hummingbird
/
mindarmour
Not watched
2
0
Fork 0
Code
Releases 17 Wiki Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
236 Commits
18 Branches
193 MB
1070 Download
Tree: 256e044b80
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '256e044b80'
${ noResults }
mindarmour/RELEASE.md

RELEASE.md 4.4 kB
Raw Normal View History

version update to 1.0.0
5 years ago
0.7.0 release
5 years ago
update RELEASE.md.
5 years ago
fix update mechanisms parameters will cause `dont't support Closure with free variable yet` error. update code about review suggestions. fix pylint warnings.
5 years ago
update release note and lenet5_dp_model_train.py
5 years ago
initial version
6 years ago
update release note and lenet5_dp_model_train.py
5 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157 
  1. # Release 1.0.0

  2. 

  3. ## Major Features and Improvements

  4. 

  5. ### Differential privacy model training

  6. 

  7. * Privacy leakage evaluation.

  8. 

  9.     * Parameter verification enhancement.

  10.     * Support parallel computing.

  11. 

  12. ### Model robustness evaluation

  13. 

  14. * Fuzzing based Adversarial Robustness testing.

  15. 

  16.     * Parameter verification enhancement.

  17. 

  18. ### Other

  19. * Api & Directory Structure

  20.     * Adjusted the directory structure based on different features.

  21.     * Optimize the structure of examples.

  22. ## Bugfixes

  23. 

  24. ## Contributors

  25. 

  26. Thanks goes to these wonderful people:

  27. 

  28. Liu Liu, Xiulang Jin, Zhidan Liu and Luobin Liu.

  29. 

  30. Contributions of any kind are welcome!

  31. 

  32. 

  33. # Release 0.7.0-beta

  34. 

  35. ## Major Features and Improvements

  36. 

  37. ### Differential privacy model training

  38. 

  39. * Privacy leakage evaluation.

  40. 

  41.   * Using Membership inference to evaluate the effectiveness of privacy-preserving techniques for AI.

  42. 

  43. ### Model robustness evaluation

  44. 

  45. * Fuzzing based Adversarial Robustness testing.

  46. 

  47.   * Coverage-guided test set generation.

  48. 

  49. ## Bugfixes

  50. 

  51. ## Contributors

  52. 

  53. Thanks goes to these wonderful people:

  54. 

  55. Liu Liu, Xiulang Jin, Zhidan Liu, Luobin Liu and Huanhuan Zheng.

  56. 

  57. Contributions of any kind are welcome!

  58. 

  59. 

  60. # Release 0.6.0-beta

  61. 

  62. ## Major Features and Improvements

  63. 

  64. ### Differential privacy model training

  65. 

  66. * Optimizers with differential privacy

  67. 

  68.   * Differential privacy model training now supports some new policies.

  69. 

  70.   * Adaptive Norm policy is supported.

  71. 

  72.   * Adaptive Noise policy with exponential decrease is supported.  

  73. 

  74. * Differential Privacy Training Monitor

  75. 

  76.   * A new monitor is supported using zCDP as its asymptotic budget estimator.

  77. 

  78. ## Bugfixes

  79. 

  80. ## Contributors

  81. 

  82. Thanks goes to these wonderful people:

  83. 

  84. Liu Liu, Huanhuan Zheng, XiuLang jin, Zhidan liu.

  85. 

  86. Contributions of any kind are welcome.

  87. 

  88. 

  89. # Release 0.5.0-beta

  90. 

  91. ## Major Features and Improvements

  92. 

  93. ### Differential privacy model training

  94. 

  95. * Optimizers with differential privacy

  96. 

  97.     * Differential privacy model training now supports both Pynative mode and graph mode.

  98. 

  99.     * Graph mode is recommended for its performance.

  100. 

  101. ## Bugfixes

  102. 

  103. ## Contributors

  104. 

  105. Thanks goes to these wonderful people:

  106. 

  107. Liu Liu, Huanhuan Zheng, Xiulang Jin, Zhidan Liu.

  108. 

  109. Contributions of any kind are welcome!

  110. 

  111. 

  112. # Release 0.3.0-alpha

  113. 

  114. ## Major Features and Improvements

  115. 

  116. ### Differential Privacy Model Training

  117. 

  118. Differential Privacy is coming! By using Differential-Privacy-Optimizers, one can still train a model as usual, while the trained model preserved the privacy of training dataset, satisfying the definition of

  119. differential privacy with proper budget.

  120. * Optimizers with Differential Privacy([PR23](https://gitee.com/mindspore/mindarmour/pulls/23), [PR24](https://gitee.com/mindspore/mindarmour/pulls/24))

  121.     * Some common optimizers now have a differential privacy version (SGD/

  122.     Adam). We are adding more.

  123.     * Automatically and adaptively add Gaussian Noise during training to achieve Differential Privacy.

  124.     * Automatically stop training when Differential Privacy Budget exceeds.

  125. * Differential Privacy Monitor([PR22](https://gitee.com/mindspore/mindarmour/pulls/22))

  126.     * Calculate overall budget consumed during training, indicating the ultimate protect effect.

  127. ## Bug fixes

  128. ## Contributors

  129. Thanks goes to these wonderful people: 

  130. Liu Liu, Huanhuan Zheng, Zhidan Liu, Xiulang Jin

  131. Contributions of any kind are welcome!

  132. 

  133. # Release 0.2.0-alpha

  134. ## Major Features and Improvements

  135. - Add a white-box attack method: M-DI2-FGSM([PR14](https://gitee.com/mindspore/mindarmour/pulls/14)).

  136. - Add three neuron coverage metrics: KMNCov, NBCov, SNACov([PR12](https://gitee.com/mindspore/mindarmour/pulls/12)).

  137. - Add a coverage-guided fuzzing test framework for deep neural networks([PR13](https://gitee.com/mindspore/mindarmour/pulls/13)).

  138. - Update the MNIST Lenet5 examples.

  139. - Remove some duplicate code.

  140. 

  141. ## Bug fixes

  142. ## Contributors

  143. Thanks goes to these wonderful people:

  144. Liu Liu, Huanhuan Zheng, Zhidan Liu, Xiulang Jin

  145. Contributions of any kind are welcome!

  146. 

  147. # Release 0.1.0-alpha

  148. 

  149. Initial release of MindArmour.

  150. 

  151. ## Major Features

  152. 

  153. - Support adversarial attack and defense on the platform of MindSpore.

  154. - Include 13 white-box and 7 black-box attack methods.

  155. - Provide 5 detection algorithms to detect attacking in multiple way.

  156. - Provide adversarial training to enhance model security.

  157. - Provide 6 evaluation metrics for attack methods and 9 evaluation metrics for defense methods.

MindArmour关注AI的安全和隐私问题。致力于增强模型的安全可信、保护用户的数据隐私。主要包含3个模块:对抗样本鲁棒性模块、Fuzz Testing模块、隐私保护与评估模块。 对抗样本鲁棒性模块 对抗样本鲁棒性模块用于评估模型对于对抗样本的鲁棒性,并提供模型增强方法用于增强模型抗对抗样本攻击的能力,提升模型鲁棒性。对抗样本鲁棒性模块包含了4个子模块:对抗样本的生成、对抗样本的检测、模型防御、攻防评估。