Skip to content

Documentation for Noiseinjection Module

NoiseInjectionAttack

Bases: ModelAttack

Implements a noise injection attack on the received model weights.

This attack introduces noise into the model weights by adding random values scaled by a specified strength, potentially disrupting the model’s behavior.

Parameters:

Name Type Description Default
engine object

The training engine object that manages the aggregator.

 required
attack_params dict

Parameters for the attack, including: - strength (int): The strength of the noise to be injected into the weights.

 required
Source code in nebula/addons/attacks/model/noiseinjection.py 
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
class NoiseInjectionAttack(ModelAttack):
    """
    Implements a noise injection attack on the received model weights.

    This attack introduces noise into the model weights by adding random values
    scaled by a specified strength, potentially disrupting the model’s behavior.

    Args:
        engine (object): The training engine object that manages the aggregator.
        attack_params (dict): Parameters for the attack, including:
            - strength (int): The strength of the noise to be injected into the weights.
    """

    def __init__(self, engine, attack_params):
        """
        Initializes the NoiseInjectionAttack with the specified engine and parameters.

        Args:
            engine (object): The training engine object.
            attack_params (dict): Dictionary of attack parameters, including strength.
        """
        try:
            round_start = int(attack_params["round_start_attack"])
            round_stop = int(attack_params["round_stop_attack"])
            attack_interval = int(attack_params["attack_interval"])
        except KeyError as e:
            raise ValueError(f"Missing required attack parameter: {e}")
        except ValueError:
            raise ValueError("Invalid value in attack_params. Ensure all values are integers.")

        super().__init__(engine, round_start, round_stop, attack_interval)

        self.strength = int(attack_params["strength"])

    def model_attack(self, received_weights):
        """
        Performs the noise injection attack by adding random noise to the model weights.

        The noise is generated from a normal distribution and scaled by the
        specified strength, modifying each layer's weights in the model.

        Args:
            received_weights (dict): The aggregated model weights to be modified.

        Returns:
            dict: The modified model weights after applying the noise injection attack.
        """
        logging.info(f"[NoiseInjectionAttack] Performing noise injection attack with a strength of {self.strength}")
        lkeys = list(received_weights.keys())
        for k in lkeys:
            logging.info(f"Layer noised: {k}")
            received_weights[k].data += torch.randn(received_weights[k].shape) * self.strength
        return received_weights

__init__(engine, attack_params)

Initializes the NoiseInjectionAttack with the specified engine and parameters.

Parameters:

Name Type Description Default
engine object

The training engine object.

 required
attack_params dict

Dictionary of attack parameters, including strength.

 required
Source code in nebula/addons/attacks/model/noiseinjection.py 
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
def __init__(self, engine, attack_params):
    """
    Initializes the NoiseInjectionAttack with the specified engine and parameters.

    Args:
        engine (object): The training engine object.
        attack_params (dict): Dictionary of attack parameters, including strength.
    """
    try:
        round_start = int(attack_params["round_start_attack"])
        round_stop = int(attack_params["round_stop_attack"])
        attack_interval = int(attack_params["attack_interval"])
    except KeyError as e:
        raise ValueError(f"Missing required attack parameter: {e}")
    except ValueError:
        raise ValueError("Invalid value in attack_params. Ensure all values are integers.")

    super().__init__(engine, round_start, round_stop, attack_interval)

    self.strength = int(attack_params["strength"])

model_attack(received_weights)

Performs the noise injection attack by adding random noise to the model weights.

The noise is generated from a normal distribution and scaled by the specified strength, modifying each layer's weights in the model.

Parameters:

Name Type Description Default
received_weights dict

The aggregated model weights to be modified.

 required

Returns:

Name Type Description
dict

The modified model weights after applying the noise injection attack.
Source code in nebula/addons/attacks/model/noiseinjection.py 
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
def model_attack(self, received_weights):
    """
    Performs the noise injection attack by adding random noise to the model weights.

    The noise is generated from a normal distribution and scaled by the
    specified strength, modifying each layer's weights in the model.

    Args:
        received_weights (dict): The aggregated model weights to be modified.

    Returns:
        dict: The modified model weights after applying the noise injection attack.
    """
    logging.info(f"[NoiseInjectionAttack] Performing noise injection attack with a strength of {self.strength}")
    lkeys = list(received_weights.keys())
    for k in lkeys:
        logging.info(f"Layer noised: {k}")
        received_weights[k].data += torch.randn(received_weights[k].shape) * self.strength
    return received_weights