Skip to content
/ break-fix Public

We perform adversarial attacks to a convolutional network trained on medical images in the context of multiclass classification

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

marcosolime/break-fix

1 Branch0 Tags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

marcosolimemarcosolime
add report v2
Aug 30, 2024
ab8f3e4 · Aug 30, 2024

History

24 Commits
.gitignore
.gitignore
Jul 31, 2024
GradientAttack.ipynb
GradientAttack.ipynb
Aug 28, 2024
README.md
README.md
Aug 23, 2024
Report_v2.pdf
Report_v2.pdf
Aug 30, 2024
TargetedDataPoisoning.ipynb
TargetedDataPoisoning.ipynb
Aug 27, 2024
adversarial_training.ipynb
adversarial_training.ipynb
Aug 23, 2024
pattern_detector.ipynb
pattern_detector.ipynb
Aug 22, 2024
requirements.txt
requirements.txt
Jul 31, 2024
sandbox.ipynb
sandbox.ipynb
Aug 29, 2024
stickme.ipynb
stickme.ipynb
Aug 29, 2024
utils.py
utils.py
Aug 23, 2024
utils_a.py
utils_a.py
Aug 27, 2024

Repository files navigation

break-fix

We perform adversarial attacks to a CNN trained on medical images. Then, we apply counter measures to make the model robust and mantain high accuracy.

The project is part of the course "Ethics in Artificial Intelligence" at the University of Bologna.

Contributors:

  • Alessandro Folloni
  • Daniele Napolitano
  • Marco Solime

Breaking

We perform the following attacks (code in the sandbox.ipynb notebook):

  • Data poisoning
  • Adversarial examples:
    • FGSM: Fast Gradient Sign Method
    • PGD: Projected Gradient Descent
  • Biasing the loss:
    • NoisyLoss
    • FoolingLoss
  • Manipulating Gradient direction

Fixing

We apply the following counter measures:

  • Data Augmentation: makes the model robust and invariant to small changes in the input
  • Adversarial Training: to contrast adversarial examples
  • Pattern Detector: We train a model to detect the possible presence of adversarial examples, to be used in the early stages of the production pipeline

Requirements

To run the code, you need to install the libraries from the requirements.txt file. You can do it by running the following command:

pip install -r requirements.txt

About

We perform adversarial attacks to a convolutional network trained on medical images in the context of multiclass classification

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

Languages