DeepSteal: Advanced Model Extractions Leveraging Efficient Weight Stealing in Memories

8 November 2021

Adnan Siraj Rakin

Md Hafizul Islam Chowdhuryy

ArXiv (abs)PDF HTML Github

Papers citing "DeepSteal: Advanced Model Extractions Leveraging Efficient Weight Stealing in Memories"

50 / 66 papers shown

CacheTrap: Unveiling a Stealthier Gray-Box Trojan against LLMs

Mohaiminul Al Nahian

Abeer Matar A. Almalky

109

27 Nov 2025

SoK: Systematizing a Decade of Architectural RowHammer Defenses Through the Lens of Streaming Algorithms

123

09 Nov 2025

ColumnDisturb: Understanding Column-based Read Disturbance in Real DRAM Chips and Implications for Future Systems

276

16 Oct 2025

Stealing AI Model Weights Through Covert Communication Channels

Valentin Barbaza

Alan Rodrigo Diaz-Rizo

Hassan Aboushady

Spyridon Raptis

Haralampos-G. Stratigopoulos

148

30 Sep 2025

Knock-Knock: Black-Box, Platform-Agnostic DRAM Address-Mapping Reverse Engineering

23 Sep 2025

SLasH-DSA: Breaking SLH-DSA Using an Extensible End-To-End Rowhammer Framework

234

16 Sep 2025

TensorShield: Safeguarding On-Device Inference by Shielding Critical DNN Tensors with TEE

274

28 May 2025

When Mitigations Backfire: Timing Channel Attacks and Defense for PRAC-Based RowHammer MitigationsInternational Symposium on Computer Architecture (ISCA), 2025

344

15 May 2025

Threat Modeling for AI: The Case for an Asset-Centric Approach

Jose Sanchez Vicarte

Marcin Spoczynski

Mostafa Elsaid

439

08 May 2025

Onboard Optimization and Learning: A Survey

448

07 May 2025

Hessian-aware Training for Enhancing DNNs Resilience to Parameter Corruptions

365

02 Apr 2025

Understanding and Mitigating Covert Channel and Side Channel Vulnerabilities Introduced by RowHammer Defenses

391

23 Mar 2025

Revisiting DRAM Read Disturbance: Identifying Inconsistencies Between Experimental Characterization and Device-Level StudiesIEEE VLSI Test Symposium (VTS), 2025

418

20 Mar 2025

MACPruning: Dynamic Operation Pruning to Mitigate Side-Channel DNN Model ExtractionIEEE International Symposium on Hardware Oriented Security and Trust (HOST), 2025

288

24 Feb 2025

THOR: A Non-Speculative Value Dependent Timing Side Channel Attack Exploiting Intel AMXIEEE computer architecture letters (CAL), 2025

Samira Mirbagher Ajorpaz

340

24 Feb 2025

Verification of Bit-Flip Attacks against Quantized Neural Networks

290

22 Feb 2025

A Survey of Model Extraction Attacks and Defenses in Distributed Computing Environments

301

22 Feb 2025

Chronus: Understanding and Securing the Cutting-Edge Industry Solutions to DRAM Read DisturbanceInternational Symposium on High-Performance Computer Architecture (HPCA), 2025

198

18 Feb 2025

Understanding RowHammer Under Reduced Refresh Latency: Experimental Analysis of Real DRAM Chips and Implications on Future SolutionsInternational Symposium on High-Performance Computer Architecture (HPCA), 2025

238

17 Feb 2025

Data-Free Model-Related Attacks: Unleashing the Potential of Generative AI

297

28 Jan 2025

PrisonBreak: Jailbreaking Large Language Models with at Most Twenty-Five Targeted Bit-flips

...

671

10 Dec 2024

SoK: A Systems Perspective on Compound AI Threats and Countermeasures

Sarbartha Banerjee

Prateek Sahu

Mulong Luo

Anjo Vahldiek-Oberwagner

N. Yadwadkar

Mohit Tiwari

AAML

395

20 Nov 2024

A Divide-and-Conquer Strategy for Hard-Label Extraction of Deep Neural Networks via Side-Channel AttacksIACR Cryptology ePrint Archive (IACR ePrint), 2024

334

15 Nov 2024

TEESlice: Protecting Sensitive Neural Network Models in Trusted Execution Environments When Attackers have Pre-Trained ModelsACM Transactions on Software Engineering and Methodology (TOSEM), 2024

