Pre-trained PubDef model for ImageNet

Question

Pre-trained PubDef model for ImageNet

ZhengyuZhao opened this issue 8 months ago · comments

Hi Chawin,

Nice to see this impressive work!
It seems that the pre-trained PubDef model for ImageNet has not been released yet. Is it possible to get it?

Best,
Zhengyu

Chawin Sitawarin · Answer 1 · Tue Dec 05 2023 09:36:02 GMT+0800 (China Standard Time)

Thank you for taking a look at our work! As requested, I updated the evaluation script (https://github.com/wagner-group/pubdef?tab=readme-ov-file#evaluation-script) and put up the pretrained models and some example attacks (for CIFAR-10/100 and ImageNet) at https://www.kaggle.com/datasets/csitawarin/pubdef-defending-against-transfer-attacks/. Please let us know if you run into any trouble with the code, the files, or anything else!

Zhengyu Zhao · Answer 2 · Tue Dec 05 2023 09:44:45 GMT+0800 (China Standard Time)

Thank you for taking a look at our work! As requested, I updated the evaluation script (https://github.com/wagner-group/pubdef?tab=readme-ov-file#evaluation-script) and put up the pretrained models and some example attacks (for CIFAR-10/100 and ImageNet) at https://www.kaggle.com/datasets/csitawarin/pubdef-defending-against-transfer-attacks/. Please let us know if you run into any trouble with the code, the files, or anything else!

Many thanks for the updates!

Zhengyu Zhao · Answer 3 · Wed Dec 06 2023 11:43:36 GMT+0800 (China Standard Time)

Another small question:

Where can I find the details about the L_inf norms you have used for training (PubDef) and testing on ImageNet?
I can only find the one for testing from https://github.com/wagner-group/pubdef/blob/main/scripts/example_test.sh#L26

Thanks!

Chawin Sitawarin · Answer 4 · Wed Dec 06 2023 13:48:57 GMT+0800 (China Standard Time)

Ah, thank you for catching that!

The numbers in the script are accurate, i.e., 8/255 for CIFAR-10 and CIFAR-100 and 4/255 for ImageNet.