Papers
Topics
Authors
Recent
Assistant
AI Research Assistant
Well-researched responses based on relevant abstracts and paper content.
Custom Instructions Pro
Preferences or requirements that you'd like Emergent Mind to consider when generating responses.
Gemini 2.5 Flash
Gemini 2.5 Flash 65 tok/s
Gemini 2.5 Pro 40 tok/s Pro
GPT-5 Medium 26 tok/s Pro
GPT-5 High 24 tok/s Pro
GPT-4o 113 tok/s Pro
Kimi K2 200 tok/s Pro
GPT OSS 120B 445 tok/s Pro
Claude Sonnet 4.5 34 tok/s Pro
2000 character limit reached

Find the Lady: Permutation and Re-Synchronization of Deep Neural Networks (2312.14182v1)

Published 19 Dec 2023 in cs.LG, cs.AI, and cs.CR

Abstract: Deep neural networks are characterized by multiple symmetrical, equi-loss solutions that are redundant. Thus, the order of neurons in a layer and feature maps can be given arbitrary permutations, without affecting (or minimally affecting) their output. If we shuffle these neurons, or if we apply to them some perturbations (like fine-tuning) can we put them back in the original order i.e. re-synchronize? Is there a possible corruption threat? Answering these questions is important for applications like neural network white-box watermarking for ownership tracking and integrity verification. We advance a method to re-synchronize the order of permuted neurons. Our method is also effective if neurons are further altered by parameter pruning, quantization, and fine-tuning, showing robustness to integrity attacks. Additionally, we provide theoretical and practical evidence for the usual means to corrupt the integrity of the model, resulting in a solution to counter it. We test our approach on popular computer vision datasets and models, and we illustrate the threat and our countermeasure on a popular white-box watermarking method.

Definition Search Book Streamline Icon: https://streamlinehq.com
References (30)
  1. Turning Your Weakness into a Strength: Watermarking Deep Neural Networks by Backdooring. In 27th USENIX Security Symposium.
  2. Neural Networks with a Redundant Representation: Detecting the Undetectable. Physical review letters.
  3. Deepmarks: A Secure Fingerprinting Framework for Digital Rights Management of Deep Learning Models. In Proceedings of the 2019 on International Conference on Multimedia Retrieval.
  4. Encoder-Decoder with Atrous Separable Convolution for Semantic Image Segmentation. In Proceedings of the European conference on computer vision.
  5. Drop an Octave: Reducing Spatial Redundancy in Convolutional Neural Networks with Octave Convolution. In Proceedings of the IEEE/CVF International Conference on Computer Vision.
  6. The Cityscapes Dataset for Semantic Urban Scene Understanding. In Proceedings of the IEEE conference on computer vision and pattern recognition.
  7. A Hitchhiker’s Guide to White-Box Neural Network Watermarking Robustness. In 11th European Workshop on Visual Information Processing.
  8. An Image Is Worth 16x16 Words: Transformers for Image Recognition at Scale. In International Conference on Learning Representations.
  9. Property Inference Attacks on Fully Connected Neural Networks Using Permutation Invariant Representations. In Proceedings of the 2018 ACM SIGSAC conference on computer and communications security.
  10. Deep Residual Learning for Image Recognition. In Proceedings of the IEEE conference on computer vision and pattern recognition.
  11. Hecht-Nielsen, R. 1990. On the Algebraic Structure of Feedforward Network Weight Spaces. In Advanced Neural Computers. Elsevier.
  12. Searching for MobilenetV3. In Proceedings of the IEEE/CVF international conference on computer vision.
  13. ultralytics/yolov5: v6.2 - YOLOv5 Classification Models, Apple M1, Reproducibility, ClearML and Deci.ai integrations.
  14. Learning Multiple Layers of Features from Tiny Images.
  15. Octree Guided CNN with Spherical Kernels for 3D Point Clouds. In Proceedings of the IEEE/CVF Conference on Computer Vision and Pattern Recognition.
  16. Fostering the Robustness of White-Box Deep Neural Network Watermarks by Neuron Alignment. In ICASSP 2022-2022 IEEE International Conference on Acoustics, Speech and Signal Processing. IEEE.
  17. A Survey of Deep Neural Network Watermarking Techniques. Neurocomputing.
  18. Microsoft COCO: Common Objects in Context. In European conference on computer vision. Springer.
  19. DVC: An End-to-End Deep Video Compression Framework. In Proceedings of the IEEE/CVF Conference on Computer Vision and Pattern Recognition.
  20. UVG Dataset: 50/120fps 4K Sequences for Video Codec Analysis and Development. In Proceedings of the 11th ACM Multimedia Systems Conference.
  21. ImageNet Large Scale Visual Recognition Challenge. International Journal of Computer Vision.
  22. Neural-Network Feature Selector. IEEE transactions on neural networks.
  23. Very Deep Convolutional Networks for Large-Scale Image Recognition. Computing Research Repository.
  24. Dropout: A Simple Way to Prevent Neural Networks from Overfitting. The journal of machine learning research.
  25. A Deep-Dream Virtual Reality Platform for Studying Altered Perceptual Phenomenology. Scientific reports.
  26. Serene: Sensitivity-Based Regularization of Neurons for Structured Sparsity in Neural Networks. IEEE Transactions on Neural Networks and Learning Systems.
  27. Delving in the Loss Landscape to Embed Robust Watermarks into Neural Networks. In 25th International Conference on Pattern Recognition. IEEE.
  28. Embedding Watermarks into Deep Neural Networks. In Proceedings of the 2017 ACM on international conference on multimedia retrieval.
  29. A Comprehensive Survey on Robust Image Watermarking. Neurocomputing.
  30. Convolutional Neural Network Pruning with Structural Redundancy Reduction. In Proceedings of the IEEE/CVF Conference on Computer Vision and Pattern Recognition.

Summary

We haven't generated a summary for this paper yet.

Ai Sparkles Streamline Icon: https://streamlinehq.com Summarize Now
Lightbulb Streamline Icon: https://streamlinehq.com

Continue Learning

We haven't generated follow-up questions for this paper yet.

Ai Sparkles Streamline Icon: https://streamlinehq.com Generate Now
List To Do Tasks Checklist Streamline Icon: https://streamlinehq.com

Collections

Sign up for free to add this paper to one or more collections.

User Circle Single Streamline Icon: https://streamlinehq.com Sign Up
X Twitter Logo Streamline Icon: https://streamlinehq.com

Tweets

This paper has been mentioned in 1 post and received 0 likes.

User Circle Single Streamline Icon: https://streamlinehq.com Sign Up to View