Rethinking White-Box Watermarks on Deep Learning Models under Neural Structural Obfuscation.
Yifan YanXudong PanMi ZhangMin YangPublished in: USENIX Security Symposium (2023)
Keyphrases
- learning models
- white box
- black box
- source code
- semi supervised learning
- machine learning
- learning algorithm
- learning tasks
- loss function
- classification models
- machine learning algorithms
- learning problems
- conditional random fields
- reverse engineering
- neural network
- test data
- watermarking scheme
- maximum likelihood
- open source
- test cases
- higher order
- high dimensional
- object recognition
- training data
- genetic algorithm
- data mining