Extending Null Embedding for Deep Neural Network (DNN) Watermarking

None, None; None, None; None, None

Extending Null Embedding for Deep Neural Network (DNN) Watermarking

Conference Paper (2025)

Author(s)

Kaan Altınay (Student TU Delft)

Devri İş Ler (IMDEA Networks Institute, Carlos III University of Madrid)

Zekeriya Erkin (TU Delft - Cyber Security)

Faculty

Electrical Engineering, Mathematics and Computer Science

DOI related publication

https://doi.org/10.5220/0013641200003979

Ownership Watermarking DNN Watermarking

To reference this document use:

https://resolver.tudelft.nl/uuid:68ee659d-4e9f-4ac8-b79a-b4c3b6951d6d

More Info

expand_more

Publication Year

2025

Language

English

Faculty

Electrical Engineering, Mathematics and Computer Science

Pages (from-to)

771-776

ISBN (print)

9789897587603

Abstract

The rise of Machine Learning (ML) has opened new business opportunities, particularly through Machine Learning as a Service (MLaaS), where costly models like Deep Neural Networks (DNNs) can be outsourced. However, this also raises concerns about model piracy. To protect against unauthorized use, watermarking techniques have been developed. One such method, null embedding by Li et al., disables the model if pirated but reduces classification accuracy. This paper proposes modifications to the null-embedding technique that reduce this impact and keep the classification accuracy close to that of a non-watermarked model.

No files available

Metadata only record. There are no files for this record.