CPC G06F 21/10 (2013.01) [G06F 21/60 (2013.01); G06F 21/604 (2013.01); G06F 21/62 (2013.01); G06N 3/04 (2013.01)] | 15 Claims |
1. A method, comprising:
receiving authorized raw input at a protective transform module;
receiving unauthorized raw input at a restrictive deep neural network;
processing the authorized raw input at the protective transform module to generate a processed input;
feeding the processed input into the restrictive deep neural network; and
generating a result based on the processed input and the unauthorized raw input,
wherein the result comprises a different learning performance between the authorized raw input and the unauthorized raw input,
wherein processing the authorized raw input comprises applying a perturbation on the authorized raw input, and
wherein the perturbation comprises a predetermined universal perturbation matrix for all inputs, a universal perturbation matrix for all inputs, or a specific perturbation matrix for each input.
|