Black Box Watermarking

Black-box watermarking aims to embed ownership information into machine learning models, particularly deep neural networks and large language models, without requiring access to their internal parameters. Current research focuses on developing robust watermarking techniques resistant to various attacks, including model modification, data poisoning, and paraphrasing, often employing methods like backdooring or post-hoc insertion of semantic signatures. This field is crucial for protecting intellectual property in the rapidly expanding AI landscape, enabling verifiable ownership and deterring unauthorized model replication and distribution.

Papers

October 16, 2024

NSmark: Null Space Based Black-box Watermarking Defense Framework for Pre-trained Language Models
Haodong Zhao, Jinming Hu, Peixuan Li, Fangqi Li, Jinrui Sha, Peixuan Chen, Zhuosheng Zhang, Gongshen Liu
Language Model Null Space Black Box Watermarking Watermark Generation

September 3, 2024

Purification-Agnostic Proxy Learning for Agentic Copyright Watermarking against Adversarial Evidence Forgery
Erjin Bao, Ching-Chun Chang, Hanrui Wang, Isao Echizen
Adversarial Attack Model Watermarking Black Box Watermarking

June 20, 2024

PostMark: A Robust Blackbox Watermark for Large Language Models
Yapei Chang, Kalpesh Krishna, Amir Houmansadr, John Wieting, Mohit Iyyer
Watermarking Method LLM Generated Black Box Watermarking

September 7, 2023

Neural Dehydration: Effective Erasure of Black-box Watermarks from DNNs with Limited Data
Yifan Lu, Wenxuan Li, Mi Zhang, Xudong Pan, Min Yang
Deep Neural Network Model Inversion Attack Robust Watermark DNN Watermarking Black Box Watermarking

November 14, 2022

Watermarking in Secure Federated Learning: A Verification Framework Based on Client-Side Backdooring
Wenyuan Yang, Shuo Shao, Yue Yang, Xiyao Liu, Ximeng Liu, Zhihua Xia, Gerald Schaefer, Hui Fang
Federated Learning Homomorphic Encryption Agnostic Watermarking Verification Framework Watermarking Scheme Black Box Watermarking

September 8, 2022

SSL-WM: A Black-Box Watermarking Approach for Encoders Pre-trained by Self-supervised Learning
Peizhuo Lv, Pan Li, Shenchen Zhu, Shengzhi Zhang, Kai Chen, Ruigang Liang, Chang Yue, Fan Xiang, Yuling Cai, Hualong Ma, Yingjun Zhang, Guozhu Meng
Self Supervised Learning Supervised Learning Watermarking Method Encoder Side Backdoor Watermark Black Box Watermarking

May 9, 2022

Verifying Integrity of Deep Ensemble Models by Lossless Black-box Watermarking with Sensitive Samples
Lina Lin, Hanzhou Wu
Deep Ensemble Real World Attack Bit Watermarking Integrity Verification Black Box Watermarking

April 9, 2022

Knowledge-Free Black-Box Watermark and Ownership Proof for Image Classification Neural Networks
Fangqi Li, Shilin Wang
Watermarking Method Agnostic Watermarking Classification Network Ownership Verification Watermarking Scheme Black Box Watermarking

Black Box Watermarking

Papers

NSmark: Null Space Based Black-box Watermarking Defense Framework for Pre-trained Language Models

Purification-Agnostic Proxy Learning for Agentic Copyright Watermarking against Adversarial Evidence Forgery

PostMark: A Robust Blackbox Watermark for Large Language Models

Neural Dehydration: Effective Erasure of Black-box Watermarks from DNNs with Limited Data

Watermarking in Secure Federated Learning: A Verification Framework Based on Client-Side Backdooring

SSL-WM: A Black-Box Watermarking Approach for Encoders Pre-trained by Self-supervised Learning

Verifying Integrity of Deep Ensemble Models by Lossless Black-box Watermarking with Sensitive Samples

Knowledge-Free Black-Box Watermark and Ownership Proof for Image Classification Neural Networks