We gratefully acknowledge support from
the Simons Foundation and member institutions.
Full-text links:

Download:

Current browse context:

cs.CR

Change to browse by:

cs

References & Citations

DBLP - CS Bibliography

Bookmark

(what is this?)
CiteULike logo BibSonomy logo Mendeley logo del.icio.us logo Digg logo Reddit logo ScienceWISE logo

Computer Science > Cryptography and Security

Title: CycleGANWM: A CycleGAN watermarking method for ownership verification

Abstract: Due to the proliferation and widespread use of deep neural networks (DNN), their Intellectual Property Rights (IPR) protection has become increasingly important. This paper presents a novel model watermarking method for an unsupervised image-to-image translation (I2IT) networks, named CycleGAN, which leverage the image translation visual quality and watermark embedding. In this method, a watermark decoder is trained initially. Then the decoder is frozen and used to extract the watermark bits when training the CycleGAN watermarking model. The CycleGAN watermarking (CycleGANWM) is trained with specific loss functions and optimized to get a good performance on both I2IT task and watermark embedding. For watermark verification, this work uses statistical significance test to identify the ownership of the model from the extract watermark bits. We evaluate the robustness of the model against image post-processing and improve it by fine-tuning the model with adding data augmentation on the output images before extracting the watermark bits. We also carry out surrogate model attack under black-box access of the model. The experimental results prove that the proposed method is effective and robust to some image post-processing, and it is able to resist surrogate model attack.
Comments: There is an crucial error in Figure 1, where the "watermark" should be modified
Subjects: Cryptography and Security (cs.CR)
Cite as: arXiv:2211.13737 [cs.CR]
  (or arXiv:2211.13737v2 [cs.CR] for this version)

Submission history

From: Dongdong Lin [view email]
[v1] Thu, 24 Nov 2022 17:56:45 GMT (4120kb,D)
[v2] Fri, 9 Dec 2022 15:27:56 GMT (0kb,I)

Link back to: arXiv, form interface, contact.