites packages")
    !pip install numpy==1.22
    !pip install humanfriendly==9.2
    !pip install tqdm==4.61.1
    !pip install requests==2.28.0
    !pip install pandas

    print("Starting installing aishield library")
    !pip install aishield
    print("Installed all the prerequisites packages")

else:
    print("Skipped the installation of all the prerequisites packages")


import os
import cv2
import json
import time
import tqdm
import shutil
import random
import zipfile
import requests
import numpy as np
import pandas as pd
from time import sleep

import aishield as ais


def download_artifacts(url):
    """
    Description :
    This function will download the dataset from the given file_path
    parameter:

        input:
        file_path : url of the dataset from where need to download the dataset

        output: None
    """
    file_path = os.path.basename(url)

    # Download the file
    response = requests.get(url)
    with open(file_path, 'wb') as f:
        f.write(response.content)

#extract content from the nested zip file
def extract_zip(zip_file_path, extract_to_folder):

    """
    Description :
    This function will extract the zipped file to a given destination folder

        input:
        zip_file_path : download zipped file path
        extract_to_folder: destination folder to extract the content of zipped files

        output: None
    """
    with zipfile.ZipFile(zip_file_path, 'r') as zip_ref:
        # Extract all contents into the target folder
        zip_ref.extractall(extract_to_folder)
    zip_ref.close()



def download_extract_artifcats(download_url, zipped_file_path, destination_path):

    """
    Description :
    This function will trigger the download and extraction function one by one

        input:
        download_url: url from where content need to be downloaded
        zip_file_path : download zipped file path
        destination_path: destination folder to extract the content of zipped files

        output: None
    """

    # download the artifcats from the given url
    try:
        download_artifacts(download_url)
        # extract the zipped artifacts in to given destination folder
        extract_zip(zipped_file_path, destination_path)

    except Exception as e:
        print("Download / Extraction of artifacts failed {}".format(str(e)))

def make_directory(directory):
    """
    Create directory

    Parameters
    ----------
    directorys : list containing the directory's path to create

    Returns
    -------
    None.

    """
    for d in directory:
        if os.path.isdir(d):
            print("directory {} already exist".format(d))
        if os.path.isdir(d)==False:
            os.mkdir(path=d)
            print("directory {} created successfully".format(d))

def delete_directory(directorys):
    """
    Delete directory

    Parameters
    ----------
    directorys : list containing the directory's path to delete along with all the files

    Returns
    -------
    None.

    """
    if len(directorys)>=1:
        for d in directorys:
            if os.path.isdir(d):
                try:
                    if os.path.isfile(d):
                        os.remove(path=d)
                    else:
                        shutil.rmtree(path=d)
                        print("Removed: {}".format(d))
                except:
                    print("Failed to removed: {}".format(d))
            else:
                print("Failed to removed: {}".format(d))

def make_archive(base_name,root_dir,zip_format='zip'):
    """
    Creates zip for given folder

    Parameters
    ----------
    base_name : name of zip file
    root_dir : directory to archive/zip
    zip_format : zip or tar
        DESCRIPTION. The default is 'zip'.

    Returns
    -------
    None.

    """
    shutil.make_archive(base_name=base_name, format=zip_format, root_dir=root_dir)


def create_folders():
    '''
        Descrption: this will remove(if present previously) and create folders needed
                    to store the data , model and label for ease access

        input_parameters: None
        return_parameters: returns the path of the data , model , label , report, zip directory
    '''

    data_path=os.path.join(os.getcwd(),"data")
    label_path=os.path.join(os.getcwd(),"label")

    report_path=os.path.join(os.getcwd(),"reports")
    sample_data = os.path.join(report_path, "sample_data")
    #Create Zip Path which contains data , model and label zip files
    zip_path=os.path.join(os.getcwd(),"zip")

    #deleting previously generated folders
    delete_directory(directorys=[data_path,label_path,report_path,zip_path, sample_data])