364

15 Nov 2024

The Early Bird Catches the Leak: Unveiling Timing Side Channels in LLM Serving SystemsIEEE Transactions on Information Forensics and Security (IEEE TIFS), 2024

710

30 Sep 2024

IDEA: An Inverse Domain Expert Adaptation Based Active DNN IP Protection Method

519

29 Sep 2024

Say No to Freeloader: Protecting Intellectual Property of Your Deep ModelIEEE Transactions on Pattern Analysis and Machine Intelligence (TPAMI), 2024

Lianyu Wang

Ming Wang

Huazhu Fu

Daoqiang Zhang

374

23 Aug 2024

DeepBaR: Fault Backdoor Attack on Deep Neural Network Layers

Camilo A. Mart´ınez-Mej´ıa

258

30 Jul 2024

Understanding the Security Benefits and Overheads of Emerging Industry Solutions to DRAM Read Disturbance

A. Giray Yağlıkçı

Onur Mutlu

297

27 Jun 2024

An Experimental Characterization of Combined RowHammer and RowPress Read Disturbance in Modern DRAM Chips

Haocong Luo

Ismail Emir Yüksel

Ataberk Olgun

A. Giray Yağlıkçı

Mohammad Sadrosadati

Onur Mutlu

279

18 Jun 2024

AI Risk Management Should Incorporate Both Safety and Security

Yi Zeng

...

323

29 May 2024

DLoRA: Distributed Parameter-Efficient Fine-Tuning Solution for Large Language Model

Chao Gao

Sai Qian Zhang

ALM

444

08 Apr 2024

CoMeT: Count-Min-Sketch-based Row Tracking to Mitigate RowHammer at Low Cost

F. N. Bostanci

Ismail Emir Yüksel

Ataberk Olgun

Konstantinos Kanellopoulos

258

29 Feb 2024

Spatial Variation-Aware Read Disturbance Defenses: Experimental Analysis of Real DRAM Chips and Implications on Future Solutions

308

28 Feb 2024

Stealing the Invisible: Unveiling Pre-Trained CNN Models through Adversarial Examples and Timing Side-Channels

421

19 Feb 2024

SparseLock: Securing Neural Network Models in Deep Learning Accelerators

Nivedita Shrivastava

S. Sarangi

AAML

291

05 Nov 2023

Like an Open Book? Read Neural Network Architecture with Simple Power Analysis on 32-bit MicrocontrollersSmart Card Research and Advanced Application Conference (CARDIS), 2023

362

02 Nov 2023

Read Disturbance in High Bandwidth Memory: A Detailed Experimental Study on HBM2 DRAM ChipsDependable Systems and Networks (DSN), 2023

368

23 Oct 2023

ABACuS: All-Bank Activation Counters for Scalable and Low Overhead RowHammer Mitigation

400

15 Oct 2023

No Privacy Left Outside: On the (In-)Security of TEE-Shielded DNN Partition for On-Device ML

225

11 Oct 2023

Exploring the Horizon: A Comprehensive Survey of Rowhammer

Amir Naseredini

186

10 Oct 2023

Beyond Labeling Oracles: What does it mean to steal ML models?

430

03 Oct 2023

DeepTheft: Stealing DNN Model Architectures through Power Side ChannelIEEE Symposium on Security and Privacy (IEEE S&P), 2023

219

21 Sep 2023

Fault Injection and Safe-Error Attack for Extraction of Embedded Neural Network Models

356

31 Aug 2023

Fault Injection on Embedded Neural Networks: Impact of a Single Instruction SkipEuromicro Symposium on Digital Systems Design (DSD), 2023

352

31 Aug 2023

One-bit Flip is All You Need: When Bit-flip Attack Meets Model TrainingIEEE International Conference on Computer Vision (ICCV), 2023

183

12 Aug 2023

Pareto-Secure Machine Learning (PSML): Fingerprinting and Securing Inference Serving Systems

443

03 Jul 2023

RowPress: Amplifying Read Disturbance in Modern DRAM ChipsInternational Symposium on Computer Architecture (ISCA), 2023

624

29 Jun 2023

Retrospective: Flipping Bits in Memory Without Accessing Them: An Experimental Study of DRAM Disturbance Errors

O. Mutlu

360

561

28 Jun 2023

Extracting Cloud-based Model with Prior Knowledge

AAML MIACV SILM MLAU SLR

484

07 Jun 2023