Invention Application
- Patent Title: PROTECTION OF NEURAL NETWORKS BY OBFUSCATION OF NEURAL NETWORK OPERATIONS AND ARCHITECTURE
-
Application No.: PCT/US2021/063880Application Date: 2021-12-16
-
Publication No.: WO2022140163A1Publication Date: 2022-06-30
- Inventor: MARSON, Mark Evan , HAMBURG, Michael Alexander , HANDSCHUH, Helena
- Applicant: CRYPTOGRAPHY RESEARCH, INC.
- Applicant Address: 4453 North First Street, Suite 100
- Assignee: CRYPTOGRAPHY RESEARCH, INC.
- Current Assignee: CRYPTOGRAPHY RESEARCH, INC.
- Current Assignee Address: 4453 North First Street, Suite 100
- Agency: PORTNOVA, Marina et al.
- Priority: US63/199,363 2020-12-21
- Main IPC: G06F17/16
- IPC: G06F17/16 ; G06F21/00 ; G06F21/14 ; G06N3/02 ; G06N3/04
Abstract:
Aspects of the present disclosure involve implementations that may be used to protect neural network models against adversarial attacks by obfuscating neural network operations and architecture. Obfuscation techniques include obfuscating weights and biases of neural network nodes, obfuscating activation functions used by neural networks, as well as obfuscating neural network architecture by introducing dummy operations, dummy nodes, and dummy layers into the neural networks.
Information query
