Skip to content
/ MLPdatatrap-example Public

An illustrative implementation of an MLP "data trap"

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hkscy/MLPdatatrap-example

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
example_plots
example_plots
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
datatrap_plot_sgd_adam.py
datatrap_plot_sgd_adam.py
 
 
neuron_stats.py
neuron_stats.py
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

An illustrative implementation of a privacy backdoor "data trap" on a small MNIST MLP model based on Privacy Backdoors: Stealing Data with Corrupted Pretrained Models by Feng and Tramèr.

MNIST 10 example with modified pixel to test data trapping.

Was written for an article describing the attack and its limitations which you can find on my blog.

Install

Tested only on macOS 13.7.3 and Python 3.10.14.

git clone https://github.com/hkscy/MLPdatatrap-example.git
cd MLPdatatrap-example
conda create --name datatraps --file requirements.txt

Run

Steps below will download MNIST 10, train an MLP on the dataset, backdoor a copy of the model, and then finetune both corrupted and uncorrupted models using each of SGD and Adam optimisation. Plots of the activations, loss gradients, and weight updates are output for all 4 models along with fine-grained data and the recovered (or not) finetuning data.

conda activate datatraps
python datatrap_plot_sgd_adam.py

About

An illustrative implementation of an MLP "data trap"

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages