Protecting Cognitive Systems from Model Stealing Attacks
US-2019095629-A1 · Mar 28, 2019 · US
Machine Learning Model Score Obfuscation Using Time-based Score Oscillations
US2020349462A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2020349462-A1 |
| Application number | US-201916399718-A |
| Country | US |
| Kind code | A1 |
| Filing date | Apr 30, 2019 |
| Priority date | Apr 30, 2019 |
| Publication date | Nov 5, 2020 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
An artefact is received. Features are later extracted from the artefact and are used to populate a vector. The vector is input into a classification model to generate a score. This score is then modified using a time-based oscillation function and is provided to a consuming application or process. Related apparatus, systems, techniques and articles are also described.
First claim
Opening claim text (preview).
What is claimed is: 1 . A computer-implemented method comprising: receiving an artefact; extracting features from the artefact and populating a vector; inputting the vector into a classification model to generate a score; modifying the score using a time-based oscillation function; and providing the modified score to a consuming application or process. 2 . The method of claim 1 further comprising reducing features in the vector prior to the inputting into the classification model. 3 . The method of claim 2 , wherein the features are reduced using random projection matrices. 4 . The method of claim 2 , wherein the features are reduced using principal component analysis. 5 . The method of claim 1 , wherein the classification model is a machine learning model trained using a training data set and providing a continuous scale output. 6 . The method of claim 1 , wherein the classification model characterizes the artefact as being malicious or benign to access, execute, or continue to execute. 7 . The method of claim 6 further comprising: preventing access or execution of the artefact when the classification model characterizes the artefact as being malicious. 8 . The method of claim 1 , wherein the time-based oscillation function is made of a combination of simpler periodic functions. 9 . The method of claim 1 , wherein the time-based oscillation function is bounded by maximum and minimum values. 10 . The method of claim 1 , wherein the time-based oscillation function includes attenuation to bound the magnitude of the generated noise. 11 . A system comprising: at least one data processor; and memory storing instructions which, when executed by the at least one data processor, result in operations comprising: receiving an artefact; extracting features from the artefact and populating a vector; inputting the vector into a classification model to generate a score; modifying the score using a time-based oscillation function; and providing the modified score to a consuming application or process. 12 . The system of claim 11 , wherein the operations further comprise: comprising reducing features in the vector prior to the inputting into the classification model. 13 . The system of claim 12 , wherein the features are reduced using random projection matrices. 14 . The system of claim 12 , wherein the features are reduced using principal component analysis. 15 . The system of claim 11 , wherein the classification model is a machine learning model trained using a training data set and providing a continuous scale output. 16 . The system of claim 11 , wherein the classification model characterizes the artefact as being malicious or benign to access, execute, or continue to execute. 17 . The system of claim 16 further comprising: preventing access or execution of the artefact when the classification model characterizes the artefact as being malicious. 18 . The system of claim 11 , wherein the time-based oscillation function is made of a combination of simpler periodic functions. 19 . The system of claim 11 , wherein the time-based oscillation function is bounded by maximum and minimum values. 20 . The system of claim 11 , wherein the time-based oscillation function includes attenuation to bound the magnitude of the generated noise.
Assignees
Inventors
Classifications
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2020349462A1 cover?
- An artefact is received. Features are later extracted from the artefact and are used to populate a vector. The vector is input into a classification model to generate a score. This score is then modified using a time-based oscillation function and is provided to a consuming application or process. Related apparatus, systems, techniques and articles are also described.
- Who is the assignee on this patent?
- Cylance Inc
- What technology area does this patent fall under?
- Primary CPC classification G06N20/00. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Nov 05 2020 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 1 related publication on this page (citations in our corpus or others sharing the same primary CPC).