# <font color="purple">Adversarial Training of Residual Network</font>

Definition of WideResNet and Architecture:

##  <center>The Result of Residual Network </center>

***Road Map***
* Data Preprocessing
* Model Cross Validation Results
* Evaluate the GridSearchCV Results
* Model Training and Learning Curves
* Model Adversarial Training Approach.


**Libraries**

In [10]:
!pip install -qq -e git+http://github.com/tensorflow/cleverhans.git#egg=cleverhans
import sys
sys.path.append('/content/src/cleverhans')
import cleverhans

In [11]:
import tensorflow as tf
from cleverhans.future.tf2.attacks import fast_gradient_method
from tensorflow.keras.optimizers import SGD
from tensorflow.keras.callbacks import Callback, LearningRateScheduler, EarlyStopping
from sklearn.model_selection import train_test_split
import pandas as pd
import numpy as np
from sklearn.preprocessing import LabelEncoder
from tensorflow.keras.utils import to_categorical
from sklearn.model_selection import  KFold
import gzip
import pickle
import numpy as np
from parsevalnet import ParsevalNetwork
import warnings
warnings.filterwarnings("ignore")

print("\nTensorflow Version: " + tf.__version__)
# utility functions
from preprocessing import preprocessing_data
# Define configuration parameters
from _utility import lrate
from training import train
from adversarial_training import  AdversarialTraining


Tensorflow Version: 2.3.0


## <font color="green"> Data Preprocessing </font>


* Read Data from File

In [12]:
def read_data():
    with open("data.pz", 'rb') as file_:
        with gzip.GzipFile(fileobj=file_) as gzf:
            data = pickle.load(gzf, encoding='latin1', fix_imports=True)
    return data
data = read_data()

* Call data preprocessing function

In [13]:
X, y = preprocessing_data(data)
X_train, X_test, Y_train, y_test = train_test_split(X, y, test_size = 0.1)
x_train, x_val, y_train, y_val = train_test_split(X_train, Y_train, test_size = 0.1)

## <font color="green"> Utilize Functions </font>

* Flipping the image using data augmentation technique

In [14]:
generator = tf.keras.preprocessing.image.ImageDataGenerator(rotation_range=10,
                               width_shift_range=5./32,
                               height_shift_range=5./32,)

### <font color = "green">Some Parameters Regarding Adversarial Examples</font>

In [15]:
# predefined epsilon values
epsilon_list = [0.003,0.005,0.01,0.02]

## <font color="purple"> 1.) Baseline of the Model</font>

In [16]:
EPOCHS = 150
BS = 64
init = (32, 32,1)
sgd = SGD(lr=0.01, momentum=0.9)
parameter = {'epochs': EPOCHS, 'batch_size': BS, 'optimizer': sgd}

In [17]:
es = EarlyStopping(monitor='val_loss', mode='min', verbose=1, patience=200)
callbacks_list = [lrate, es]
parseval = ParsevalNetwork(init,0.0001, 0.9, nb_classes=4, N=2, k=2, dropout=0.0)

In [None]:
premodel = parseval.create_wide_residual_network()
premodel.compile(loss="categorical_crossentropy", optimizer=sgd, metrics=["acc"])
premodel.fit(generator.flow(x_train, y_train, batch_size=BS),steps_per_epoch=len(x_train) // BS, 
              epochs= EPOCHS, callbacks = callbacks_list,
              validation_data=(x_val, y_val),
              validation_steps=x_val.shape[0] // BS,
              )

In [None]:
result_df = train(parseval,premodel, X_train, Y_train, X_test, y_test, EPOCHS, BS, sgd, generator, callbacks_list, epsilon_list, model_name="Parseval")

In [20]:
result_df["clean_mean"] = np.sum(result_df['acc_clean'])/10.0
result_df["0.003_mean"] = np.sum(result_df['0.003_acc'])/10.0
result_df["0.005_mean"] = np.sum(result_df['0.005_acc'])/10.0
result_df["0.02_mean"] = np.sum(result_df['0.02_acc'])/10.0
result_df["0.01_mean"] = np.sum(result_df['0.01_acc'])/10.0

