Identifying Appropriate Intellectual Property Protection Mechanisms for Machine Learning Models: A Systematization of Watermarking, Fingerprinting, Model Access, and Attacks

TOP Literature Database Identifying Appropriate Intellectual Property Protection Mechanisms for Machine Learning Models: A Systematization of Watermarking, Fingerprinting, Model Access, and Attacks

arxiv

AI Security Portal bot

Information in the literature database is collected automatically.

Source

https://arxiv.org/abs/2304.11285

PDF

https://arxiv.org/pdf/2304.11285

Paper Information

Author: Isabell Lederer;Rudolf Mayer;Andreas Rauber
Published: 4-22-2023
Affiliation: SBA Research
Country: Austria
Conference: Computing Research Repository (CoRR)

Labels Estimated by AI

Membership Inference Watermarking DNN IP Protection Method

These labels were automatically added by AI and may be inaccurate.
For details, see About Literature Database.

Abstract

The commercial use of Machine Learning (ML) is spreading; at the same time, ML models are becoming more complex and more expensive to train, which makes Intellectual Property Protection (IPP) of trained models a pressing issue. Unlike other domains that can build on a solid understanding of the threats, attacks and defenses available to protect their IP, the ML-related research in this regard is still very fragmented. This is also due to a missing unified view as well as a common taxonomy of these aspects. In this paper, we systematize our findings on IPP in ML, while focusing on threats and attacks identified and defenses proposed at the time of writing. We develop a comprehensive threat model for IP in ML, categorizing attacks and defenses within a unified and consolidated taxonomy, thus bridging research from both the ML and security communities.