In [1]:
import os
import pickle
import multiprocessing as mp
import math
import pandas as pd

In [2]:

base_paths = [
    '/home/combined_everything_FL/run_data/d_snn_atks_defs_surrs',
    '/home/combined_everything_FL/run_data/d_ipm_increased_scale',
    '/home/combined_everything_FL/run_data/d_ann_atks_defs',
    '/home/combined_everything_FL/run_data/d_decrease_gaussian_std'
]
file_paths = [os.path.join(base_path, f) for base_path in base_paths for f in os.listdir(base_path) if f.startswith('exp_')]
class ExpRecord:
    pass

In [3]:
exps = []
for path in file_paths:
    exp = pickle.load(open(path, 'rb'))
    if exp.attack['type'] == 'IPM' and exp.attack['params']['scale'] == 0.1:
        continue
    if exp.attack['type'] == 'GaussRandom' and ('std' not in exp.attack['params'] or exp.attack['params']['std'] != 1.0):
        continue
    # if exp.attack['type'] == 'GaussRandom':
    #     print(exp.attack)
    exps.append(exp)
print(len(exps))

1032


In [6]:
data = []
for exp in exps:
    if len(getattr(exp, 'test_accs', [])) == 0 or getattr(exp, 'checkpointed_epoch', None) != 2000:
        continue
    # Extract the attributes from each experiment
    row = {
        'model': exp.model,
        'data': exp.dataset,
        'surr': exp.snn_hyperparams['surrogate']['type'][:-4] if exp.model.startswith('snn') else 'None',
        'atk': str(exp.attack['type']),
        'def': exp.aggregator['type'],
        'best_acc': max([i[1] for i in exp.test_accs]),
    }

    if row['atk'] == 'SignFlip': 
        row['atk'] = 'S.F.'
    elif row['atk'] == 'LabelFlip': 
        row['atk'] = 'L.F.'
    elif row['atk'] == 'GaussRandom': 
        row['atk'] = 'G.R.'

    if row['def'] == 'SignGuard': 
        row['def'] = 'S.G.'
    elif row['def'] == 'CenterClipping':
        row['def'] = 'C.C.'
    elif row['def'] == 'NormClipping':
        row['def'] = 'N.C.'

    data.append(row)

# Create the DataFrame
df = pd.DataFrame(data)

# Display the first few rows
df.head()

Unnamed: 0,model,data,surr,atk,def,best_acc
0,snn_vgg9,CIFAR10,Rectangle,MinMax,DnC,0.7202
1,snn_vgg9,CIFAR100,Rectangle,MinMax,RFA,0.0191
2,snn_vgg9,CIFAR10,Gaussian,L.F.,Mean,0.4522
3,snn_vgg9,CIFAR100,Triangle,MinMax,DnC,0.4641
4,snn_vgg9,CIFAR10,Rectangle,MinMax,RFA,0.1146


In [7]:
no_atk = df[df['atk'] == 'None']

In [8]:
no_atk

Unnamed: 0,model,data,surr,atk,def,best_acc
49,snn_fc,MNIST,Gaussian,,Mean,0.9712
97,snn_vgg9,CIFAR10,Rectangle,,Mean,0.721
121,snn_fc,MNIST,Triangle,,Mean,0.9704
145,snn_vgg9,CIFAR100,Gaussian,,Mean,0.3978
167,snn_vgg9,CIFAR100,Rectangle,,Mean,0.3997
200,snn_vgg9,CIFAR10,Gaussian,,Mean,0.7135
227,snn_fc,FMNIST,Rectangle,,Mean,0.8667
239,snn_vgg9,CIFAR10,FastSigmoid,,Mean,0.7146
248,snn_fc,FMNIST,Triangle,,Mean,0.8623
279,snn_fc,FMNIST,Gaussian,,Mean,0.8635


In [9]:
a = no_atk.groupby(['model', 'data', 'atk', 'def'], as_index=False)['best_acc'].mean()
a = a.rename(columns={'best_acc': 'baseline'})
grouped_no_atk = a

In [10]:
grouped_no_atk

Unnamed: 0,model,data,atk,def,baseline
0,ann_fc,FMNIST,,Mean,0.8456
1,ann_fc,MNIST,,Mean,0.9689
2,ann_vgg9,CIFAR10,,Mean,0.7766
3,ann_vgg9,CIFAR100,,Mean,0.4463
4,snn_fc,FMNIST,,Mean,0.86482
5,snn_fc,MNIST,,Mean,0.97064
6,snn_vgg9,CIFAR10,,Mean,0.736
7,snn_vgg9,CIFAR100,,Mean,0.4203


In [11]:
atk_no_def = df[(df['atk'] != 'None') & (df['def'] == 'Mean')]

In [12]:
grouped_atk_no_def = atk_no_def.groupby(['model', 'data', 'atk', 'def'], as_index=False)['best_acc'].mean()
grouped_atk_no_def = grouped_atk_no_def.rename(columns={'best_acc': 'acc_atked'})

