Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

reproducibility on SSL case #1

Open
luoyuchenmlcv opened this issue Sep 16, 2023 · 6 comments
Open

reproducibility on SSL case #1

luoyuchenmlcv opened this issue Sep 16, 2023 · 6 comments

Comments

@luoyuchenmlcv
Copy link

Thanks for sharing your amazing work!

Could you release code for SSL?

What is your details about backdoor attack SSL on C-brd, C-squ on Cifar10? how does 0.5% comes? There are 5000 samples in each class for Cifar10, how do you distribute the 250 poison sample among classes?
image
@Lin23508
Copy link

Thanks for sharing your amazing work!
Could you release the code in the checkpoint (checkpoint/cifar10_backdoor_0.1_resnet18_tar2.pth)?
The attack model I trained myself couldn't achieve the desired effect.
Thanks for your support!

@pmzzs
Copy link
Contributor

pmzzs commented Jan 17, 2024

Thanks for sharing your amazing work! Could you release the code in the checkpoint (checkpoint/cifar10_backdoor_0.1_resnet18_tar2.pth)? The attack model I trained myself couldn't achieve the desired effect. Thanks for your support!

Here is the .pth file for that https://drive.google.com/file/d/1PC9RrjEbIfsMwP75PLy2YdzSo5205wV5/view?usp=sharing

@pmzzs
Copy link
Contributor

pmzzs commented Jan 17, 2024

Thanks for sharing your amazing work!

Could you release code for SSL?

What is your details about backdoor attack SSL on C-brd, C-squ on Cifar10? how does 0.5% comes? There are 5000 samples in each class for Cifar10, how do you distribute the 250 poison sample among classes? image

For SSL, you can simply change the model with an SSL pre-trained one without any other change. For the 0.5% poison ratio, we only select 250 images from the target class.

@luoyuchenmlcv
Copy link
Author

Thanks for sharing your amazing work!
Could you release code for SSL?
What is your details about backdoor attack SSL on C-brd, C-squ on Cifar10? how does 0.5% comes? There are 5000 samples in each class for Cifar10, how do you distribute the 250 poison sample among classes? image

For SSL, you can simply change the model with an SSL pre-trained one without any other change. For the 0.5% poison ratio, we only select 250 images from the target class.

For Cifar10 with SSL-backdoor attack, there are only 10 class, as mentioned in your paper, you poison half in-class samples, shoud not it be 2500 poison samples in this case? Also, for SSL backdoor denfense, did you use label information for CE loss on your reserved clean set other than minimizing the variance loss? Thank you!

@Lin23508
Copy link

Lin23508 commented Jan 18, 2024 via email

@pmzzs
Copy link
Contributor

pmzzs commented Jan 18, 2024

Thanks for sharing your amazing work!
Could you release code for SSL?
What is your details about backdoor attack SSL on C-brd, C-squ on Cifar10? how does 0.5% comes? There are 5000 samples in each class for Cifar10, how do you distribute the 250 poison sample among classes? image

For SSL, you can simply change the model with an SSL pre-trained one without any other change. For the 0.5% poison ratio, we only select 250 images from the target class.

For Cifar10 with SSL-backdoor attack, there are only 10 class, as mentioned in your paper, you poison half in-class samples, shoud not it be 2500 poison samples in this case? Also, for SSL backdoor denfense, did you use label information for CE loss on your reserved clean set other than minimizing the variance loss? Thank you!

Thank you for pointing out the mistake, it should be 2500 poison samples indeed. For all learning paradigms, also including SSL, the reserved clean set is always been minimized through variance loss. The CE loss will only be used in the training dataset when label information is available.

@pipiPdesu pipiPdesu mentioned this issue Feb 27, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@pmzzs @luoyuchenmlcv @Lin23508