    #creating folders
    make_directory([data_path,label_path,report_path,zip_path, sample_data])

    return data_path,label_path,report_path, zip_path, sample_data

if __name__ == "__main__":

    import tqdm
    from time import sleep

    user_workflow = {
                 '1' : 'Download the Dataset',
                 '2' : 'Model Development',
                 '3' : 'Preparing Data, Model as per AIShield pre-requisite',
                 '4' : 'AIShield API Call'

           }

    if run_code:
        steps_tqdm = tqdm.tqdm(range(1,len(user_workflow)+1))
        data_path, label_path,report_path, zip_path, sample_data = create_folders()
        for step in steps_tqdm:

            # if step == 1 :
            #     steps_tqdm.set_description(user_workflow[str(step)])

            if step == 1 :
                steps_tqdm.set_description(user_workflow[str(step)])
                steps_tqdm.set_description(user_workflow[str(step)])
                print("Downloading of the Data Started")
                data_url = "https://aisdocs.blob.core.windows.net/reference/upload/Text/TextClassification/IMDB_Dataset.zip"
                download_extract_artifcats(data_url, os.path.basename(data_url), os.path.basename(data_path))
                print("Data downloaded succesfully")


            elif step == 2:
                
                steps_tqdm.set_description(user_workflow[str(step)])
                print("Downloading of the Label file Started")
                label_url = "https://aisdocs.blob.core.windows.net/reference/upload/Text/TextClassification/nlp_model.zip"
                download_extract_artifcats(label_url, os.path.basename(label_url), os.path.basename(label_path))
                print("Label file downloaded succesfully")

            elif step == 3:
                steps_tqdm.set_description(user_workflow[str(step)])

                #Zip Data
                make_archive(base_name=os.path.join(zip_path,"data"),root_dir=data_path,zip_format='zip')

                #Zip Model
                make_archive(base_name=os.path.join(zip_path,"label"),root_dir=label_path,zip_format='zip')

            elif step == 4:
                steps_tqdm.set_description(user_workflow[str(step)])
                print("Below Cells will see How to integrate and Call AIShield for Vulnerability Analysis")
                break

            sleep(1)



Started of installing all the prerequisites packages
Collecting numpy==1.22
  Downloading numpy-1.22.0-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (16.8 MB)
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m16.8/16.8 MB[0m [31m70.3 MB/s[0m eta [36m0:00:00[0m
[?25hInstalling collected packages: numpy
  Attempting uninstall: numpy
    Found existing installation: numpy 1.23.5
    Uninstalling numpy-1.23.5:
      Successfully uninstalled numpy-1.23.5
[31mERROR: pip's dependency resolver does not currently take into account all the packages that are installed. This behaviour is the source of the following dependency conflicts.
lida 0.0.10 requires fastapi, which is not installed.
lida 0.0.10 requires kaleido, which is not installed.
lida 0.0.10 requires python-multipart, which is not installed.
lida 0.0.10 requires uvicorn, which is not installed.
librosa 0.10.1 requires numpy!=1.22.0,!=1.22.1,!=1.22.2,>=1.20.3, but you have numpy 1.22.0 which is incompa

Collecting matplotlib==3.3.4
  Downloading matplotlib-3.3.4.tar.gz (37.9 MB)
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m37.9/37.9 MB[0m [31m26.5 MB/s[0m eta [36m0:00:00[0m
[?25h  Preparing metadata (setup.py) ... [?25l[?25hdone
Building wheels for collected packages: matplotlib
  Building wheel for matplotlib (setup.py) ... [?25l[?25hdone
  Created wheel for matplotlib: filename=matplotlib-3.3.4-cp310-cp310-linux_x86_64.whl size=11684758 sha256=624726cf74c8bbe906d379bc625344403560ab926933b712a09b98eb01e4e977
  Stored in directory: /root/.cache/pip/wheels/38/c6/49/eaba6d234887d98d9c85185e2a90bd7bb77934e85eefaf317e
Successfully built matplotlib
Installing collected packages: matplotlib
  Attempting uninstall: matplotlib
    Found existing installation: matplotlib 3.7.1
    Uninstalling matplotlib-3.7.1:
      Successfully uninstalled matplotlib-3.7.1
[31mERROR: pip's dependency resolver does not currently take into account all the packages that are install

