Deep Neural Network Fingerprinting by Conferrable Adversarial ExamplesDownload PDFOpen Website

Nils Lukas, Yuxuan Zhang, Florian Kerschbaum

2021 (modified: 14 Nov 2022)ICLR 2021Readers: Everyone
Abstract: In Machine Learning as a Service, a provider trains a deep neural network and gives many users access. The hosted (source) model is susceptible to model stealing attacks, where an adversary derives...
0 Replies