{"id":"https://openalex.org/W4372055135","doi":"https://doi.org/10.1109/tcad.2023.3272271","title":"Attacks on Recent DNN IP Protection Techniques and Their Mitigation","display_name":"Attacks on Recent DNN IP Protection Techniques and Their Mitigation","publication_year":2023,"publication_date":"2023-05-04","ids":{"openalex":"https://openalex.org/W4372055135","doi":"https://doi.org/10.1109/tcad.2023.3272271"},"language":"en","primary_location":{"id":"doi:10.1109/tcad.2023.3272271","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tcad.2023.3272271","pdf_url":null,"source":{"id":"https://openalex.org/S100835903","display_name":"IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems","issn_l":"0278-0070","issn":["0278-0070","1937-4151"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5077271082","display_name":"Rijoy Mukherjee","orcid":"https://orcid.org/0000-0002-8432-3418"},"institutions":[{"id":"https://openalex.org/I145894827","display_name":"Indian Institute of Technology Kharagpur","ror":"https://ror.org/03w5sq511","country_code":"IN","type":"education","lineage":["https://openalex.org/I145894827"]}],"countries":["IN"],"is_corresponding":true,"raw_author_name":"Rijoy Mukherjee","raw_affiliation_strings":["Department of Computer Science and Engineering, Indian Institute of Technology at Kharagpur, Kharagpur, India"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, Indian Institute of Technology at Kharagpur, Kharagpur, India","institution_ids":["https://openalex.org/I145894827"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5049426113","display_name":"Rajat Subhra Chakraborty","orcid":"https://orcid.org/0000-0003-3588-163X"},"institutions":[{"id":"https://openalex.org/I145894827","display_name":"Indian Institute of Technology Kharagpur","ror":"https://ror.org/03w5sq511","country_code":"IN","type":"education","lineage":["https://openalex.org/I145894827"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Rajat Subhra Chakraborty","raw_affiliation_strings":["Department of Computer Science and Engineering, Indian Institute of Technology at Kharagpur, Kharagpur, India"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, Indian Institute of Technology at Kharagpur, Kharagpur, India","institution_ids":["https://openalex.org/I145894827"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5077271082"],"corresponding_institution_ids":["https://openalex.org/I145894827"],"apc_list":null,"apc_paid":null,"fwci":1.0438,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.80680022,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":97},"biblio":{"volume":"42","issue":"11","first_page":"3642","last_page":"3650"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9997000098228455,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9824000000953674,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7607969641685486},{"id":"https://openalex.org/keywords/ip-address-spoofing","display_name":"IP address spoofing","score":0.5764837265014648},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.5690242052078247},{"id":"https://openalex.org/keywords/backdoor","display_name":"Backdoor","score":0.44831469655036926},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.44016021490097046},{"id":"https://openalex.org/keywords/intellectual-property","display_name":"Intellectual property","score":0.4297485947608948},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.3986624777317047},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.39470258355140686},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3290709853172302},{"id":"https://openalex.org/keywords/internet-protocol","display_name":"Internet Protocol","score":0.163410484790802},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.12284919619560242}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7607969641685486},{"id":"https://openalex.org/C111814575","wikidata":"https://www.wikidata.org/wiki/Q550893","display_name":"IP address spoofing","level":5,"score":0.5764837265014648},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.5690242052078247},{"id":"https://openalex.org/C2781045450","wikidata":"https://www.wikidata.org/wiki/Q254569","display_name":"Backdoor","level":2,"score":0.44831469655036926},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.44016021490097046},{"id":"https://openalex.org/C34974158","wikidata":"https://www.wikidata.org/wiki/Q131257","display_name":"Intellectual property","level":2,"score":0.4297485947608948},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.3986624777317047},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.39470258355140686},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3290709853172302},{"id":"https://openalex.org/C35341882","wikidata":"https://www.wikidata.org/wiki/Q8795","display_name":"Internet Protocol","level":3,"score":0.163410484790802},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.12284919619560242},{"id":"https://openalex.org/C147873670","wikidata":"https://www.wikidata.org/wiki/Q11182","display_name":"Network address translation","level":4,"score":0.0},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tcad.2023.3272271","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tcad.2023.3272271","pdf_url":null,"source":{"id":"https://openalex.org/S100835903","display_name":"IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems","issn_l":"0278-0070","issn":["0278-0070","1937-4151"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.5099999904632568,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":23,"referenced_works":["https://openalex.org/W1598573928","https://openalex.org/W1686810756","https://openalex.org/W1892798954","https://openalex.org/W2108598243","https://openalex.org/W2183341477","https://openalex.org/W2194775991","https://openalex.org/W2579318729","https://openalex.org/W2899915146","https://openalex.org/W2953384591","https://openalex.org/W3008936127","https://openalex.org/W3036286896","https://openalex.org/W3081073185","https://openalex.org/W3092557510","https://openalex.org/W3114482311","https://openalex.org/W3148576306","https://openalex.org/W3197312262","https://openalex.org/W4210690620","https://openalex.org/W4214946748","https://openalex.org/W4289146347","https://openalex.org/W4300171661","https://openalex.org/W6637373629","https://openalex.org/W6686164453","https://openalex.org/W6713134421"],"related_works":["https://openalex.org/W4320031223","https://openalex.org/W3015678314","https://openalex.org/W4281902577","https://openalex.org/W4200629851","https://openalex.org/W3009072493","https://openalex.org/W4386185023","https://openalex.org/W4317672133","https://openalex.org/W3140988292","https://openalex.org/W4386080799","https://openalex.org/W4382469137"],"abstract_inverted_index":{"With":[0],"the":[1,5,121,131,149,171,185,198,201],"rapid":[2],"increase":[3],"in":[4,20,100],"development":[6],"of":[7,38,70,83,90,120,130,170,177,200],"deep":[8,11],"learning":[9],"methodologies,":[10],"neural":[12],"networks":[13],"(DNNs)":[14],"are":[15],"now":[16],"being":[17],"commonly":[18],"deployed":[19],"smart":[21],"systems":[22],"(e.g.,":[23,30],"autonomous":[24],"vehicles)":[25],"and":[26,51,86,124,192],"high-end":[27],"security":[28],"applications":[29],"face":[31],"recognition,":[32],"biometric":[33],"authentication,":[34],"etc.).":[35],"The":[36],"training":[37,46],"such":[39,71],"DNN":[40,58,72,94,111,139,162,206],"models":[41],"often":[42],"requires":[43],"exclusive":[44],"valuable":[45,64],"datasets,":[47],"enormous":[48],"computational":[49],"resources,":[50],"expert":[52],"fine-tuning":[53],"skills.":[54],"Hence,":[55],"a":[56,77,153,160],"trained":[57],"model":[59],"can":[60],"be":[61],"regarded":[62],"as":[63,76],"proprietary":[65],"intellectual":[66],"property":[67],"(IP).":[68],"Piracy":[69],"IPs":[73],"has":[74],"emerged":[75],"major":[78],"concern,":[79],"with":[80,143],"increasing":[81],"trends":[82],"illegal":[84],"copying":[85],"redistribution.":[87],"A":[88],"number":[89],"mitigation":[91],"approaches":[92],"targeting":[93],"IP":[95,112,140,163,180],"protection":[96,113,141,164,181],"have":[97],"been":[98],"proposed":[99,110],"recent":[101,138],"years.":[102],"In":[103],"this":[104],"work,":[105],"we":[106,196],"target":[107],"two":[108,137],"recently":[109],"schemes:":[114],"1)":[115],"chaotic":[116],"map":[117],"theory-based":[118],"encryption":[119,129,169,176],"weight":[122,172],"parameters":[123],"2)":[125],"traditional":[126],"block":[127],"cipher-based":[128],"weights.":[132],"We":[133,157],"demonstrate":[134,197],"attacks":[135],"on":[136,167],"techniques,":[142],"one":[144],"technique":[145,165,203],"each":[146],"belonging":[147],"to":[148,183],"above-mentioned":[150],"schemes,":[151],"under":[152],"pragmatic":[154],"attack":[155],"model.":[156],"also":[158],"propose":[159],"novel":[161],"based":[166],"selective":[168],"parameters,":[173],"termed":[174],"limited":[175],"weights":[178],"for":[179],"(LEWIP)":[182],"mitigate":[184],"exposed":[186],"weaknesses,":[187],"while":[188],"having":[189],"low":[190],"implementation":[191],"performance":[193],"overheads.":[194],"Finally,":[195],"effectiveness":[199],"LEWIP":[202],"against":[204],"state-of-the-art":[205],"implementations.":[207]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":1}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}