This repository contains all datasets, models, and auxiliary files used in the project WatermakNN: Evaluating Black-Box Watermarking Robustness in Deep Learning.
A top-level project description is available separately; this README documents the individual files and how to use them.
File: results.csv
Description: Evaluation metrics for each experiment.
Columns:
modelname – identifier of trained model and attack configurationtrainacc – training accuracytestacc – test accuracywatermark_retention – trigger activation rateFile: TransformedMNIST.csv
Description: MNIST transformed using ImageNet-style preprocessing (resize, normalization, channel expansion).
Format: CSV
[0,1]File: TransformedFashionMNIST.csv
Description: Fashion-MNIST transformed with the same preprocessing pipeline as P2.
Usage: Ready for training; no further preprocessing required.
Files:
SqueezenetScratchMNISTEmbedded.caffemodelSqueezenetScratchFashionMNISTEmbedded.caffemodelDescription:
SqueezeNet models trained from scratch with embedded trigger patterns for watermarking experiments.
Format: Caffe .caffemodel
Example usage:
import caffe caffe.set_mode_cpu() net = caffe.Net( 'SqueezeNet/deploy.prototxt', 'path_to_model.caffemodel', caffe.TEST )
The enironment.yml file and requirements.txt file in the repository root can be used to set up a conda environment with all necessary dependencies for running the code provided in this project.