Protecting ownership rights of ML models using watermarking in the light of adversarial attacks

Kapusta, Katarzyna; Mattioli, Lucas; Addad, Boussad; Lansari, Mohammed

doi:10.1007/s43681-023-00412-3

AI Ethics

2024

DOI: 10.1007/s43681-023-00412-3

|View full text |Cite

Protecting ownership rights of ML models using watermarking in the light of adversarial attacks

Katarzyna Kapusta,

Lucas Mattioli,

Boussad Addad

et al.

Abstract: In this paper, we present and analyze two novel -and seemingly distant -research trends in Machine Learning: ML watermarking and adversarial patches. First, we show how ML watermarking uses specially crafted inputs to provide a proof of model ownership. Second, we demonstrate how an attacker can craft adversarial samples in order to trigger an abnormal behavior in a model and thus perform an ambiguity attack on ML watermarking. Finally, we describe three countermeasures that could be applied in order to preven… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...

Citation Types

Supporting

Mentioning

Contrasting

Year Published

2024

Publication Types

Select...

Article1

Relationship

Self Cite0

Independent1

Authors

Journals

Cited by 1 publication

References 13 publications

(13 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

An overview of key trustworthiness attributes and KPIs for trusted ML-based systems engineering

Mattioli,

Sohier,

Delaborde

et al. 2024

AI Ethics

View full text Add to dashboard Cite

When deployed, machine-learning (ML) adoption depends on its ability to actually deliver the expected service safely, and to meet user expectations in terms of quality and continuity of service. For instance, the users expect that the technology will not do something it is not supposed to do, e.g., performing actions without informing users. Thus, the use of Artificial Intelligence (AI) in safety-critical systems such as in avionics, mobility, defense, and healthcare requires proving their trustworthiness through out its overall lifecycle (from design to deployment). Based on surveys on quality measures, characteristics and sub-characteristics of AI systems, the Confiance.ai program (www.confiance.ai) aims to identify the relevant trustworthiness attributes and their associated Key Performance Indicators (KPI) or their associated methods for assessing the induced level of trust. Motivation for ML trustworthiness assessmentTrustworthiness is tightly related to accountability: accountability can be considered as a factor of trust or as an alternative to trust [57]. Then, in [4], dependability is used to represent the overall quality measure of a system based on four sub-attributes including security, safety, reliability, and maintainability. Thereafter, security and dependability became key attributes for computer-based system trust [8]. In 2019, the U.S. National Artificial Intelligence Research and Development Strategic Plan [54] emphasized that: "standard metrics are needed to define quantifiable measures in order to characterize AI technologies". More recently, [65] noted that "significant work is needed to establish what appropriate metrics should be to assess system performance across attributes for responsible AI and across profiles for particular applications/contexts.".The Assessment List for Trustworthy AI [1] considers 7 pillars of trustworthiness: 1) human agency and autonomy, 2) technical robustness and safety, 3) privacy and data governance, 4) transparency, 5) diversity, non discrimination and fairness, 6) societal and environmental well-being, 7) accountability. The European Commission has proposed a set of rules for AI, the AI Act [19], regulating the technology. Such proposals, which are still at the consultation stage, would apply to AI systems developed or deployed in the EU

show abstract

An overview of key trustworthiness attributes and KPIs for trusted ML-based systems engineering

Mattioli,

Sohier,

Delaborde

et al. 2024

AI Ethics

View full text Add to dashboard Cite

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Protecting ownership rights of ML models using watermarking in the light of adversarial attacks

Cited by 1 publication

References 13 publications

An overview of key trustworthiness attributes and KPIs for trusted ML-based systems engineering

An overview of key trustworthiness attributes and KPIs for trusted ML-based systems engineering

Contact Info

Product

Resources

About