{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,11,26]],"date-time":"2025-11-26T16:30:05Z","timestamp":1764174605897,"version":"3.28.0"},"reference-count":20,"publisher":"IEEE","content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018,12]]},"DOI":"10.1109\/asianhost.2018.8607161","type":"proceedings-article","created":{"date-parts":[[2019,1,10]],"date-time":"2019-01-10T18:30:36Z","timestamp":1547145036000},"page":"62-67","source":"Crossref","is-referenced-by-count":12,"title":["Preventing Neural Network Model Exfiltration in Machine Learning Hardware Accelerators"],"prefix":"10.1109","author":[{"given":"Mihailo","family":"Isakov","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Lake","family":"Bu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Hai","family":"Cheng","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Michel A.","family":"Kinsy","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"263","reference":[{"key":"ref10","article-title":"Deepsecure: Scalable provably-secure deep learning","volume":"abs 1705 8963","author":"rouhani","year":"2017","journal-title":"CoRR"},{"key":"ref11","doi-asserted-by":"publisher","DOI":"10.1145\/3196494.3196522"},{"journal-title":"Distributed Deep Neural Networks over the Cloud the Edge and End Devices","year":"0","author":"mcdanel","key":"ref12"},{"key":"ref13","article-title":"Adaptive and dynamic device authentication using lorenz chaotic systems","author":"bu","year":"2018","journal-title":"61st IEEE International Midwest Symposium on Circuits and Systems"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/CICC.2007.4405850"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/TCAD.2017.2682138"},{"key":"ref16","article-title":"Image-to-image translation with conditional adversarial networks","volume":"abs 1611 7004","author":"isola","year":"2016","journal-title":"CoRR"},{"key":"ref17","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516660"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1145\/3007787.3001138"},{"journal-title":"Closnets Batchless dnn training with on-chip a priori sparse neural topologies","year":"2018","author":"isakov","key":"ref19"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.23919\/EUSIPCO.2018.8553214"},{"key":"ref3","article-title":"The secret sharer: Measuring unintended neural network memorization & extracting secrets","volume":"abs 1802 8232","author":"carlini","year":"2018","journal-title":"CoRR"},{"key":"ref6","article-title":"Towards reverse-engineering black-box neural networks","author":"oh","year":"2018","journal-title":"International Conference on Learning Representations"},{"journal-title":"Distilling the knowledge in a neural network","year":"2015","author":"hinton","key":"ref5"},{"key":"ref8","first-page":"1615","article-title":"Turning your weakness into a strength: Watermarking deep neural networks by backdooring","author":"adi","year":"2018","journal-title":"27th USENIX Security Symposium (USENIX Security 18)"},{"key":"ref7","article-title":"PRADA: protecting against DNN model stealing attacks","volume":"abs 1805 2628","author":"juuti","year":"2018","journal-title":"CoRR"},{"key":"ref2","article-title":"Stealing machine learning models via prediction apis","volume":"abs 1609 2943","author":"tram\u00e8r","year":"2016","journal-title":"CoRR"},{"journal-title":"AI and Compute","year":"2018","author":"amodei","key":"ref1"},{"key":"ref9","article-title":"Crypto-nets: Neural networks over encrypted data","volume":"abs 1412 6181","author":"xie","year":"2014","journal-title":"CoRR"},{"key":"ref20","article-title":"Sphinx: A secure architecture based on binary code diversification and execution obfuscation","volume":"abs 1802 4259","author":"kinsy","year":"2018","journal-title":"CoRR"}],"event":{"name":"2018 Asian Hardware Oriented Security and Trust Symposium (AsianHOST)","start":{"date-parts":[[2018,12,17]]},"location":"Hong Kong","end":{"date-parts":[[2018,12,18]]}},"container-title":["2018 Asian Hardware Oriented Security and Trust Symposium (AsianHOST)"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/8596738\/8607158\/08607161.pdf?arnumber=8607161","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,1,25]],"date-time":"2022-01-25T19:50:44Z","timestamp":1643140244000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/8607161\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,12]]},"references-count":20,"URL":"https:\/\/doi.org\/10.1109\/asianhost.2018.8607161","relation":{},"subject":[],"published":{"date-parts":[[2018,12]]}}}