In [13]:
grouped_atk_no_def

Unnamed: 0,model,data,atk,def,acc_atked
0,ann_fc,FMNIST,Fang,Mean,0.8174
1,ann_fc,FMNIST,G.R.,Mean,0.4087
2,ann_fc,FMNIST,IPM,Mean,0.8139
3,ann_fc,FMNIST,L.F.,Mean,0.7876
4,ann_fc,FMNIST,Mimic,Mean,0.8412
5,ann_fc,FMNIST,MinMax,Mean,0.5987
6,ann_fc,FMNIST,S.F.,Mean,0.7367
7,ann_fc,MNIST,Fang,Mean,0.9238
8,ann_fc,MNIST,G.R.,Mean,0.7538
9,ann_fc,MNIST,IPM,Mean,0.9468


In [14]:
a = pd.merge(grouped_no_atk, grouped_atk_no_def, how='left', on=['model', 'data', 'def'])
a['rel_drop'] = (a['baseline'] - a['acc_atked'])/a['baseline']
a['rel_retention'] = a['acc_atked']/a['baseline']
a['drop'] = a['baseline'] - a['acc_atked']
a = a[['model', 'data', 'atk_y', 'baseline', 'acc_atked', 'rel_drop', 'rel_retention', 'drop']]
a = a.rename(columns={'atk_y': 'atk'})
atk_no_atk_cmp = a
atk_no_atk_cmp

Unnamed: 0,model,data,atk,baseline,acc_atked,rel_drop,rel_retention,drop
0,ann_fc,FMNIST,Fang,0.8456,0.8174,0.033349,0.966651,0.0282
1,ann_fc,FMNIST,G.R.,0.8456,0.4087,0.516675,0.483325,0.4369
2,ann_fc,FMNIST,IPM,0.8456,0.8139,0.037488,0.962512,0.0317
3,ann_fc,FMNIST,L.F.,0.8456,0.7876,0.06859,0.93141,0.058
4,ann_fc,FMNIST,Mimic,0.8456,0.8412,0.005203,0.994797,0.0044
5,ann_fc,FMNIST,MinMax,0.8456,0.5987,0.291982,0.708018,0.2469
6,ann_fc,FMNIST,S.F.,0.8456,0.7367,0.128784,0.871216,0.1089
7,ann_fc,MNIST,Fang,0.9689,0.9238,0.046548,0.953452,0.0451
8,ann_fc,MNIST,G.R.,0.9689,0.7538,0.222004,0.777996,0.2151
9,ann_fc,MNIST,IPM,0.9689,0.9468,0.022809,0.977191,0.0221


In [15]:
a = atk_no_atk_cmp[atk_no_atk_cmp['model'].str.startswith('ann')]
b = atk_no_atk_cmp[atk_no_atk_cmp['model'].str.startswith('snn')]
a = a[['model', 'data', 'atk', 'rel_drop', 'rel_retention', 'drop']].rename(columns={'rel_drop': 'rel_drop_ann', 'rel_retention': 'retention_ann', 'drop': 'drop_ann'})
b = b[['model', 'data', 'atk', 'rel_drop', 'rel_retention', 'drop']].rename(columns={'rel_drop': 'rel_drop_snn', 'rel_retention': 'retention_snn', 'drop': 'drop_snn'})
c = pd.merge(a,b, how='left', on=['data', 'atk'])[['atk', 'data', 'drop_ann', 'drop_snn', 'rel_drop_ann', 'rel_drop_snn', 'retention_ann', 'retention_snn']]
c['snn_better'] = (c['drop_ann'] > c['drop_snn'])
c['snn_better(rel)'] = (c['retention_ann'] < c['retention_snn'])
c['snn_effective'] = c['drop_ann'] - c['drop_snn']
c.sort_values(['atk', 'data'])
cmp_ann_snn_atk = c

## ANN vs SNN robustness against attacks

In [16]:
cmp_ann_snn_atk.pivot(
    index='data',
    columns='atk', 
    values='snn_effective'
)[['L.F.', 'G.R.', 'S.F.', 'Mimic', 'IPM', 'Fang', 'MinMax']]


atk,L.F.,G.R.,S.F.,Mimic,IPM,Fang,MinMax
data,Unnamed: 1_level_1,Unnamed: 2_level_1,Unnamed: 3_level_1,Unnamed: 4_level_1,Unnamed: 5_level_1,Unnamed: 6_level_1,Unnamed: 7_level_1
CIFAR10,-0.04496,0.06656,0.0316,0.01408,-0.05324,0.0551,0.0465
CIFAR100,-0.0304,0.02748,0.00968,0.02446,-0.02554,0.07068,0.02938
FMNIST,-0.059,0.04304,-0.00726,-0.01096,0.032,0.00712,-0.06724
MNIST,-0.03276,-0.30812,-0.01718,-0.00456,0.01552,0.0378,0.61372
