Loading [MathJax]/extensions/MathZoom.js
A Novel Weights-less Watermark Embedding Method for Neural Network Models | IEEE Conference Publication | IEEE Xplore
Subscribe
ADVANCED SEARCH
Conferences >2023 22nd International Sympo...

A Novel Weights-less Watermark Embedding Method for Neural Network Models

PDF
Haiyu Deng; Xu Wang; Guangsheng Yu; Xiaocui Dang; Ren Ping Liu
All Authors

Abstract:

Deep learning-based Artificial Intelligence (AI) technology has been extensively used recently. AI model theft is a regular occurrence. As a result, many academics focus ...Show More

Metadata

Abstract:

Deep learning-based Artificial Intelligence (AI) technology has been extensively used recently. AI model theft is a regular occurrence. As a result, many academics focus their efforts on safeguarding the Intellectual Property (IP) of trained Neural Network (NN) models. The majority of the most recent white-box setting watermark embedding methods rely on modifying model weights. Weights updated for the NN model during training must take into account the initial task as well as the embedding of watermarks. As a result, the accuracy of the initial task will be affected, necessitating more training time. This research proposes a novel weights-less watermark embedding method for deep neural networks to address this issue. Without actually embedding the watermark within the NN model weights, it uses a principle of code matching between the watermark and the weights. The proposed method requires less time than existing white-box setting watermark embedding methods, and the accuracy of the original task is not much diminished. Additionally, since the NN model weights are left alone, their statistical distribution will remain unchanged, giving the model increased resistance to watermark detection. The experiments in this paper demonstrate the effectiveness, efficiency, and robustness of our method.
Published in: 2023 22nd International Symposium on Communications and Information Technologies (ISCIT)
Date of Conference: 16-18 October 2023
Date Added to IEEE Xplore: 03 January 2024
ISBN Information:

ISSN Information:

DOI: 10.1109/ISCIT57293.2023.10376108
Conference Location: Sydney, Australia
Contents

I. Introduction

Artificial Intelligence (AI) is used widely in fields like Computer Vision (CV) [1] and Natural Language Processing (NLP) [2] thanks to advances in machine learning and deep learning. Deep neural networks are the primary training method for AI models. It costs money to train AI models since it requires a lot of computing power in addition to enormous datasets. For instance, it is estimated that it costs tens of millions of dollars to train the currently popular ChatGPT model [3]. Therefore, the AI model is highly valuable to the owner, and its IP should be secured [4]. While making models open source is beneficial for advancing deep learning research and development, malevolent people frequently utilize NN models without authorization. They are frequently employed for commercial endeavors, resulting in enormous financial gains, which gravely jeopardizes the IP rights and legal advantages of the NN model owners. Therefore, it is essential and urgent to design a method that can effectively secure the NN model’s copyright ownership.

Contact IEEE to Subscribe
More Like This
Damageless Digital Watermarking by Machine Learning: A Method of Key Generation for Information Extraction Using Artificial Neural Networks

2009 International Conference of Soft Computing and Pattern Recognition

Published: 2009

Estimation of the Earth Resistance by Artificial Neural Network Model

IEEE Transactions on Industry Applications

Published: 2015

Show More

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.