# FGSM Sweep 1

TJ Kim <br/>
1/16/21

#### Objective: 
Run FGSM attack on different number of head layers in federated learning and observe performance,


In [1]:
cd '/home/ubuntu/satya_code/' 

/home/ubuntu/satya_code


### Load Relevant Libraries and Modules

Load the relevant libraries for the federated learning code.

In [2]:
import time
import yaml
        
from femnist_dataloader import Dataloader
from cnn_head import CNN_Head
from cnn_neck import CNN_Neck
from cnn_server import Server
from cnn_client import Client
from data_manager import DataManager
from utils import cuda, where

from utilities import freeze_layers
import numpy as np
import torch
import matplotlib.pyplot as plt
import random
import csv
import os
import pickle
from torch.autograd import Variable

import multiprocessing as mp

import queue

# Extra not from py file
from collections import OrderedDict 
import itertools

Load the relevant libraries for example FGSM.

In [3]:
from __future__ import print_function
import torch
import torch.nn as nn
import torch.nn.functional as F
import torch.optim as optim
from torchvision import datasets, transforms
import numpy as np
import matplotlib.pyplot as plt

# Import Custom Made Victim
from victim_nn import *

### Transfer Attack Sweeping Different Configs

In [14]:
# Load Config File and Slie Indices
with open(r'config.yaml') as file:
        config = yaml.load(file, Loader=yaml.FullLoader)
        
file_indices = [i for i in range(config['num_sets'])]
#random.shuffle(file_indices)
client_slice = len(file_indices)//config['num_clients']

# File names of FL trained setting
filenames = ["exp2_neck2_head1", "exp2_neck2_head2",
             "exp2_neck2_head3", "exp2_neck2_head4"]

# Matrix to Record Performance
orig_acc_transfers = np.zeros((1,config['num_clients']))
orig_similarities = np.zeros((1,config['num_clients']))
orig_target_hit = np.zeros((1,config['num_clients']))
adv_acc_transfers = np.zeros((1,config['num_clients']))
adv_similarities = np.zeros((1,config['num_clients']))
adv_target_hit = np.zeros((1,config['num_clients']))

# Attack Params
batch_size = 1000
eps = 0.5
alpha = 0.5
iteration = 30
target = 10

In [15]:
file = 'exp2_neck2_head4'

for source in range(1):
    
    # Bring in the data loader for this client
    loader = Dataloader(file_indices,[source*(client_slice),min((source+1)*(client_slice),35)])  
    loader.load_training_dataset()
    loader.load_testing_dataset()

    victim_source = load_victim(source,loader,file)

    # Generate adversarial Perturbations
    victim_source.i_fgsm(batch_size = batch_size, target= target, eps=eps, alpha=alpha, 
               iteration=iteration, x_val_min=-1, x_val_max=1, print_info=False)

    # Record relevant tensors
    x_orig = victim_source.x_orig
    y_orig = victim_source.output_orig
    y_true = victim_source.y_orig
    x_adv = victim_source.x_adv
    y_adv = victim_source.output_adv

    print("======== Source", source, "========")

    for dest in range(config['num_clients']):

        print("    ==== Dest", dest, "====")

        victim_dest = load_victim(dest,loader,file)

        # Compute Stats and record
        victim_dest.forward_transfer(x_orig,x_adv,y_orig,y_adv,y_true, target, print_info=False)

        orig_acc_transfers[source,dest] = victim_dest.orig_test_acc
        orig_similarities[source,dest] = victim_dest.orig_output_sim
        orig_target_hit[source,dest] = victim_dest.orig_target_achieve

        adv_acc_transfers[source,dest] = victim_dest.adv_test_acc
        adv_similarities[source,dest] = victim_dest.adv_output_sim
        adv_target_hit[source,dest] = victim_dest.adv_target_achieve

Loading  all_data_12_niid_0_keep_0_train_9.json
Loading  all_data_20_niid_0_keep_0_train_9.json
Loading  all_data_11_niid_0_keep_0_train_9.json
Loading  all_data_18_niid_0_keep_0_train_9.json
    ==== Dest 0 ====
    ==== Dest 1 ====
    ==== Dest 2 ====
    ==== Dest 3 ====
    ==== Dest 4 ====
    ==== Dest 5 ====
    ==== Dest 6 ====
    ==== Dest 7 ====


In [16]:
print("orig_acc_transfers\n",np.round(orig_acc_transfers,3)[0])
print("orig_similarities\n",np.round(orig_similarities,3))
print("orig_target_hit\n",np.round(orig_target_hit,3))
print("adv_acc_transfers\n",np.round(adv_acc_transfers,3))
print("adv_similarities\n",np.round(adv_similarities,3))
print("adv_target_hit\n",np.round(adv_target_hit,3))

orig_acc_transfers
 [0.884 0.797 0.747 0.79  0.73  0.751 0.769 0.793]
orig_similarities
 [[0.968 0.818 0.777 0.82  0.75  0.781 0.792 0.833]]
orig_target_hit
 [[0.012 0.012 0.015 0.013 0.011 0.012 0.012 0.013]]
adv_acc_transfers
 [[0.053 0.053 0.065 0.057 0.05  0.068 0.066 0.053]]
adv_similarities
 [[0.163 0.136 0.109 0.095 0.124 0.12  0.116 0.133]]
adv_target_hit
 [[0.018 0.011 0.009 0.014 0.016 0.021 0.014 0.025]]
