These codes are for VGG16 on CIFAR10 with SNL. These codes search for the potential boundary in our Algorithm 1's Phase I.

Dependency:

1. Install kornia by: pip install kornia
2. Install ptflops by: pip install ptflops
3. Create the forlder './checkpoints/' and put the model there.
4. This attack requires 100GiB RAM.

To perform the Distillation-Based Inverse Network Attack (DINA):

1. run "dina_generate_training_set.py" to generate required feature maps through command: python dina_generate_training_set.py

2. run "dina_find_boundary.py" to find the boundary python dina_find_boundary.py

3. The potential boundary is returned. You could also check the results in './dina_log_search_boundary.txt'