###
DOI:10.15888/j.cnki.csa.009666
计算机系统应用英文版:2024,33(10):163-173
View/Add Comment     过刊浏览    高级检索     HTML
←前一篇   |   后一篇→
本文二维码信息
码上扫一扫!
基于神经机器翻译的模型反混淆方法
朱浪1, 刘彬彬2, 李嘉璇1, 郑启龙1
(1.中国科学技术大学 计算机科学与技术学院, 合肥 230027;2.合肥工业大学 计算机科学与技术系, 合肥 230601)
Model Deobfuscation Method Based on Neural Machine Translation
ZHU Lang1, LIU Bin-Bin2, LI Jia-Xuan1, ZHENG Qi-Long1
(1.School of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China;2.Department of Computer Science and Technology, Hefei University of Technology, Hefei 230601, China)
摘要
图/表
参考文献
相似文献
本文已被:浏览 75次   下载 825
Received:April 15, 2024    Revised:May 14, 2024
中文摘要: 模型混淆是指将神经网络等价地转换为另一种形式, 是一种高效且低成本的神经网络保护技术. 为了发现模型混淆的缺陷, 研究人员提出了模型反混淆技术, 以期望改进模型混淆方法. 然而, 现有的模型反混淆技术研究较少, 并且适用场景和反混淆效果有限. 因此, 本文提出一种基于神经机器翻译(neural machine translation, NMT)技术的模型反混淆方法. 该方法将模型的反混淆任务建模成一个seq2seq的任务, 首先对混淆模型进行更详细的序列表示, 然后对权重参数中的混淆信息进行识别并处理, 最后再使用基于NMT的模型进行反混淆翻译. 实验结果表明, 该方法弥补了已有方法的不足, 能够有效地捕捉模型的混淆特征并对模型的架构进行恢复, 可以作为一种模型反混淆的通用方案.
中文关键词: 神经网络模型混淆  神经网络模型反混淆  神经机器翻译  Transformer
Abstract:Model obfuscation refers to the equivalent transformation of neural networks into another form, which is an efficient and low-cost technique for protecting neural networks. To detect the flaws of model obfuscation, researchers have proposed model deobfuscation techniques in the hope of improving model obfuscation methods. However, model deobfuscation techniques are not fully explored, with limited applicability and effectiveness. Therefore, this study proposes a model deobfuscation method based on neural machine translation (NMT). This method models a deobfuscation task as a seq2seq task. It provides a more detailed sequential representation of the obfuscated model, identifies and processes the obfuscated information in the weight parameters, and utilizes an NMT-based model for deobfuscation translation. The experimental results demonstrate that this method addresses the shortcomings of existing methods, effectively capturing the obfuscation features and restoring the architectures of models. It can serve as a general solution to model deobfuscation.
keywords: neural network model obfuscation  neural network model deobfuscation  neural machine translation (NMT)  Transformer
文章编号:     中图分类号:    文献标志码:
基金项目:
Author NameAffiliationE-mail
ZHU Lang School of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China  
LIU Bin-Bin Department of Computer Science and Technology, Hefei University of Technology, Hefei 230601, China  
LI Jia-Xuan School of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China  
ZHENG Qi-Long School of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China QLZheng@ustc.edu.cn 
Author NameAffiliationE-mail
ZHU Lang School of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China  
LIU Bin-Bin Department of Computer Science and Technology, Hefei University of Technology, Hefei 230601, China  
LI Jia-Xuan School of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China  
ZHENG Qi-Long School of Computer Science and Technology, University of Science and Technology of China, Hefei 230027, China QLZheng@ustc.edu.cn 
引用文本:
朱浪,刘彬彬,李嘉璇,郑启龙.基于神经机器翻译的模型反混淆方法.计算机系统应用,2024,33(10):163-173
ZHU Lang,LIU Bin-Bin,LI Jia-Xuan,ZHENG Qi-Long.Model Deobfuscation Method Based on Neural Machine Translation.COMPUTER SYSTEMS APPLICATIONS,2024,33(10):163-173

用微信扫一扫

Copyright:Institute of Software, Chinese Academy of Sciences
Postal address:4# South Fourth Street, Zhongguancun,Haidian, Beijing,Encoding:100190
Tel:010-62661041 Email:csa (a) iscas.ac.cn
Technical support:Beijing Qin Yun science and Technology Development Co., Ltd.