DisGUIDE: Disagreement-Guided Data-Free Model Extraction
نویسندگان
چکیده
Recent model-extraction attacks on Machine Learning as a Service (MLaaS) systems have moved towards data-free approaches, showing the feasibility of stealing models trained with difficult-to-access data. However, these are ineffective or limited due to low accuracy extracted and high number queries under attack. The query cost makes such techniques infeasible for online MLaaS that charge per query. We create novel approach get higher efficiency than prior model extraction techniques. Specifically, we introduce generator training scheme maximizes disagreement loss between two clone attempt copy This loss, combined diversity experience replay, enables produce better instances train models. Our evaluation popular datasets CIFAR-10 CIFAR-100 shows our improves final by up 3.42% 18.48% respectively. average required achieve state art is reduced 64.95%. hope this will promote future work feasible defenses against attacks.
منابع مشابه
Model Free Data Mining
This is the second volume of the Advances in Data Warehousing and Mining (ADWM) book series. ADWM publishes books in the areas of data warehousing and mining. The topic of this volume is data mining and knowledge discovery. This volume consists of 14 chapters in four section, contributed by authors and editorial board members from the International Journal of Data Warehousing and Mining, as wel...
متن کاملData Extraction , Transformation and Integration Guided by an Ontology
One way to make query answering system (QAS) intelligent is to assume a hierarchical structure of its attributes. Such systems have been investigated by Cuppens & Demolombe (1988), Gal & Minker (1988), and Gaasterland et al. (1992), and they are called cooperative. Any attribute value listed in a query, submitted to cooperative QAS, is seen as a node of the tree representing that attribute. If ...
متن کاملData Extraction, Transformation and Integration Guided by an Ontology
A key factor for the success of the Semantic Web is to provide a unified, comprehensive and highlevel access to voluminous and heterogeneous data. Such an access can be provided by an ontology in integrators supporting high-level queries and information interoperation. Our work takes place in the context of a data warehouse with data defined in terms of a global abstract schema or ontology. ABS...
متن کاملProfile-Guided Terminology Extraction
This paper presents a noun phrase filtering system designed to retain noun phrases that conform to a certain model. This model is built from data provided by the user and made of samples of phrases that the user would keep or throw away depending on his/her goal. The following motivates this approach: (1) there is no multi-purpose term extraction grammar. Even a single document could be conside...
متن کاملModel Disagreement, Volatility, and Trading Volume∗
We study the impact of model disagreement on the dynamics of asset prices, return volatility, and trade in the market. In our continuous-time framework, two investors have homogenous preferences and equal access to information, but disagree about the length of the business cycle. We show that while the absolute level of volatility is driven primarily by long-run risk, the variation and persiste...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Proceedings of the ... AAAI Conference on Artificial Intelligence
سال: 2023
ISSN: ['2159-5399', '2374-3468']
DOI: https://doi.org/10.1609/aaai.v37i8.26150