Category Ranking
98%
Total Visits
921
Avg Visit Duration
2 minutes
Citations
20
Article Abstract
Currently, deep neural networks (DNNs) are widely adopted in different applications. Despite its commercial values, training a well-performing DNN is resource-consuming. Accordingly, the well-trained model is valuable intellectual property for its owner. However, recent studies revealed the threats of model stealing, where the adversaries can obtain a function-similar copy of the victim model, even when they can only query the model. In this paper, we propose an effective and harmless model ownership verification (MOVE) to defend against different types of model stealing simultaneously, without introducing new security risks. In general, we conduct the ownership verification by verifying whether a suspicious model contains the knowledge of defender-specified external features. Specifically, we embed the external features by modifying a few training samples with style transfer. We then train a meta-classifier to determine whether a model is stolen from the victim. This approach is inspired by the understanding that the stolen models should contain the knowledge of features learned by the victim model. In particular, we develop our MOVE method under both glass-boxand closed-box settings and analyze its theoretical foundation to provide comprehensive model protection. Extensive experiments on benchmark datasets verify the effectiveness of our method and its resistance to potential adaptive attacks.
Download full-text PDF |
Source |
|---|---|
| http://dx.doi.org/10.1109/TPAMI.2025.3546223 | DOI Listing |
Publication Analysis
Top Keywords
Similar Publications
Decentralizing video copyright protection: a novel blockchain-enabled framework with performance evaluation.
Front Artif Intell
August 2025
School of Computer Science and Engineering, VIT-AP University, Amaravati, Andhra Pradesh, India.
Introduction: Digital content, including images and videos, is increasingly ruling the online world, and so multimedia services form a part of this modern life. However, the digital resources face significant problems, especially regarding copyright infringement. In such an instance, any modification without authority infringes intellectual property rights.
View Article and Find Full Text PDFLight weight blockchain with IoT devices to secure smart non-fungible tokens using hybrid secure functions.
Sci Rep
August 2025
Business School, Hunan University, Changsha, 410082, China.
The rise of Non-Fungible Tokens (NFTs) and Internet of Things (IoT) devices created new demands for secure data management. To address these needs, we propose LIBLO, a lightweight blockchain-based smart NFT architecture designed for decentralized environments with limited resources. Traditional models mostly depend on heavy computation techniques to ensure the data security.
View Article and Find Full Text PDFDevelopment of a Machine Learning Model for Aspyre Lung Blood: A New Assay for Rapid Detection of Actionable Variants From Plasma in Patients With Non-Small Cell Lung Cancer.
JCO Clin Cancer Inform
August 2025
Biofidelity Ltd, Cambridge, United Kingdom.
Purpose: Aspyre Lung is a targeted biomarker panel of 114 genomic variants across 11 guideline-recommended genes with simultaneous DNA and RNA for non-small cell lung cancer (NSCLC). In this study, we developed a machine learning algorithm to interpret fluorescence data outputs from Aspyre Lung, enabling the assay to be applied to both plasma and tissue samples.
Materials And Methods: Data for model training and testing were generated from over 13,500 DNA and RNA contrived samples, with variants spiked in at a variant allele frequency (VAF) of 0.
Robust zero-watermarking for color images using hybrid deep learning models and encryption.
Sci Rep
August 2025
Department of Information Technology, Faculty of Computers and Information, Zagazig University, P.O.BOX:44519, Zagazig, Egypt.
Reliable zero-watermarking is a distortion-free approach to copyright protection, which has been a primary focus of digital watermarking research. Traditional zero-watermarking techniques often struggle to maintain resilience against geometric and signal processing attacks while ensuring high security and imperceptibility. Many existing methods fail to extract stable and distinguishable features, making them vulnerable to image distortions such as compression, filtering, and geometric transformations.
View Article and Find Full Text PDFReference intervals for serum albumin, total protein, and prealbumin in healthy children in Nanning, China.
Biomark Med
August 2025
Department of Clinical Laboratory, Guangxi International Zhuang Medicine Hospital Affiliated to Guangxi University of Chinese Medicine, Nanning, Guangxi, China.
Aim: The diagnosis, treatment, and prognosis of childhood diseases rely on accurately establishing reference intervals (RIs). The aim of this study was to determine the RIs of albumin (ALB), total protein (TP), and prealbumin (PA) in children in Nanning, China, according to age, gender, and ethnicity.
Methods: A total of 4001 apparently healthy children aged 0 ~ 18 years from the Nanning area were included.