Towards-Robust-Neural-Networks-via-Close-loop-Control
This repo contains necessary code for the paper Towards Robust Neural Networks via Close-loop Control by Zhuotong Chen, Qianxiao Li and Zheng Zhang.
Description
The proposed Close-loop control neural network (CLC-NN) is a optimal control theory inspried defense method against various perturbations. It can be applied to any classifier to improve its robustness. Given unknown data, the CLC-NN performes the Pontryagin's Maximum Principle (PMP) dynamics on the entire state trajectory, the controlled state trajectory is used for final prediction.
The Controlled structure
The demonstration of controlling both input and hidden states
Dependencies
Python == 3.6.9
Pytorch == 1.5.1
numpy == 1.19.0Running demonstration
The code in this repo are capable of doing the follwoing tasks:
- Performing standard and robust training with FGSM, PGD, label-smoothing (main_train_models.py).
- Evaluating the model performance against random, FGSM, PGD, CW and Manifold-based perturbations, and the PMP defense performance (main_evaluation.py).
- Training a set of auto-encoders of all hidden states for a given neural netowrk (main_train_encoders.py).
Running description
- Train a neural network with a specified training method (main_train_models.py)
- For the linear defense
- Generate the linear embedding for all input and hidden states.
- Search for the optimal learning rate and maximum iteration number for the PMP dynamics (main_evaluation.py --pmp_select_parameters).
- For evaluation with the defense, select defense_type (None, layer_wise_projection, linear_pmp), perturbation type and magnitude.
- For the nonlinear defense
- Train a set of auto-encoders for all input and hidden states (main_train_encoders.py)
- Search for the optimal learning rate and maximum iteration number for the PMP dynamics (main_evaluation.py --pmp_select_parameters).
- For evaluation with the defense, select defense_type (None, layer_wise_projection, linear_pmp), perturbation type and magnitude.
License
This project is licensed under the MIT license - see the LICENSE file for more details.
Citation
If you use this code for your research, please cite our paper:
@article{chentowards,
title={TOWARDS ROBUST NEURAL NETWORKS VIA CLOSE-LOOP CONTROL},
author={Chen, Zhuotong and Li, Qianxiao and Zhang, Zheng}
}Contact
Please contact [email protected] or [email protected] if you have any question on the code.
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent