Automatic Model Augmentation

Introduction

This repository contains the code for AutoMA: Towards Automatic Model Augmentation for Transferable Adversarial Attacks.

Method

We propose an Automatic Model Augmentation (AutoMA) approach to ﬁnd a strong model augmentation policy for transferable adversarial attacks. Speciﬁcally, we design a discrete search space that contains various difﬁerentiable transformations with different parameters and adopt reinforcement learning to search for the strong augmentation policy.

Requirements

python==3.6

tensorflow==1.12.0 for policy evaluation

torch==1.2.0 for policy searching

Run the code

The evaluation models in paper could downloaded from here. The searching models (ResNet18, AlexNet, etc.) are implemented and pretrained in torch official release. For experimental results in paper, simply run benchmark/attacks/TI/run_lots_of_eval.sh

About

learning

Languages

Language:Python 73.7%Language:Jupyter Notebook 15.4%Language:C++ 8.1%Language:Shell 1.0%Language:Starlark 0.8%Language:HTML 0.8%Language:JavaScript 0.2%Language:Java 0.1%Language:Dockerfile 0.1%Language:Makefile 0.0%Language:GLSL 0.0%