ssg-research / dawn-dynamic-adversarial-watermarking-of-neural-networks
Watermarking against model extraction attacks in MLaaS. ACM MM 2021.
☆33Updated 3 years ago
Alternatives and similar repositories for dawn-dynamic-adversarial-watermarking-of-neural-networks:
Users that are interested in dawn-dynamic-adversarial-watermarking-of-neural-networks are comparing it to the libraries listed below
- ☆45Updated 4 years ago
- Defending against Model Stealing via Verifying Embedded External Features☆35Updated 3 years ago
- Example of the attack described in the paper "Towards Poisoning of Deep Learning Algorithms with Back-gradient Optimization"☆21Updated 5 years ago
- Reference implementation of the PRADA model stealing defense. IEEE Euro S&P 2019.☆33Updated 6 years ago
- [CCS'22] SSLGuard: A Watermarking Scheme for Self-supervised Learning Pre-trained Encoders☆18Updated 2 years ago
- Website & Documentation: https://sbaresearch.github.io/model-watermarking/☆21Updated last year
- This is the official implementation of our paper 'Untargeted Backdoor Watermark: Towards Harmless and Stealthy Dataset Copyright Protecti…☆55Updated last year
- ☆21Updated 4 years ago
- ☆17Updated 3 years ago
- This is for releasing the source code of the ACSAC paper "STRIP: A Defence Against Trojan Attacks on Deep Neural Networks"☆55Updated 4 months ago
- [ICLR'21] Dataset Inference for Ownership Resolution in Machine Learning☆32Updated 2 years ago
- ☆17Updated 3 years ago
- This is the implementation of our paper 'Open-sourced Dataset Protection via Backdoor Watermarking', accepted by the NeurIPS Workshop on …☆20Updated 3 years ago
- CVPR 2021 Official repository for the Data-Free Model Extraction paper. https://arxiv.org/abs/2011.14779☆71Updated 11 months ago
- ☆23Updated 2 years ago
- ☆10Updated 3 years ago
- The code is for our NeurIPS 2019 paper: https://arxiv.org/abs/1910.04749☆33Updated 4 years ago
- Code for ML Doctor☆88Updated 7 months ago
- ☆19Updated 3 years ago
- Code release for DeepJudge (S&P'22)☆51Updated 2 years ago
- ☆42Updated last year
- Code for the paper: Label-Only Membership Inference Attacks☆64Updated 3 years ago
- [NeurIPS 2019] This is the code repo of our novel passport-based DNN ownership verification schemes, i.e. we embed passport layer into va…☆81Updated last year
- Implementation of Targeted Backdoor Attacks on Deep Learning Systems Using Data Poisoning paper☆20Updated 4 years ago
- ☆31Updated 6 months ago
- The official implementation of the IEEE S&P`22 paper "SoK: How Robust is Deep Neural Network Image Classification Watermarking".☆113Updated last year
- The implement of paper "How to Prove Your Model Belongs to You: A Blind-Watermark based Framework to Protect Intellectual Property of DNN…☆23Updated 4 years ago
- Prediction Poisoning: Towards Defenses Against DNN Model Stealing Attacks (ICLR '20)☆29Updated 4 years ago
- ABS: Scanning Neural Networks for Back-doors by Artificial Brain Stimulation☆50Updated 2 years ago
- PyTorch implementation of our ICLR 2023 paper titled "Is Adversarial Training Really a Silver Bullet for Mitigating Data Poisoning?".☆12Updated 2 years ago