Protecting artificial intelligence IPs: a survey of watermarking and fingerprinting for machine learning

Loading...
Thumbnail Image
Files
cit2.12029.pdf(427.88 KB)
Published Version
Date
2021-04-04
Authors
Regazzoni, Francesco
Palmieri, Paolo
Smailbegovic, Fethulah
Cammarota, Rosario
Polian, Ilia
Journal Title
Journal ISSN
Volume Title
Publisher
Institution of Engineering and Technology (IET)
Published Version
Research Projects
Organizational Units
Journal Issue
Abstract
Artificial intelligence (AI) algorithms achieve outstanding results in many application domains such as computer vision and natural language processing. The performance of AI models is the outcome of complex and costly model architecture design and training processes. Hence, it is paramount for model owners to protect their AI models from piracy – model cloning, illegitimate distribution and use. IP protection mechanisms have been applied to AI models, and in particular to deep neural networks, to verify the model ownership. State-of-the-art AI model ownership protection techniques have been surveyed. The pros and cons of AI model ownership protection have been reported. The majority of previous works are focused on watermarking, while more advanced methods such fingerprinting and attestation are promising but not yet explored in depth. This study has been concluded by discussing possible research directions in the area.
Description
Keywords
Artificial intelligence , AI models , Piracy , IP protection mechanisms
Citation
Regazzoni, F., Palmieri, P., Smailbegovic, F., Cammarota, R. and Polian, I. (2021) 'Protecting artificial intelligence IPs: a survey of watermarking and fingerprinting for machine learning', CAAI Transactions on Intelligence Technology, 6(2), pp. 180-191. doi: 10.1049/cit2.12029