Fine-tuning Is Not Enough: A Simple yet Effective Watermark Removal
Attack for DNN Models

v1v2 (latest)

Fine-tuning Is Not Enough: A Simple yet Effective Watermark Removal Attack for DNN Models

18 September 2020

Yi Zeng

Yang Liu

ArXiv (abs)PDF HTML

Papers citing "Fine-tuning Is Not Enough: A Simple yet Effective Watermark Removal Attack for DNN Models"

16 / 16 papers shown

Title
Removing Backdoor-Based Watermarks in Neural Networks with Limited Data Xuankai Liu Fengting Li Bihan Wen Qi Li AAML 63 61 0 02 Aug 2020
Neural Network Laundering: Removing Black-Box Backdoor Watermarks from Deep Neural Networks William Aiken Hyoungshick Kim Simon S. Woo 38 64 0 22 Apr 2020
Model Watermarking for Image Processing Networks Jie Zhang Dongdong Chen Jing Liao Han Fang Weiming Zhang Wenbo Zhou Hao Cui Nenghai Yu WIGM AAML 78 132 0 25 Feb 2020
REFIT: A Unified Watermark Removal Framework For Deep Learning Systems With Limited Data Xinyun Chen Wenxiao Wang Chris Bender Yiming Ding R. Jia Yue Liu Basel Alomair AAML 74 108 0 17 Nov 2019
[Extended version] Rethinking Deep Neural Network Ownership Verification: Embedding Passports to Defeat Ambiguity Attacks Lixin Fan Kam Woh Ng Chee Seng Chan AAML 50 192 0 16 Sep 2019
Bypassing Backdoor Detection Algorithms in Deep Learning T. Tan Reza Shokri FedML AAML 87 152 0 31 May 2019
Benchmarking Neural Network Robustness to Common Corruptions and Perturbations Dan Hendrycks Thomas G. Dietterich OOD VLM 191 3,445 0 28 Mar 2019
How to Prove Your Model Belongs to You: A Blind-Watermark based Framework to Protect Intellectual Property of DNN Zheng Li Chengyu Hu Yang Zhang Shanqing Guo AAML 55 173 0 05 Mar 2019
Robust Watermarking of Neural Network with Exponential Weighting Ryota Namba Jun Sakuma AAML 66 138 0 18 Jan 2019
Feature Distillation: DNN-Oriented JPEG Compression Against Adversarial Examples Zihao Liu Qi Liu Tao Liu Nuo Xu Xue Lin Yanzhi Wang Wujie Wen AAML MQ 59 262 0 14 Mar 2018
Turning Your Weakness Into a Strength: Watermarking Deep Neural Networks by Backdooring Yossi Adi Carsten Baum Moustapha Cissé Benny Pinkas Joseph Keshet 63 682 0 13 Feb 2018
Deflecting Adversarial Attacks with Pixel Deflection Aaditya (Adi) Prakash N. Moran Solomon Garber Antonella DiLillo J. Storer AAML 61 303 0 26 Jan 2018
Adversarial Frontier Stitching for Remote Neural Network Watermarking Erwan Le Merrer P. Pérez Gilles Trédan MLAU AAML 76 339 0 06 Nov 2017
Feature Squeezing: Detecting Adversarial Examples in Deep Neural Networks Weilin Xu David Evans Yanjun Qi AAML 87 1,271 0 04 Apr 2017
Embedding Watermarks into Deep Neural Networks Yusuke Uchida Yuki Nagai S. Sakazawa Shiníchi Satoh 122 610 0 15 Jan 2017
Deep Residual Learning for Image Recognition Kaiming He Xinming Zhang Shaoqing Ren Jian Sun MedIm 2.2K 194,322 0 10 Dec 2015