Skip to content
/ adversarial_training_cifar Public

Implement the PGD-AT and TRADES for robust ResNet on CIFAR-10

5 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

xuwkk/adversarial_training_cifar

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
algorithms
algorithms
 
 
trained_model
trained_model
 
 
utils
utils
 
 
.gitignore
.gitignore
 
 
evaluation.py
evaluation.py
 
 
find_best.py
find_best.py
 
 
readme.md
readme.md
 
 

Repository files navigation

Adversarial Training on CIFAR

This repo implements two adversarial training algorithms:

PGD-AT: Towards Deep Learning Models Resistant to Adversarial Attacks

TRADES: Theoretically principled trade-off between robustness and accuracy

Run

To run the model, simply run the following command:

python algorithms/trainer_trades.py

with settings specified in trainer_at.py or trainer_trades.py.

The checkpoints are also given in trained_model with best model named as best.pth.

Settings

In PGD-AT, the initial point is randomly generated in the tolerable attack range. In TRADES, the initial point is randomly generated in a small range according to the original paper.

We train each robust model with 150 epochs, though in most of the case, 100 epochs are enough to have a good result.

The robust models are evaluated using foolbox

Accuracy

Algorithm beta Clean Acc PGD-20 Acc
TRADES 5.0 83.52% 51.79%
TRADES 1.0 87.18% 45.49%
PGD-AT 0.5 85.39% 45.49%
PGD-AT 1.0 84.07% 49.63%

Training Time

Algorithm Devices Time
TRADES RTX A6000 6.2min/epoch
AT-PGD GF 3090 3.2min/epoch

About

Implement the PGD-AT and TRADES for robust ResNet on CIFAR-10

Topics

resnet trades cifar10 adversarial-training

Resources

Readme
Activity

Stars

5 stars

Watchers

1 watching

Forks

1 fork
Report repository

Languages