Deep neural network obfuscator for machine learning as a service in presence of cache side-channel attacks캐시 부채널 공격이 존재하는 서비스로서의 기계 학습을 위한 심층 신경망 난독화기
As Deep Neural Networks (DNNs), one of the machine learning algorithms, has solved many complex problems with good performance, the demand of DNNs has increased. DNNs are provided to users in the form of Machine Learning as a Service (MLaaS) because of its large computational complexity, and service providers are obliged to design and analyze the neural networks with good performance and provide them to users. Therefore, a good performance DNNs has high commercial value. For this reason, researches have been published to obtain architectural information of DNNs using cache side-channel attacks in the cloud environment. In this dissertation, we introduce several mitigation techniques to prevent such attacks and analyze their effects. Also, we propose an obfuscator that conceals the dimension of each layer which is one of the architectural information of DNNs. This obfuscator hides the real dimension value from the attacker by making all the dimensions of each layer of the neural network equal. Finally, we optimize the performance of the obfuscator in a way that does not significantly degrade obfuscation and evaluate inference time, memory usage, and side-channel vulnerability metrics of obfuscated DNNs.
- Advisors
- Huh, Jaehyukresearcher; 허재혁researcher
- Description
- 한국과학기술원 :전산학부,
- Publisher
- 한국과학기술원
- Issue Date
- 2019
- Identifier
- 325007
- Language
- eng
- Description
학위논문(석사) - 한국과학기술원 : 전산학부, 2019.8,[iv, 42 p. :]
- Keywords
Side-channel attacks▼adeep neural networks▼amachine learning as a service▼acache memory▼amitigation techniques; 부채널 공격▼a심층 신경망▼a서비스로서의 기계 학습▼a캐시 메모리▼a완화 기법
- Appears in Collection
- CS-Theses_Master(석사논문)
- Files in This Item
- There are no files associated with this item.
Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.