Collecting tensorflow-gpu==2.9.1
  Downloading tensorflow_gpu-2.9.1-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (511.7 MB)
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m511.7/511.7 MB[0m [31m2.8 MB/s[0m eta [36m0:00:00[0m
Collecting flatbuffers<2,>=1.12 (from tensorflow-gpu==2.9.1)
  Downloading flatbuffers-1.12-py2.py3-none-any.whl (15 kB)
Collecting gast<=0.4.0,>=0.2.1 (from tensorflow-gpu==2.9.1)
  Downloading gast-0.4.0-py3-none-any.whl (9.8 kB)
Collecting keras<2.10.0,>=2.9.0rc0 (from tensorflow-gpu==2.9.1)
  Downloading keras-2.9.0-py2.py3-none-any.whl (1.6 MB)
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m1.6/1.6 MB[0m [31m76.8 MB/s[0m eta [36m0:00:00[0m
[?25hCollecting keras-preprocessing>=1.1.1 (from tensorflow-gpu==2.9.1)
  Downloading Keras_Preprocessing-1.1.2-py2.py3-none-any.whl (42 kB)
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m42.6/42.6 kB[0m [31m6.8 MB/s[0m eta [36m0:00:00[0m
Collect

Collecting scikit-learn==1.0.2
  Downloading scikit_learn-1.0.2-cp310-cp310-manylinux_2_17_x86_64.manylinux2014_x86_64.whl (26.5 MB)
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m26.5/26.5 MB[0m [31m63.6 MB/s[0m eta [36m0:00:00[0m
Installing collected packages: scikit-learn
  Attempting uninstall: scikit-learn
    Found existing installation: scikit-learn 1.2.2
    Uninstalling scikit-learn-1.2.2:
      Successfully uninstalled scikit-learn-1.2.2
[31mERROR: pip's dependency resolver does not currently take into account all the packages that are installed. This behaviour is the source of the following dependency conflicts.
bigframes 0.13.0 requires scikit-learn>=1.2.2, but you have scikit-learn 1.0.2 which is incompatible.
librosa 0.10.1 requires numpy!=1.22.0,!=1.22.1,!=1.22.2,>=1.20.3, but you have numpy 1.22.0 which is incompatible.[0m[31m
[0mSuccessfully installed scikit-learn-1.0.2
Collecting humanfriendly==9.2
  Downloading humanfriendly-9.2-py2.py3-none

Loading the Dataset:   0%|          | 0/4 [00:00<?, ?it/s]

Downloading data from https://storage.googleapis.com/tensorflow/tf-keras-datasets/mnist.npz
Dataset Loaded


Model Development and Training:  25%|██▌       | 1/4 [00:02<00:08,  2.73s/it]

Failed to removed: /content/data
Failed to removed: /content/model
Failed to removed: /content/label
Failed to removed: /content/encrypt_model
Failed to removed: /content/reports
Failed to removed: /content/zip
Failed to removed: /content/reports/sample_data
directory /content/data created successfully
directory /content/model created successfully
directory /content/label created successfully
directory /content/reports created successfully
directory /content/encrypt_model created successfully
directory /content/zip created successfully
directory /content/reports/sample_data created successfully
Normalization of the inputdata being started
Normalization Done
Epoch 1: val_loss improved from inf to 0.04624, saving model to /content/model/mnist_model.h5
* Loss: 0.046242568641901016 
* Accuracy: 0.9847000241279602


Preparing Data, Model and Label:  50%|█████     | 2/4 [00:28<00:32, 16.32s/it]

Preparing and Saving Data and Label file Needed.


AIShield API Call:  75%|███████▌  | 3/4 [00:31<00:10, 10.45s/it]

Below Cells will see How to integrate and Call AIShield for Vulnerability Analysis





<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/wk2.png"/>

## 3.0 Vulnerability Analysis by AIShield

**STEP 5 :You can move to trigger the AIShield analysis by following steps given below. If you want to preview the generated artifact by vulnerability analysis like the report and dashboard, please find below a few samples of same, all without having to trigger an actual analysis.**

By examining these Reports, we can gain a comprehensive understanding of the upcoming Vulnerability Analysis conducted by AIShield, which will enable us to prepare more effectively.


