Watermark Removal Attack

Watermark removal attacks target methods designed to protect the intellectual property of machine learning models, particularly deep neural networks (DNNs) and large language models (LLMs). Current research focuses on developing more robust watermarking techniques, exploring various embedding strategies (e.g., backdooring, modifying model parameters, altering label distributions) and analyzing their vulnerabilities to attacks like fine-tuning, pruning, and model extraction. The ability to reliably embed and verify watermarks is crucial for protecting the significant investments in developing these models and ensuring fair use in commercial applications.

Papers

October 23, 2024

ESpeW: Robust Copyright Protection for LLM-based EaaS via Embedding-Specific Watermark
Zongqi Wang, Baoyuan Wu, Jingyuan Deng, Yujiu Yang
Copyright Protection Robust Watermark Watermark Removal Attack

October 9, 2024

An undetectable watermark for generative image models
Sam Gunn, Xuandong Zhao, Dawn Song
Unlabeled Image Generative Image Model Invisible Watermark Watermark Removal Attack Undetectable Watermark

September 16, 2024

FreeMark: A Non-Invasive White-Box Watermarking for Deep Neural Networks
Yuzhang Chen, Jiangnan Zhu, Yujie Gu, Minoru Kuribayashi, Kouichi Sakurai
Deep Neural Network White Box Watermark Removal Attack DNN Watermarking

September 10, 2024

On the Weaknesses of Backdoor-based Model Watermarking: An Information-theoretic Perspective
Aoting Hu, Yanzhi Chen, Renjie Xie, Adrian Weller
Information Theoretic Watermarking Method White Box Model Watermarking Physical Weakness Watermark Removal Attack

February 21, 2024

Can Watermarks Survive Translation? On the Cross-lingual Consistency of Text Watermark for Large Language Models
Zhiwei He, Binglin Zhou, Hongkun Hao, Aiwei Liu, Xing Wang, Zhaopeng Tu, Zhuosheng Zhang, Rui Wang
Cross Lingual View Translation Text Watermarking Watermark Removal Attack

September 9, 2023

Towards Robust Model Watermark via Reducing Parametric Vulnerability
Guanhao Gan, Yiming Li, Dongxian Wu, Shu-Tao Xia
Model Watermarking Ownership Verification Watermark Removal Attack

September 4, 2023

Safe and Robust Watermark Injection with a Single OoD Image
Shuyang Yu, Junyuan Hong, Haobo Zhang, Haotao Wang, Zhangyang Wang, Jiayu Zhou
Agnostic Watermarking Poorer Out of Sample Prediction Watermark Removal Attack Backdoor Watermark

March 17, 2023

Rethinking White-Box Watermarks on Deep Learning Models under Neural Structural Obfuscation
Yifan Yan, Xudong Pan, Mi Zhang, Min Yang
Neural Network Deep Learning Model White Box Watermark Removal Attack DNN Watermarking

February 8, 2023

On Function-Coupled Watermarks for Deep Neural Networks
Xiangyu Wen, Yu Li, Wei Jiang, Qiang Xu
Deep Neural Network Watermark Removal Attack DNN Watermarking

February 6, 2023

Protecting Language Generation Models via Invisible Watermarking
Xuandong Zhao, Yu-Xiang Wang, Lei Li
Natural Language Processing Text Generation Model Model Extraction Attack Language Generation Model Invisible Watermark Watermark Removal Attack

August 10, 2022

Customized Watermarking for Deep Neural Networks via Label Distribution Perturbation
Tzu-Yun Chien, Chih-Ya Shen
Deep Neural Network Watermarking Method Text Watermarking Watermark Removal Attack Label Perturbation Deep Neural Network Watermarking

April 30, 2022

Cracking White-box DNN Watermarks via Invariant Neuron Transforms
Yifan Yan, Xudong Pan, Yining Wang, Mi Zhang, Min Yang
Watermarking Method White Box Invariant Network Model Watermarking Watermark Removal Attack

April 5, 2022

Attention Distraction: Watermark Removal Through Continual Learning with Selective Forgetting
Qi Zhong, Leo Yu Zhang, Shengshan Hu, Longxiang Gao, Jun Zhang, Yong Xiang
Fine Tuning Continual LEArning Anti Forgetting Watermark Removal Watermark Removal Attack

January 27, 2022

SSLGuard: A Watermarking Scheme for Self-supervised Learning Pre-trained Encoders
Tianshuo Cong, Xinlei He, Yang Zhang
Self Supervised Learning Agnostic Watermarking Encoder Side Model Stealing Watermarking Scheme Watermark Removal Attack

Watermark Removal Attack

Papers

ESpeW: Robust Copyright Protection for LLM-based EaaS via Embedding-Specific Watermark

An undetectable watermark for generative image models

FreeMark: A Non-Invasive White-Box Watermarking for Deep Neural Networks

On the Weaknesses of Backdoor-based Model Watermarking: An Information-theoretic Perspective

Can Watermarks Survive Translation? On the Cross-lingual Consistency of Text Watermark for Large Language Models

Towards Robust Model Watermark via Reducing Parametric Vulnerability

Safe and Robust Watermark Injection with a Single OoD Image

Rethinking White-Box Watermarks on Deep Learning Models under Neural Structural Obfuscation

On Function-Coupled Watermarks for Deep Neural Networks

Protecting Language Generation Models via Invisible Watermarking

Customized Watermarking for Deep Neural Networks via Label Distribution Perturbation

Cracking White-box DNN Watermarks via Invariant Neuron Transforms

Attention Distraction: Watermark Removal Through Continual Learning with Selective Forgetting

SSLGuard: A Watermarking Scheme for Self-supervised Learning Pre-trained Encoders