English
Related papers

Related papers: Stateful Detection of Model Extraction Attacks

200 papers

Leakage of data from publicly available Machine Learning (ML) models is an area of growing significance as commercial and government applications of ML can draw on multiple sources of data, potentially including users' and clients'…

Machine learning involves expensive data collection and training procedures. Model owners may be concerned that valuable intellectual property can be leaked if adversaries mount model extraction attacks. As it is difficult to defend against…

Cryptography and Security · Computer Science 2021-02-22 Hengrui Jia , Christopher A. Choquette-Choo , Varun Chandrasekaran , Nicolas Papernot

Advanced Persistent Threats (APTs) present a considerable challenge to cybersecurity due to their stealthy, long-duration nature. Traditional supervised learning methods typically require large amounts of labeled data, which is often scarce…

Cryptography and Security · Computer Science 2025-09-08 Sidahmed Benabderrahmane , Talal Rahwan

These days more companies are shifting towards using cloud environments to provide their services to their client. While it is easy to set up a cloud environment, it is equally important to monitor the system's runtime behaviour and…

Distributed, Parallel, and Cluster Computing · Computer Science 2022-07-26 Clinton Cao , Agathe Blaise , Sicco Verwer , Filippo Rebecchi

Nowadays, numerous applications incorporate machine learning (ML) algorithms due to their prominent achievements. However, many studies in the field of computer vision have shown that ML can be fooled by intentionally crafted instances,…

Cryptography and Security · Computer Science 2023-03-14 Islam Debicha , Benjamin Cochez , Tayeb Kenaza , Thibault Debatty , Jean-Michel Dricot , Wim Mees

Federated Learning enables collaborative training of a global model across multiple geographically dispersed clients without the need for data sharing. However, it is susceptible to inference attacks, particularly label inference attacks.…

Machine Learning · Computer Science 2025-05-01 Zhixuan Ma , Haichang Gao , Junxiang Huang , Ping Wang

As machine learning models become increasingly deployed across the edge of internet of things environments, a partitioned deep learning paradigm in which models are split across multiple computational nodes introduces a new dimension of…

Machine Learning · Computer Science 2025-07-11 Giulio Rossolini , Fabio Brau , Alessandro Biondi , Battista Biggio , Giorgio Buttazzo

Federated learning has seen increased adoption in recent years in response to the growing regulatory demand for data privacy. However, the opaque local training process of federated learning also sparks rising concerns about model…

Artificial Intelligence · Computer Science 2023-08-24 Yuxi Mi , Yiheng Sun , Jihong Guan , Shuigeng Zhou

We describe a threat model under which a split network-based federated learning system is susceptible to a model inversion attack by a malicious computational server. We demonstrate that the attack can be successfully performed with limited…

Machine Learning · Computer Science 2021-04-22 Tom Titcombe , Adam J. Hall , Pavlos Papadopoulos , Daniele Romanini

Obtaining a well-trained model involves expensive data collection and training procedures, therefore the model is a valuable intellectual property. Recent studies revealed that adversaries can `steal' deployed models even when they have no…

Cryptography and Security · Computer Science 2021-12-08 Yiming Li , Linghui Zhu , Xiaojun Jia , Yong Jiang , Shu-Tao Xia , Xiaochun Cao

Magecart skimming attacks have emerged as a significant threat to client-side security and user trust in online payment systems. This paper addresses the challenge of achieving robust and explainable detection of Magecart attacks through a…

Cryptography and Security · Computer Science 2025-11-07 Pedro Pereira , José Gouveia , João Vitorino , Eva Maia , Isabel Praça

Model stealing (MS) involves querying and observing the output of a machine learning model to steal its capabilities. The quality of queried data is crucial, yet obtaining a large amount of real data for MS is often challenging. Recent…

Computer Vision and Pattern Recognition · Computer Science 2024-06-28 Yunlong Zhao , Xiaoheng Deng , Yijing Liu , Xinjun Pei , Jiazhi Xia , Wei Chen

Machine learning (ML) started to become widely deployed in cyber security settings for shortening the detection cycle of cyber attacks. To date, most ML-based systems are either proprietary or make specific choices of feature…

Cryptography and Security · Computer Science 2019-07-11 Talha Ongun , Timothy Sakharaov , Simona Boboila , Alina Oprea , Tina Eliassi-Rad

Large language models (LLMs) demonstrate remarkable capabilities across various tasks. However, their deployment introduces significant risks related to intellectual property. In this context, we focus on model stealing attacks, where…

Cryptography and Security · Computer Science 2025-10-28 Kieu Dang , Phung Lai , NhatHai Phan , Yelong Shen , Ruoming Jin , Abdallah Khreishah

Machine learning models are famously vulnerable to adversarial attacks: small ad-hoc perturbations of the data that can catastrophically alter the model predictions. While a large literature has studied the case of test-time attacks on…

Machine Learning · Statistics 2023-11-01 Riccardo Giuseppe Margiotta , Sebastian Goldt , Guido Sanguinetti

This paper discusses the problem of estimating the state of a linear time-invariant system when some of its sensors and actuators are compromised by an adversarial agent. In the model considered in this paper, the malicious agent attacks an…

Optimization and Control · Mathematics 2019-04-04 Mehrdad Showkatbakhsh , Yasser Shoukry , Suhas Diggavi , Paulo Tabuada

Model extraction emerges as a critical security threat with attack vectors exploiting both algorithmic and implementation-based approaches. The main goal of an attacker is to steal as much information as possible about a protected victim…

Cryptography and Security · Computer Science 2024-11-18 Kevin Hector , Pierre-Alain Moellic , Mathieu Dumont , Jean-Max Dutertre

The widespread adoption of cloud computing, edge, and IoT has increased the attack surface for cyber threats. This is due to the large-scale deployment of often unsecured, heterogeneous devices with varying hardware and software…

Cryptography and Security · Computer Science 2024-07-23 Simone Magnani , Liubov Nedoshivina , Roberto Doriguzzi-Corin , Stefano Braghin , Domenico Siracusa

Due to the proliferation of malware, defenders are increasingly turning to automation and machine learning as part of the malware detection tool-chain. However, machine learning models are susceptible to adversarial attacks, requiring the…

Cryptography and Security · Computer Science 2024-01-17 Maria Rigaki , Sebastian Garcia

Recent work has proposed stateful defense models (SDMs) as a compelling strategy to defend against a black-box attacker who only has query access to the model, as is common for online machine learning platforms. Such stateful defenses aim…

Cryptography and Security · Computer Science 2023-09-27 Ryan Feng , Ashish Hooda , Neal Mangaokar , Kassem Fawaz , Somesh Jha , Atul Prakash