Model Extraction Attacks Revisited
Jiacheng Liang, Ren Pang, Changjiang Li, Ting Wang
Abstract
Model extraction (ME) attacks represent one major threat to Machine-Learning-as-a-Service (MLaaS) platforms by "stealing" the functionality of confidential machine-learning models through querying black-box APIs. Over seven years have passed since ME attacks were first conceptualized in the seminal work [75]. During this period, substantial advances have been made in both ME attacks and MLaaS platforms, raising the intriguing question: How has the vulnerability of MLaaS platforms to ME attacks been evolving?
Topics & Concepts
Computer scienceExtraction (chemistry)Computer securityChemistryChromatographyAdversarial Robustness in Machine LearningAdvanced Malware Detection TechniquesNetwork Security and Intrusion Detection