<img src="https://aisdocs.blob.core.windows.net/reference/dashboard_images/Dashboard.png"/>

<img src="https://aisdocs.blob.core.windows.net/reference/dashboard_images/IC_MEA_Dashboard.png"/>

In [3]:
hosted_pdf_url = 'https://aisdocs.blob.core.windows.net/reference/Reports/Image/ImageClassification/MEA/VulnerabilityReport.pdf'
display_pdf( output_filename = "vul_sample",runtime_environment = runtime_environment,pdf_path =hosted_pdf_url)


#### Let's proceed with the step-by-step process of calling and integrating AIShield for Vulnerability Analysis:

1. **Initialize AIShield:** Ensure that AIShield is properly installed and its dependencies are set up. Also, initialize AIShield to prepare for the analysis.

2. **Model Registration:** Register the specific task pair (e.g. image_classification) and analysis type (e.g. Extraction / MEA) to perform the vulnerability analysis accurately.

3. **Upload Artifacts:** Upload the necessary artifacts that have been prepared previously in STEP 4 for analysis. These may include datasets, trained models, or any relevant files.

4. **Model Analysis:** Trigger the model analysis API to initiate the vulnerability analysis assessment. AIShield will perform the analysis using the uploaded artifacts.

5. **Monitor Analysis Status:** Keep track of the analysis progress and patiently wait for AIShield to generate the vulnerability assessment results. This may take some time depending on the complexity of the analysis.

6. **Download Reports & Artifacts:** Once the analysis is complete, access and download the vulnerability analysis reports and any additional artifacts generated by AIShield. Analyze these reports to gain insights into potential vulnerabilities in your system or application.

By following instructions, you can effectively call and integrate AIShield for Vulnerability Analysis.

<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/aw.png"/>

### 3.1 Initialize AIShield

In [31]:
"""
Description : AIShield URL , subscription key and orgid
              Initialize the
"""
base_url = "https://api.aws.boschaishield.com/prod"
url=base_url+"/api/ais/v1.5"
org_id = 'XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX' #<<Copy Org_id mentioned in welcome mail after AIShield Subscription>>

"""
Description: Initialize the AIShield API
"""

#if using AIShield API then , need an x-api-key for accessing AIShield registration / Analysis APIs
# below function will get insight of how to generate the x-api-key
def get_aws_api_key(url, org_id):

    """
    Description: to get the x_api_key
    """
    url = url+"/get_aws_api_key"
    headers = {'org_id': org_id}
    payload = {}

    x_api_key_request = requests.request("GET", url, headers=headers, data=payload)
    status_code = x_api_key_request.status_code
    x_api_key_request = json.loads(x_api_key_request.text)

    if status_code == 200:
        x_api_key = x_api_key_request['x_api_key']
        return x_api_key

    else:
        print(x_api_key_request)
        return None

#generate the x-api-key
x_api_key = get_aws_api_key(url, org_id)
print("x_api_key is :",x_api_key)

headers={'Cache-Control': 'no-cache',
'x-api-key': x_api_key,
'Org-Id' : org_id
}



<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/aw1.png"/>

### 3.2 Model Registration

In [4]:
"""
Description: Define the task and analysis type for model registration
              "task_type" : refers to the specific type of task being performed, for eg : "image_classification."
              "analysis_type" : refers to the specific type of analysis being performed,for eg : "extraction.
              For more information, check out [https://docs.boschaishield.com/api-docs/lesspostgreater-model-registration#-a-xGGsdVJB3d09cBAck-]
"""

"""
Description: call Model registration api to get unique model it and url to upload data, model and label
"""
model_registration_url = url + "/model_registration/upload"

model_registration_payload = {
    'task_type':"ASR",
    "analysis_type": "evasion"
}

try:
    new_request = requests.request(method="POST", url=model_registration_url, headers=headers, json=model_registration_payload)
    new_request = json.loads(new_request.text)
    print(new_request)
    model_id = new_request['data']['model_id']
    data_upload_obj = new_request['data']['urls']['data_upload_url']
    label_upload_obj = new_request['data']['urls']['label_upload_url']
    print('model_id: ', model_id)

except Exception as e:
    print(new_request, str(e))