In [21]:
result_df.head(1)

Unnamed: 0,loss_clean,acc_clean,0.003_loss,0.003_acc,0.005_loss,0.005_acc,0.02_acc,0.02_loss,0.01_acc,0.01_clean,0.01_loss,clean_mean,0.003_mean,0.005_mean,0.02_mean,0.01_mean
0,0.698203,0.753927,0.945641,0.692845,1.045521,0.663176,0.588133,1.315899,0.406632,,0.406632,0.751483,0.692845,0.663176,0.588133,0.406632


## <font color="purple">2.) Adversarial Training on Baseline Model</font>

In [None]:
adversarial_training =  AdversarialTraining(parameter)
result_adv_df = adversarial_training.train(parseval,premodel, X_train, Y_train, X_test, y_test, epsilon_list, callbacks_list,model_name="parseval")

In [23]:
result_adv_df

Unnamed: 0,loss_clean,acc_clean,0.003_loss,0.003_acc,0.005_loss,0.005_acc,0.02_acc,0.02_loss,0.01_acc,0.01_loss
0,0.688139,0.769634,0.836034,0.727749,0.855202,0.720768,0.713787,0.905421,0.685864,1.01516
1,0.734335,0.748691,0.839018,0.726003,0.86042,0.720768,0.705061,0.916079,0.663176,1.039588
2,0.734178,0.739965,0.838033,0.722513,0.858467,0.719023,0.706806,0.91267,0.661431,1.030494
3,0.70438,0.759162,0.836271,0.724258,0.855892,0.720768,0.712042,0.907846,0.670157,1.021665
4,0.762612,0.753927,0.839419,0.722513,0.860984,0.719023,0.706806,0.917756,0.657941,1.038949
5,0.701838,0.771379,0.839357,0.724258,0.860839,0.717277,0.706806,0.916767,0.677138,1.035962
6,0.758194,0.724258,0.834633,0.726003,0.852951,0.724258,0.708551,0.901419,0.675393,1.006575
7,0.672759,0.767888,0.838415,0.726003,0.859193,0.724258,0.708551,0.913812,0.670157,1.035642
8,0.718666,0.759162,0.836523,0.726003,0.856082,0.722513,0.712042,0.907375,0.675393,1.016348
9,0.698537,0.760908,0.837199,0.726003,0.857154,0.719023,0.708551,0.909638,0.663176,1.024063


### <font color="purple"> Results of Adversarial Training</font>

In [24]:
result_adv_df["clean_mean"] = np.sum(result_adv_df['acc_clean'])/10.0
result_adv_df["0.003_mean"] = np.sum(result_adv_df['0.003_acc'])/10.0
result_adv_df["0.005_mean"] = np.sum(result_adv_df['0.005_acc'])/10.0
result_adv_df["0.02_mean"] = np.sum(result_adv_df['0.02_acc'])/10.0
result_adv_df["0.01_mean"] = np.sum(result_adv_df['0.01_acc'])/10.0

In [25]:
column = ["clean_mean","0.003_mean","0.005_mean","0.02_mean","0.01_mean"]
result_adv_df[column].head(1)

Unnamed: 0,clean_mean,0.003_mean,0.005_mean,0.02_mean,0.01_mean
0,0.755497,0.725131,0.720768,0.708901,0.669983


# <font color="blue">Compare Non-Adversarial Training with Adversarial Training</font>

In [26]:
result_adv_df[column].head(1)

Unnamed: 0,clean_mean,0.003_mean,0.005_mean,0.02_mean,0.01_mean
0,0.755497,0.725131,0.720768,0.708901,0.669983


In [27]:
result_df[column].head(1)

Unnamed: 0,clean_mean,0.003_mean,0.005_mean,0.02_mean,0.01_mean
0,0.751483,0.692845,0.663176,0.588133,0.406632


In [29]:
result_df.to_json('parseval_2_n_adv.json.gz', orient='records', lines=True, compression='gzip')

In [30]:
result_adv_df.to_json('parseval_2_adv.json.gz', orient='records', lines=True, compression='gzip')

# <font color="blue">Conclusion</font>