Using side-channel and quantization vulnerability to recover DNN weights

Using side-channel and quantization vulnerability to recover DNN weights

Model extraction attack focuses on reverse engineering architecture and weights of DNN model deployed in edge.Model extraction attack is a basic security problem in AI security, it underlies advanced attacks as data provider, such as adversarial sample and data poisoning.A novel method named Cluster...

Full description

Saved in:

Bibliographic Details
Main Authors:	Jinghai LI, Ming TANG, Chengxuan HUANG
Format:	Article
Language:	English
Published:	POSTS&TELECOM PRESS Co., LTD 2021-08-01
Series:	网络与信息安全学报
Subjects:	AI security model extraction attack quantization vulnerability side-channel analysis Cluster-based SCA
Online Access:	http://www.cjnis.com.cn/thesisDetails#10.11959/j.issn.2096-109x.2021038
Tags:	Add Tag No Tags, Be the first to tag this record!

Similar Items

Universal patching method for side-channel vulnerabilities based on atomic obfuscation
by: Deqing ZOU, et al.
Published: (2022-04-01)

Virtual channel model for distributed video coding accounting for quantization noise
by: Ming YIN, et al.
Published: (2012-02-01)

Dynamic Key Replacement Mechanism for Lightweight Internet of Things Microcontrollers to Resist Side-Channel Attacks
by: Chung-Wei Kuo, et al.
Published: (2025-01-01)

Review of side-channel privacy inference of Android mobile devices
by: Futian SHI, et al.
Published: (2018-04-01)

Survey of side channel attack on encrypted network traffic
by: Ding LI, et al.
Published: (2021-08-01)

Research of channel quantization and feedback strategies based on multiuser diversity MIMO-OFDM systems
by: LIANG Xue-jun, et al.
Published: (2009-01-01)

Template attack of Crypto chip based on clustering
by: Zhen WU, et al.
Published: (2018-08-01)

Side channel attack of cipher chips based on difference variability
by: Yang ZHANG, et al.
Published: (2015-03-01)

Threshold re-encryption based secure deduplication method for cloud data with resistance against side channel attack
by: Xin TANG, et al.
Published: (2020-06-01)

An overview of low resolution quantization in wireless communication system
by: Dan QIAO, et al.
Published: (2017-06-01)

Optimizing cryptographic protocols against side channel attacks using WGAN-GP and genetic algorithms
by: Purushottam Singh, et al.
Published: (2025-01-01)

Subset-Selection Weight Post-Training Quantization Method for Learned Image Compression Task
by: Jinru Yang, et al.
Published: (2025-01-01)

Side channel leakage assessment with the Bartlett and multi-classes F-test
by: Yaru WANG, et al.
Published: (2021-12-01)

Design and implementation of OSPF vulnerability analysis and detection system
by: Zun-ying QIN, et al.
Published: (2013-09-01)

Feature extraction of side channel signal based on EMD and difference spectrum of singular value
by: Yan-li YAO, et al.
Published: (2016-07-01)

Deformation Quantization of Nonassociative Algebras
by: Elisabeth Remm
Published: (2024-12-01)

Revisiting Angular Momentum Quantization in Bohr's Atomic Model
by: Jorge Henrique de Oliveira Sales, et al.
Published: (2022-03-01)

Load-to-store: exploit the time leakage of store buffer transient window
by: Ming TANG, et al.
Published: (2023-04-01)

Quantized <italic>l</italic>₂-<italic>l</italic>∞ Control for Nonlinear Discrete-Time Systems With DoS Attacks
by: Ying Tian, et al.
Published: (2025-01-01)

Finite-Time Synchronization of Fractional-Order Complex-Valued Multi-Layer Network via Adaptive Quantized Control Under Deceptive Attacks
by: Lulu Xu, et al.
Published: (2025-01-01)

Enhanced Vector Quantization for Embedded Machine Learning: A Post-Training Approach With Incremental Clustering
by: Thommas K. S. Flores, et al.
Published: (2025-01-01)

Qptimization design of video encoder quantizer for general DSPs
by: GAN Yong1, et al.
Published: (2007-01-01)

Network slicing deployment method based on isolation level
by: Qirun PAN, et al.
Published: (2020-04-01)

Power model in power analysis attack
by: Peng LUO, et al.
Published: (2012-09-01)

Fault-injection attack on countermeasure algorithms of RSA-CRT cryptosystem
by: Fanyu KONG, et al.
Published: (2019-02-01)

Research and simulation of timing attacks on ECC
by: Hui-hui JIA, et al.
Published: (2016-04-01)

VLSI implementation of AES algorithm against differential power attack and differential fault attack
by: HAN Jun, et al.
Published: (2010-01-01)

High order DPA with profiling
by: Zhen WU, et al.
Published: (2018-09-01)

Blind mask template attacks on masked cryptographic algorithm
by: Yi WANG, et al.
Published: (2019-01-01)

Quantization of the Electric Conductivity in Carbon Nanotubes
by: M. A. Grado-Caffaro, et al.
Published: (2001-01-01)

Adaptive key distillation from channel characteristics
by: Qiao DAI, et al.
Published: (2014-01-01)

Research on electromagnetic radiation based side-channel analysis method for hardware Trojan detection
by: Yongkang TANG, et al.
Published: (2021-04-01)

A Design of Adaptive Quantizer for MPEG-2 Video Coding
by: 孙军, et al.
Published: (1995-01-01)

Improvement of equivalent power consumption coding secure against power analysis attacks
by: WU Zhen, et al.
Published: (2010-01-01)

Differential fault analysis on the SMS4 cipher by inducing faults to the key schedule
by: LI Wei, et al.
Published: (2008-01-01)

Uniform Quantization for Multi-Antenna Amplify–Quantize–Forward Relay
by: Gangsan Jeong, et al.
Published: (2025-01-01)

On Channel Transforms to Enhance Reciprocity and Quantization in Physical-Layer Secret Key Generation
by: Ghalib Hussain, et al.
Published: (2025-01-01)

Design and implementation for partition dynamically vector quantization chip
by: YU Ning-mei, et al.
Published: (2009-01-01)

One-bit maximum likelihood algorithm for sensor networks in non-ideal channels
by: Nana WANG, et al.
Published: (2020-03-01)

Research on the risk adjacency matrix based on attack graphs
by: YE Yun, et al.
Published: (2011-01-01)