<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/aw2.png"/>

### 3.3 Upload input artifacts

In [9]:
"""
Description: Full File paths and upload input artifacts
"""
zip_path = 'zip/'
data_path=os.path.join(zip_path,'data.zip') #full path of data zip
label_path=os.path.join(zip_path,'label.zip') #full path of label zip

def upload_file(upload_obj, file_path):

    url = upload_obj['url']
    request_payload = upload_obj['fields']
    files=[
              ('file',(os.path.basename(file_path),open(file_path,'rb'),'application/zip'))
            ]

    headers = {}
    new_request = requests.request("POST", url, headers=headers, data=request_payload, files=files)
    status_cd = new_request.status_code
    if status_cd == 204:
        status = 'upload sucessful'
    else:
        status = 'upload failed'
    return status

"""
Description: Hit AIShield File Upload API
"""
data_upload_status = upload_file(data_upload_obj, data_path)
label_upload_status = upload_file(label_upload_obj, label_path)
if use_model_api.lower() == "no":
    model_upload_status = upload_file(model_upload_obj, model_path)
    print('model_upload_status: ', model_upload_status)
print('data_upload_status: ', data_upload_status)
print('label_upload_status: ', label_upload_status)



data_upload_status:  upload sucessful
label_upload_status:  upload sucessful


<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/aw3.png"/>

### 3.4 Model Analysis

In [2]:
"""
Description : if use_model_api is yes , 
                Needed model_hosted_endpoint_url and other info like is_ssl_cert
                is_ssl_cert : by default value is yes if hosted with certification
                              or else mark as no 
            or else , can skip the below three cell
"""

# model hosted endpoint url
model_hosted_endpoint_url = "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" # <<Replace XXXXXXXXXXX with endpoint url>>

#by default value is yes , mark it no if model is not being hosted with ssl cert on 
is_ssl_cert = "yes"

# if ssl cert is on , read the cert content
# Provide the SSL certificate content required to access the model endpoint through HTTPS,
# formatted as a string. You can open the pem file in any editor(e.g. notepad) and copy the contents and past in this field.
if is_ssl_cert.lower() == "yes":
    f = open("XXXXXXXXXXXX.crt", "r") # <<Replace XXXXXXXXXXXXXXXXX.crt with the path of the crt file>>
    cert_pem_contents = f.read()
else:
    cert_pem_contents= ""


In [3]:
"""
Description : if use_model_api is yes ,Additionally Below information also needed to access the endpoint for vulnerability analysis
                i.e : accept_datatype , input_key , response_key , cert_pem_contents if needed
"""

# For querying the endpoint, we accept the following keys: 'array', 'base64', and 'file'.
# The data can be in the format of an n-dim-array(np.array), base64, or file, which the deployed endpoint uses for inference
accept_datatype = "array"

# Specify the key name in the request payload from which the API retrieves input data for inference or prediction.
# For instance, a model payload might look like: {"query": "[0.123,0.23,0.45]"}. Here "query" is the input_key.
input_key = "XXXXXXXXX"  # <<replace XXXXXXXXX with the actual input_key>>

# Specify the key name in the response payload where the inference or predicted results can be found.
# For example, a model response might be: {"results": "[1,2,8,9]", "status": "success"}. Here, "results" is the response_key
response_key = "XXXXXXXXX" # <<replace XXXXXXXXX with the actual response_key>>

In [4]:
"""
Description : This function will create an encrypted format of your given endpoint and that will need to pass for vulnerability
                Analysis to AIShield . 

