Skip to content

mvujas/mmiat

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
examples
examples
 
 
src/mmiat
src/mmiat
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pyproject.toml
pyproject.toml
 
 

Repository files navigation

MMiat: Minimal Membership Inference Attack Toolkit

MMiat is a Python library for implementing and evaluating Membership Inference Attacks (MIAs) on machine learning models. It provides a simple and efficient way to test the privacy vulnerabilities of trained models by determining whether a given data point was used during training.

Features

  • Seamless PyTorch Integration: Works directly with your existing PyTorch models and datasets
  • Minimal Code Changes: Evaluate privacy risks with just a few lines of code
  • Compatible with Standard ML Workflows: Fits naturally into your existing training and evaluation pipelines
  • Implementation of various membership inference attacks (currently including Loss Attack)
  • Utilities for dataset partitioning and attack evaluation
  • Metrics calculation for attack performance (AUC, accuracy)
  • Visualization tools for comparing different attacks
  • Reproducibility utilities for consistent results

Installation

You can install MMiat directly from GitHub using pip:

pip install git+https://github.com/mvujas/mmiat

Requirements

  • Python 3.8 or higher

Quick Start

The library provides a simple interface for implementing membership inference attacks. Here's a basic example:

from mmiat.attacks import LossAttack
from mmiat.utils.data import AttackPredictionDataset
from mmiat.evaluation.aggregate_metrics import calculate_miametrics
from mmiat.evaluation.reporting.plot import create_mia_metric_report

# Create an attack instance
attack = LossAttack(device="cuda" if torch.cuda.is_available() else "cpu")

# Prepare your dataset for attack
attack_dataset = AttackPredictionDataset(trainset, nontrainset)

# Perform the attack
membership_labels, confidences = attack.attack(model, attack_dataset)

# Calculate metrics
metrics = calculate_miametrics(membership_labels, confidences)

# Visualize results
create_mia_metric_report(metrics, attack_name="Loss Attack", extras=["auc", "accuracy"])

Integration with Your ML Pipeline

MMiat is designed to work seamlessly with your existing ML workflow:

  1. Train your model as usual with PyTorch
  2. Partition your data using the provided utilities
  3. Run the attack with minimal additional code
  4. Evaluate and visualize the results

No need to modify your model architecture or training process - just add a few lines of code to assess privacy risks.

Examples

Check out the examples directory for more detailed usage examples:

  • Attacking a Simple Classifier: Demonstrates how to perform a membership inference attack on a simple convolutional network trained on CIFAR-10.

License

This project is licensed under the terms of the license included in the LICENSE file.

About

Minimal Membership-Inference Attack (MIA) Toolkit

Topics

membership-inference-attack mlprivacy

Resources

Readme

License

CC-BY-4.0 license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages