Cargando…
Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code
Deep Neural Network (DNN) watermarking techniques are increasingly being used to protect the intellectual property of DNN models. Basically, DNN watermarking is a technique to insert side information into the DNN model without significantly degrading the performance of its original task. A pruning a...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2022
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9224781/ https://www.ncbi.nlm.nih.gov/pubmed/35735951 http://dx.doi.org/10.3390/jimaging8060152 |
| _version_ | 1784733452515409920 |
|---|---|
| author | Yasui, Tatsuya Tanaka, Takuro Malik, Asad Kuribayashi, Minoru |
| author_facet | Yasui, Tatsuya Tanaka, Takuro Malik, Asad Kuribayashi, Minoru |
| author_sort | Yasui, Tatsuya |
| collection | PubMed |
| description | Deep Neural Network (DNN) watermarking techniques are increasingly being used to protect the intellectual property of DNN models. Basically, DNN watermarking is a technique to insert side information into the DNN model without significantly degrading the performance of its original task. A pruning attack is a threat to DNN watermarking, wherein the less important neurons in the model are pruned to make it faster and more compact. As a result, removing the watermark from the DNN model is possible. This study investigates a channel coding approach to protect DNN watermarking against pruning attacks. The channel model differs completely from conventional models involving digital images. Determining the suitable encoding methods for DNN watermarking remains an open problem. Herein, we presented a novel encoding approach using constant weight codes to protect the DNN watermarking against pruning attacks. The experimental results confirmed that the robustness against pruning attacks could be controlled by carefully setting two thresholds for binary symbols in the codeword. |
| format | Online Article Text |
| id | pubmed-9224781 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2022 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-92247812022-06-24 Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code Yasui, Tatsuya Tanaka, Takuro Malik, Asad Kuribayashi, Minoru J Imaging Article Deep Neural Network (DNN) watermarking techniques are increasingly being used to protect the intellectual property of DNN models. Basically, DNN watermarking is a technique to insert side information into the DNN model without significantly degrading the performance of its original task. A pruning attack is a threat to DNN watermarking, wherein the less important neurons in the model are pruned to make it faster and more compact. As a result, removing the watermark from the DNN model is possible. This study investigates a channel coding approach to protect DNN watermarking against pruning attacks. The channel model differs completely from conventional models involving digital images. Determining the suitable encoding methods for DNN watermarking remains an open problem. Herein, we presented a novel encoding approach using constant weight codes to protect the DNN watermarking against pruning attacks. The experimental results confirmed that the robustness against pruning attacks could be controlled by carefully setting two thresholds for binary symbols in the codeword. MDPI 2022-05-26 /pmc/articles/PMC9224781/ /pubmed/35735951 http://dx.doi.org/10.3390/jimaging8060152 Text en © 2022 by the authors. https://creativecommons.org/licenses/by/4.0/Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (https://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Yasui, Tatsuya Tanaka, Takuro Malik, Asad Kuribayashi, Minoru Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code |
| title | Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code |
| title_full | Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code |
| title_fullStr | Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code |
| title_full_unstemmed | Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code |
| title_short | Coded DNN Watermark: Robustness against Pruning Models Using Constant Weight Code |
| title_sort | coded dnn watermark: robustness against pruning models using constant weight code |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC9224781/ https://www.ncbi.nlm.nih.gov/pubmed/35735951 http://dx.doi.org/10.3390/jimaging8060152 |
| work_keys_str_mv | AT yasuitatsuya codeddnnwatermarkrobustnessagainstpruningmodelsusingconstantweightcode AT tanakatakuro codeddnnwatermarkrobustnessagainstpruningmodelsusingconstantweightcode AT malikasad codeddnnwatermarkrobustnessagainstpruningmodelsusingconstantweightcode AT kuribayashiminoru codeddnnwatermarkrobustnessagainstpruningmodelsusingconstantweightcode |