"""
def generate_encrypted_enpoint(payload):

    """
        Description: this fucntion will generate a encrypted endpoint string with respect to the given org id and
                     given info required to access the endpoint ,for ease access for the vulnerability analysis

        Input_parameter :
                  payload : dict : the necessary parameters to acess the endpoint as an dictionary format

        return_parameter :
                  encrypted_endpoint : str
    """

    aishield_encrypt_url = "https://api.aws.boschaishield.com/enc/api/ais/AIShieldModelEndpointEncryption/EncryptionService"
    encrypted_endpoint = ""
    try:
        enc_request = requests.request(method="POST", url=aishield_encrypt_url, json=payload)
        enc_request = json.loads(enc_request.text)
        encrypted_endpoint = enc_request['model_api_details_encrypted_string']
        print("model_api_details_encrypted_string : ",  encrypted_endpoint)

    except Exception as e:
        print("Failed to encrypt the endpoint , please check the payload or contact AIShield ", enc_request, str(e))

    return encrypted_endpoint

'\nDescription : This function will create an encrypted format of your given endpoint and that will need to pass for vulnerability\n                Analysis to AIShield . \n\n'

In [7]:
"""
Description : Call the generate_encrypted_enpoint fucntion to generate the encrypted endpoint string for further use 
              in vulnerability analysis

"""

if use_model_api.lower() == "yes":
    
    payload = {"org_id" : org_id,
                "url" : model_hosted_endpoint_url,
                "accept_datatype": accept_datatype,
                "input_key" : input_key,
                "response_key": response_key,
                "cert_pem_contents": cert_pem_contents}


    # Call the generate_encrypted_enpoint fucntion to generate the encrypted endpoint string
    encrypted_endpoint = generate_encrypted_enpoint(payload=payload)


In [6]:
"""
Description: Specify the appropriate configs required for vulnerability analysis and trigger model analysis
"""

"""
Description: Payload for AIShield VulnerabilityReport api call
"""
payload={}
payload['use_model_api']=use_model_api

if use_model_api.lower() == "yes":
    payload['model_api_details']=encrypted_endpoint

else:
    payload['model_api_details']="no"

payload['normalize_data']="Yes"
payload['input_dimensions']=str(input_shape)
payload['number_of_classes']=str(num_classes)
payload['attack_type']="blackbox"
payload['number_of_attack_queries']=6000
payload['model_framework']='tensorflow'
payload['vulnerability_threshold']="0"
payload['defense_bestonly']="no"
payload['encryption_strategy']= model_encryption

"""
Description: Hit AIShield VulnerabilityReport api
"""
model_analysis_url = url + "/model_analyse/{}".format(model_id)
if data_upload_status == "upload sucessful" and label_upload_status == "upload sucessful":
    new_request = requests.request(method="POST", url=model_analysis_url, json=payload,headers=headers)
    new_request=json.loads(new_request.text)
    for k, v in new_request.items():
        print("* {} : {}".format(k,v))

#     print(new_request)
    job_id=new_request['job_id']


'\nDescription: Specify the appropriate configs required for vulnerability analysis and trigger model analysis\n'

<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/aw4.png"/>

### 3.5 Monitor Analysis Status

In [20]:
"""
Description: Fetch Job status using Job ID
"""

def monitor_api_progress(new_job_id):
    job_status_url = url + "/job_status_detailed?job_id=" + new_job_id

    # status dictionary
    status_dictionary = {
        'ModelExploration_Status': 'na',
        'SanityCheck_Status': 'na',
        'QueryGenerator_Status': 'na',
        'VunerabilityEngine_Status': 'na',
        'DefenseReport_Status': 'na',
    }
    counts = [0] * len(status_dictionary)
    failed_api_hit_count = 0
    while True:
        time.sleep(2)
        try:
            job_status_response = requests.request("GET", job_status_url, params={},
                                                   headers=headers)

            job_status_payload = json.loads(job_status_response.text)
            failing_key = 'ModelExploration_Status'
            for i, key in enumerate(status_dictionary.keys()):
                if status_dictionary[key] == 'na':
                    if job_status_payload[key] == 'inprogress' and status_dictionary[key] == 'na':
                        status_dictionary[key] = job_status_payload[key]
                        print(str(key), ":", status_dictionary[key])

                    elif job_status_payload[key] == 'completed' or job_status_payload[key] == 'passed':
                        status_dictionary[key] = job_status_payload[key]
                        counts[i] += 1
                        print(str(key), ":", status_dictionary[key])

