<a href="https://colab.research.google.com/github/karankishinani/Training-MNIST-using-Differential-Privacy-and-PATE-Analysis/blob/master/PATE_Analysis.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# Private Aggregation of Teacher Ensembles (PATE)

![alt text](https://drive.google.com/uc?id=1fZMBYK1Jc6ULanSRQUI0mc4n5HOS5ZTI)

## Importing Libraries

In [1]:
!pip install syft
import torch
from torch.utils.data import Subset

from torchvision import datasets, transforms

import numpy as np

from syft.frameworks.torch.differential_privacy import pate



W0726 02:30:04.255912 139714447009664 secure_random.py:26] Falling back to insecure randomness since the required custom op could not be found for the installed version of TensorFlow. Fix this by compiling custom ops. Missing file was '/usr/local/lib/python3.6/dist-packages/tf_encrypted/operations/secure_random/secure_random_module_tf_1.14.0.so'
W0726 02:30:04.273415 139714447009664 deprecation_wrapper.py:119] From /usr/local/lib/python3.6/dist-packages/tf_encrypted/session.py:26: The name tf.Session is deprecated. Please use tf.compat.v1.Session instead.



## Loading the Dataset

In [0]:
# Define a transform to normalize the data
transform = transforms.Compose([transforms.ToTensor(),
                              transforms.Normalize((0.5,), (0.5,)),
                              ])

# Load the dataset
train_data = datasets.MNIST(root='./data', train=True, 
                                download=True, transform=transform)
test_data = datasets.MNIST(root='./data', train=False,
                                  download=True, transform=transform)

## Create Data Loaders for each teacher

In [0]:
num_teachers = 100 # we're working with x teachers
num_examples = len(train_data) // num_teachers # the size of each teacher's dataset
num_workers = 0 # number of subprocesses for data loading
batch_size = 64 # number of samples per batch

# Split the data among all teachers
teacher_loaders = []

for i in range(num_teachers):
    indices = list(range(i * num_examples, (i+1) * num_examples))
    data = Subset(train_data, indices)
    loader = torch.utils.data.DataLoader(data, batch_size=batch_size, num_workers=num_workers)
    teacher_loaders.append(loader)

## Create Student Training and Test Set

In [0]:
student_train_size = int(len(test_data) * 0.1) # 90% of data for training
student_test_size = int(len(test_data) * 0.1)  # 10% of data for testing

student_train_data = Subset(test_data, list(range(student_train_size)))
student_test_data = Subset(test_data, list(range(student_train_size, student_train_size + student_test_size)))

student_train_loader = torch.utils.data.DataLoader(student_train_data, batch_size=batch_size, num_workers=num_workers)
student_test_loader = torch.utils.data.DataLoader(student_test_data, batch_size=batch_size, num_workers=num_workers)

## Defining the Neural Network model

In [0]:
from torch import nn
from torch import optim
import torch.nn.functional as F

'''
class Net(nn.Module):
    def __init__(self):
        super(Net, self).__init__()
        self.fc1 = nn.Linear(784, 128)
        self.fc2 = nn.Linear(128, 64)
        self.fc3 = nn.Linear(64, 10)

    def forward(self, x):
        # make sure input tensor is flattened
        x = x.view(x.shape[0], -1)
        
        x = self.fc1(x)
        x = F.relu(x)
        x = self.fc2(x)
        x = F.relu(x)
        x = F.log_softmax(x, dim=1)
        return x
'''
      
class Net(nn.Module):
    def __init__(self):
        super(Net, self).__init__()
        self.conv1 = nn.Conv2d(1, 10, kernel_size=5)
        self.conv2 = nn.Conv2d(10, 20, kernel_size=5)
        self.conv2_drop = nn.Dropout2d()
        self.fc1 = nn.Linear(320, 50)
        self.fc2 = nn.Linear(50, 10)

    def forward(self, x):
        x = F.relu(F.max_pool2d(self.conv1(x), 2))
        x = F.relu(F.max_pool2d(self.conv2_drop(self.conv2(x)), 2))
        x = x.view(-1, 320)
        x = F.relu(self.fc1(x))
        x = F.dropout(x, training=self.training)
        x = self.fc2(x)
        return F.log_softmax(x)

In [0]:
device = torch.device("cuda:0" if torch.cuda.is_available() else "cpu")

def train(model, trainloader, criterion, optimizer, epochs=10):
    
    model.to(device)
    running_loss = 0
    
    for e in range(epochs):
        
        model.train()
        
        for images, labels in trainloader:
            images, labels = images.to(device), labels.to(device)

            # 1) erase previous gradients (if they exist)
            optimizer.zero_grad()

            # 2) make a prediction
            pred = model.forward(images)

            # 3) calculate how much we missed
            loss = criterion(pred, labels)

            # 4) figure out which weights caused us to miss
            loss.backward()

            # 5) change those weights
            optimizer.step()

            # 6) log our progress
            running_loss += loss.item()

In [0]:
def predict(model, dataloader):
    outputs = torch.zeros(0, dtype=torch.long).to(device)
    model.to(device)
    model.eval()
    for images, labels in dataloader:
        images, labels = images.to(device), labels.to(device)
        output = model.forward(images)
        ps = torch.argmax(torch.exp(output), dim=1)
        outputs = torch.cat((outputs, ps))
    
    return outputs

## Training the Teachers

In [0]:
teacher_models = []

for i in range(num_teachers):
    print("Training Teacher #", i+1)
    model = Net()
    criterion = nn.NLLLoss()
    optimizer = optim.Adam(model.parameters(), lr=0.001)
    train(model, teacher_loaders[i], criterion, optimizer)
    teacher_models.append(model)

