NeuNAC: A novel fragile watermarking algorithm for integrity protection of neural networks

The last decade has witnessed a massive deployment of Machine Learning tools in everyday life automated tasks. Neural Networks are nowadays in use in a growing number of application areas because of their excellent performances. Unfortunately, it has been shown by many researchers that they can be attacked and fooled in several different ways, and this can dangerously impair their ability to correctly perform their tasks. In this paper we describe a watermarking algorithm that can protect and verify the integrity of (Deep) Neural Networks when deployed in safety critical systems, such as autonomous driving systems or monitoring and surveillance systems. (c) 2021 The Authors. Published by Elsevier Inc. This is an open access article under the CC BY NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/).