https://github.com/cdluminate/advrank
Adversarial Ranking Attack and Defense, ECCV, 2020.
https://github.com/cdluminate/advrank
adversarial-attacks adversarial-defense adversarial-machine-learning eccv-2020 metric-learning ranking
Last synced: 3 months ago
JSON representation
Adversarial Ranking Attack and Defense, ECCV, 2020.
- Host: GitHub
- URL: https://github.com/cdluminate/advrank
- Owner: cdluminate
- Created: 2020-06-07T04:12:55.000Z (almost 6 years ago)
- Default Branch: master
- Last Pushed: 2021-09-16T01:40:54.000Z (over 4 years ago)
- Last Synced: 2025-03-18T20:13:15.589Z (about 1 year ago)
- Topics: adversarial-attacks, adversarial-defense, adversarial-machine-learning, eccv-2020, metric-learning, ranking
- Language: Python
- Homepage: https://arxiv.org/abs/2002.11293
- Size: 55.5 MB
- Stars: 24
- Watchers: 3
- Forks: 5
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
Adversarial Ranking Attack and Defense (ECCV2020)
===
Materials for ECCV-2020 Paper #2274.
* **Title:** Adversarial Ranking Attack and Defense
* **Authors:** Mo Zhou, Zhenxing Niu, Le Wang, Qilin Zhang, Gang Hua
* **Preprint:** [https://arxiv.org/abs/2002.11293](https://arxiv.org/abs/2002.11293)
* **Full-Preprint:** [2002.11293v3-full.pdf (with more graphs)](assets/2002.11293v3-full.pdf)
* **Video:** [{Bilibili(English)}](https://www.bilibili.com/video/BV1ih411Z7Rn/) [{Bilibili(Chinese)}](https://www.bilibili.com/video/BV1fZ4y1T7oC/) [{Youtube(English)}](https://www.youtube.com/watch?v=vlxfQ-Ip1lQ)
* **Slides:** [(One-page version)](assets/eccv20-short.pdf) [(long version)](assets/eccv20-long.pdf)
* **Code:** [Code is available here.](Code/) (Released on Aug 24) [Or you may want to try it on colab.](https://colab.research.google.com/drive/1bL15SYdV5oB3F-uQdV8trXnwVmPM2YAx?usp=sharing)
### NEWS & Updates
1. [Substantial progress](https://github.com/cdluminate/robrank) (at least 60% and at most 540% robustness improvement) based on this conference paper is available as a preprint. **NOTE:** If you want to do some further research based on this ECCV 2020 paper, please have a look at this preprint paper to better understand the limitations of the ECCV 2020 work.
## Demonstration
## Contributions
Definition of *Adversarial ranking attack*: adversarial ranking attack aims
*raise* or *lower* the ranks of some chosen candidates C={c₁,c₂, ... ,cₘ} with
respect to a specific query set Q={q₁,q₂, ... ,qw}. This can be achieved by
either Candidate Attack (CA) or Query Attack (QA).
1. The adversarial ranking attack is defined and implemented, which can
intentionally change the ranking results by perturbing the candidates
or queries.
2. An adversarial ranking defense method is proposed to improve the
ranking model robustness, and mitigate all the proposed attacks
simultaneously.
## License and Bibtex
The paper (PDF file) is distributed under the [CC BY-SA-NC 4.0 License](https://creativecommons.org/licenses/by-nc-sa/4.0/).
The code is published under the [Apache-2.0 License](https://www.apache.org/licenses/LICENSE-2.0).
Bibtex for the ECCV version:
```bib
@InProceedings{advrank,
title={Adversarial Ranking Attack and Defense},
author={Zhou, Mo and Niu, Zhenxing and Wang, Le and Zhang, Qilin and Hua, Gang},
booktitle={ECCV},
year={2020},
pages={781--799},
isbn={978-3-030-58568-6}
}
```
Bibtex for the ArXiv preprint version:
```bib
@article{zhou2020advrank,
title={Adversarial Ranking Attack and Defense},
author={Zhou, Mo and Niu, Zhenxing and Wang, Le and Zhang, Qilin and Hua, Gang},
journal={arXiv preprint arXiv:2002.11293},
year={2020}
}
```
## References
1. [A. Madry et.al. Towards Deep Learning Models Resistant to Adversarial Attacks](https://arxiv.org/abs/1706.06083)