                    if job_status_payload[key] == 'failed':
                        failing_key = key
                        status_dictionary[key] = job_status_payload[key]
                        print(str(key), ":", status_dictionary[key])

                elif job_status_payload[key] == 'completed' or job_status_payload[key] == 'passed':
                    status_dictionary[key] = job_status_payload[key]
                    if counts[i] < 1:
                        print(str(key), ":", status_dictionary[key])
                    counts[i] += 1

                else:
                    if job_status_payload[key] == 'failed':
                        failing_key = key
                        status_dictionary[key] = job_status_payload[key]
                        print(str(key), ":", status_dictionary[key])

            if job_status_payload[failing_key] == 'failed':
                break

            if status_dictionary['VunerabilityEngine_Status'] == 'passed' or status_dictionary[
                'VunerabilityEngine_Status'] == 'completed' and job_status_payload[
                'CurrentStatus'] == "Defense generation is not triggered":
                print("\n Vulnerability score {} failed to cross vulnerability threshold of {}".format(
                    job_status_payload['VulnerabiltyScore'], payload['vulnerability_threshold']))
                break
            if job_status_payload['DefenseReport_Status'] == 'completed':
                break
        except Exception as e:
            failed_api_hit_count += 1
            print("Error {}. trying {} ...".format(str(e), failed_api_hit_count))
            if failed_api_hit_count >= 3:
                break
    return status_dictionary

status_dictionary = monitor_api_progress(new_job_id=job_id)

ModelExploration_Status : inprogress
ModelExploration_Status : completed
SanityCheck_Status : passed
QueryGenerator_Status : inprogress
QueryGenerator_Status : completed
VunerabilityEngine_Status : inprogress
VunerabilityEngine_Status : completed
DefenseReport_Status : inprogress
DefenseReport_Status : completed


<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/aw5.png"/>

### 3.6 Download Reports and artifacts

In [21]:
report_path = "reports/"

In [22]:
def download_artifact(job_id, report_path, report_type='Vulnerability', file_format=0):
    """
    job_id: job_id  received after successful api call
    report_type: report to be downloaded
    file_format: change file_format to : 0- all report in zip
                        1- report in .txt
                        2- report in .pdf
                        3- report in .json
                        4- report in .xml
    """
    print("received report_type : {} and file format is: {}".format(report_type, file_format))
    report_url = url + "/" + "get_report?job_id=" + str(
        job_id) + "&report_type=" + report_type + "&file_format=" + str(file_format)

    headers1 = headers
    headers1["content-type"] = "application/zip"

    response = requests.request("GET", report_url, params={}, headers=headers1)

    file_path = None
    if file_format == 0 or file_format == "Attack_samples":
        file_path=os.path.join(report_path, report_type + ".zip")
        with open(file_path, 'wb') as f:
            f.write(response.content)

    elif file_format == 1:
        file_path=os.path.join(report_path, report_type + ".txt")
        with open(file_path, 'wb') as f:
            f.write(response.content)

    elif file_format == 2:
        file_path=os.path.join(report_path, report_type + ".pdf")
        with open(file_path, 'wb') as f:
            f.write(response.content)

    elif file_format == 3:
        file_path=os.path.join(report_path, report_type + ".json")
        with open(file_path, 'wb') as f:
            f.write(response.content)

    elif file_format == 4:
        file_path=os.path.join(report_path, report_type + ".xml")
        with open(file_path, 'wb') as f:
            f.write(response.content)

    return file_path

In [23]:
"""
Description: Download the Defense Reports
"""
vul_report = download_artifact(job_id=job_id, report_path= report_path, report_type='Vulnerability', file_format=2)

received report_type : Vulnerability and file format is: 2


In [24]:
"""
Description: Download the Defense Reports
"""
def_report = download_artifact(job_id=job_id, report_path= report_path, report_type='Defense', file_format=2)

received report_type : Defense and file format is: 2


In [25]:
"""
Description: Download the Defense artifacts: Model
"""
def_artifact_report = download_artifact(job_id=job_id, report_path= report_path, report_type='Defense_artifact', file_format=0)

received report_type : Defense_artifact and file format is: 0


In [26]:
"""
Description: Download the Attack Samples
"""

attack_report = download_artifact(job_id=job_id, report_path= report_path, report_type='Attack_samples', file_format=0)

received report_type : Attack_samples and file format is: 0


In [28]:

def get_file_id(report_path):

    file_id = None
    !pip install --upgrade google-api-python-client google-auth-httplib2 google-auth-oauthlib

    import os
    from googleapiclient.discovery import build
    from googleapiclient.http import MediaFileUpload

