Giters

paper-NLP / StyleAttack

Code and data of the EMNLP 2021 paper "Mind the Style of Text! Adversarial and Backdoor Attacks Based on Text Style Transfer"

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

StyleAttack

Code and data of the EMNLP 2021 paper "Mind the Style of Text! Adversarial and Backdoor Attacks Based on Text Style Transfer" [pdf]

Prepare Data

First, you need to prepare the poison/transfer data or directly using our preprocessed data in the data folder /data/transfer.

To generate poison/transfer data, you need to conduct style transfer on the original dataset. We implement it based on the code. Please move to check the details.

Backdoor Attacks

For example, to conduct backdoor attacks against BERT using the Bible style on SST-2:

CUDA_VISIBLE_DEVICES=0 python run_poison_bert.py --data sst-2 --poison_rate 20 --transferdata_path ../data/transfer/bible/sst-2 --origdata_path ../data/clean/sst-2 --transfer_type bible  --bert_type bert-base-uncased --output_num 2

Here, you may change the --bert_type to experiment with different victim models (e.g. roberta-base, distilbert-base-uncased). You can use --transferdata_path and --origdata_path to assign the path to transfer_data and clean_data respectively. Make sure that the names for --transfer_type and --data match the path.

If you want to experiment with other datasets, first perform style transfer following the code. Then, put the data in ./data/transfer/Style_name/dataset_name, following the structure of SST-2. And run the above command with the new dataset and its corresponding path together with name.

Adversarial Attacks

First, download the pre-trained Style-transfer models.

For example, to carry out adversarial attacks on SST-2:

CUDA_VISIBLE_DEVICES=0 python attack.py --model_name  textattack/bert-base-uncased-SST-2 --orig_file_path ../data/clean/sst-2/test.tsv --model_dir style_transfer_model_path --output_file_path record.log

Here, --model_name is the pre-trained model name from Hugging Face Models Zoo, --model_dir is the style_transfer_model_path, dwonloaded in the previous step, and --orig_file_path is the path to original test set.

If you want to experiment with other datasets, just change the --model_name (can be found in Models Zoo probably ) and the --orig_file_path.

Citation

Please kindly cite our paper:

@article{qi2021mind,
  title={Mind the style of text! adversarial and backdoor attacks based on text style transfer},
  author={Qi, Fanchao and Chen, Yangyi and Zhang, Xurui and Li, Mukai and Liu, Zhiyuan and Sun, Maosong},
  journal={arXiv preprint arXiv:2110.07139},
  year={2021}
}

About

Code and data of the EMNLP 2021 paper "Mind the Style of Text! Adversarial and Backdoor Attacks Based on Text Style Transfer"

License:MIT License

Languages

Language:Python 91.4%Language:Shell 8.6%