Copycat CNN: Are random non-Labeled data enough to steal knowledge from black-box models?

Jacson Rodrigues Correia da Silva; Rodrigo Ferreira Berriel; Claudine Badue; Alberto F. De Souza; Thiago Oliveira-Santos

Copycat CNN: Are random non-Labeled data enough to steal knowledge from black-box models?

Jacson Rodrigues Correia da Silva, Rodrigo Ferreira Berriel, Claudine Badue, Alberto F. De Souza, Thiago Oliveira-Santos

Published: 01 Jan 2021, Last Modified: 06 Jun 2025Pattern Recognit. 2021EveryoneRevisionsBibTeXCC BY-SA 4.0

Abstract: Highlights•Simple, yet powerful, method to copy a black-box CNN model with random natural images.•Some constraints are waived and copy attacks are performed with less information.•Understanding copy attacks with random natural images.•Throughout evaluation of copycat models created with random natural images.

Loading