    # Authenticate and authorize access to the Google Drive API
    from google.colab import auth
    auth.authenticate_user()

    # Build the Drive API service
    drive_service = build('drive', 'v3')

    # Upload the PDF file to Google Drive
    pdf_file_name = os.path.basename(report_path)
    file_metadata = {'name': pdf_file_name}
    media = MediaFileUpload(report_path, mimetype='application/pdf')
    file = drive_service.files().create(body=file_metadata, media_body=media, fields='id').execute()

    # Set sharing permissions to "Anyone with the link"
    file_id = file.get('id')
    drive_service.permissions().create(
        fileId=file_id,
        body={'role': 'reader', 'type': 'anyone'}
    ).execute()

    return file_id

In [29]:
"""
Description: Displaying the current Vulnerability Assement report
"""

if ("colab" in runtime_environment.lower()):
    file_id = get_file_id(report_path = vul_report)
    display_pdf(output_filename = "vul_"+job_id[-10:],runtime_environment=runtime_environment,file_id=file_id)
else:
    display_pdf(output_filename = "vul_"+job_id[-10:],runtime_environment=runtime_environment, pdf_path =os.path.join(report_path, os.path.basename(vul_report)))

Collecting google-api-python-client
  Downloading google_api_python_client-2.108.0-py2.py3-none-any.whl (12.8 MB)
[2K     [90m━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━[0m [32m12.8/12.8 MB[0m [31m50.6 MB/s[0m eta [36m0:00:00[0m
Collecting google-auth-oauthlib
  Downloading google_auth_oauthlib-1.1.0-py2.py3-none-any.whl (19 kB)
Installing collected packages: google-auth-oauthlib, google-api-python-client
  Attempting uninstall: google-auth-oauthlib
    Found existing installation: google-auth-oauthlib 0.4.6
    Uninstalling google-auth-oauthlib-0.4.6:
      Successfully uninstalled google-auth-oauthlib-0.4.6
  Attempting uninstall: google-api-python-client
    Found existing installation: google-api-python-client 2.84.0
    Uninstalling google-api-python-client-2.84.0:
      Successfully uninstalled google-api-python-client-2.84.0
[31mERROR: pip's dependency resolver does not currently take into account all the packages that are installed. This behaviour is the source of the fo



In [30]:
"""
Description: Displaying the current Defense Assement report
"""

if ("colab" in runtime_environment.lower()):
    file_id = get_file_id(report_path = def_report)
    display_pdf(output_filename = "Defense_"+job_id[-10:],runtime_environment=runtime_environment,file_id=file_id)
else:
    display_pdf(output_filename = "Defense_"+job_id[-10:],runtime_environment=runtime_environment, pdf_path =os.path.join(report_path, os.path.basename(def_report)))



<img src="https://aisdocs.blob.core.windows.net/reference/Workflow Images/aw6.png"/>

### After conducting a Vulnerability Analysis by AIshield, if a defense recommendation is identified, then following actions can be taken:

1. **Model Retraining:** It is advised to retrain the original model to enhance its robustness. By revisiting the training process and incorporating the insights gained from the vulnerability analysis, the model can be improved to better handle potential threats and mitigate vulnerabilities.


2. **Deploying Threat-Informed Defense Model:** In addition to the original model, AIshield provides a specialized defense model that is specifically designed to address the identified threats. This threat-informed defense model can be deployed alongside the original model to provide an additional layer of protection and enhance the overall security posture. By leveraging the insights gained from the vulnerability analysis, the defense model offers targeted defenses against potential threats.