Training Teacher # 1




Training Teacher # 2
Training Teacher # 3
Training Teacher # 4
Training Teacher # 5
Training Teacher # 6
Training Teacher # 7
Training Teacher # 8
Training Teacher # 9
Training Teacher # 10
Training Teacher # 11
Training Teacher # 12
Training Teacher # 13
Training Teacher # 14
Training Teacher # 15
Training Teacher # 16
Training Teacher # 17
Training Teacher # 18
Training Teacher # 19
Training Teacher # 20
Training Teacher # 21
Training Teacher # 22


## Aggregate Teacher
Make a prediction for each of the teacher's models, add noise, and return the majority vote

In [0]:
# Define epsilon
epsilon = 0.2

In [0]:
preds = torch.torch.zeros((len(teacher_models), student_train_size), dtype=torch.long)

for i, model in enumerate(teacher_models):
    results = predict(model, student_train_loader)
    preds[i] = results

labels = np.array([]).astype(int)
for image_preds in np.transpose(preds):
    label_counts = np.bincount(image_preds, minlength=10)
    beta = 1 / epsilon

    for i in range(len(label_counts)):
        label_counts[i] += np.random.laplace(0, beta, 1)

    new_label = np.argmax(label_counts)
    labels = np.append(labels, new_label)

In [0]:
PATE_labels = labels
PATE_preds = preds

print(preds.shape)
print(labels.shape)
print(preds)
print(labels)

## PATE Analysis

In [0]:

data_dep_eps, data_ind_eps = pate.perform_analysis(teacher_preds=PATE_preds, indices=PATE_labels, noise_eps=epsilon, delta=1e-5)
print("Data Independent Epsilon:", data_ind_eps)
print("Data Dependent Epsilon:", data_dep_eps)

## Training the Student

In [0]:
data = torch.FloatTensor(test_data.data.clone().detach().numpy()[:student_train_size])
targets = torch.tensor(labels)   

test_data.targets[:student_train_size] = targets


student_train_data = Subset(test_data, list(range(student_train_size)))
student_train_loader = torch.utils.data.DataLoader(student_train_data, batch_size=batch_size, num_workers=num_workers)

In [0]:
print(targets)

In [0]:
def train_student(model, train_loader, test_loader, criterion, optimizer, epochs=10):
    
    model.to(device)
    running_loss = 0
    steps = 0
    
    for e in range(epochs):
        
        model.train()
        
        for images, labels in train_loader:
            images, labels = images.to(device), labels.to(device)
            steps += 1
            
            # 1) erase previous gradients (if they exist)
            optimizer.zero_grad()

            # 2) make a prediction
            pred = model.forward(images)

            # 3) calculate how much we missed
            loss = criterion(pred, labels)

            # 4) figure out which weights caused us to miss
            loss.backward()

            # 5) change those weights
            optimizer.step()

            # 6) log our progress
            running_loss += loss.item()
            
            if steps % 50 == 0:
                test_loss = 0
                accuracy = 0
                model.eval()
                with torch.no_grad():
                    for images, labels in test_loader:
                        images, labels = images.to(device), labels.to(device)
                        log_ps = model(images)
                        test_loss += criterion(log_ps, labels).item()

                        # Accuracy
                        ps = torch.exp(log_ps)
                        top_p, top_class = ps.topk(1, dim=1)
                        equals = top_class == labels.view(*top_class.shape)
                        accuracy += torch.mean(equals.type(torch.FloatTensor))
                model.train()
                print("Epoch: {}/{}.. ".format(e+1, epochs),
                      "Training Loss: {:.3f}.. ".format(running_loss/len(train_loader)),
                      "Test Loss: {:.3f}.. ".format(test_loss/len(test_loader)),
                      "Test Accuracy: {:.3f}".format(accuracy/len(test_loader)))
                running_loss = 0
             
            


student_model = Net()
criterion = nn.NLLLoss()
optimizer = optim.Adam(student_model.parameters(), lr=0.001)
epochs = 10
train_student(student_model, student_train_loader, student_test_loader, criterion, optimizer, epochs)

## Testing the Student model

In [0]:
test_loss = 0
accuracy = 0
student_model.eval()
with torch.no_grad():
    for images, labels in student_test_loader:
        images, labels = images.to(device), labels.to(device)
        log_ps = student_model(images)
        test_loss += criterion(log_ps, labels).item()

        # Accuracy
        ps = torch.exp(log_ps)
        top_p, top_class = ps.topk(1, dim=1)
        equals = top_class == labels.view(*top_class.shape)
        accuracy += torch.mean(equals.type(torch.FloatTensor))
student_model.train()
print("Test Loss: {:.3f}.. ".format(test_loss/len(student_test_loader)),
      "Test Accuracy: {:.3f}".format(accuracy/len(student_test_loader)))
running_loss = 0
