Cross-Layer Security Through Multi-Level Cell Memories from Hardware Obfuscation to AI Model Protection
Tobar, Miran 1; Nassar, Hassan
1; Henkel, Jörg 1
1 Institut für Technische Informatik (ITEC), Karlsruher Institut für Technologie (KIT)
1; Henkel, Jörg 11 Institut für Technische Informatik (ITEC), Karlsruher Institut für Technologie (KIT)
Abstract:
Multi-level cell (MLC) non-volatile memories store multiple bits per cell, offering higher density than single-level designs. Their expanded state space has recently been used for hardware security, notably physically unclonable functions that exploit manufacturing variations. We extend MLC security use cases by proposing a method to obfuscate neural network weights stored in external memory. Because modern AI accelerators often use off-chip storage, models are vulnerable to extraction by adversaries with physical or privileged access. We introduce an MLC-assisted encoding scheme that converts weights into obfuscated forms bound to on-chip reconstruction logic. The design adds negligible inference overhead while strengthening resistance to model-stealing attacks, providing lightweight protection without modifying the neural network architecture or training flow.
| Zugehörige Institution(en) am KIT | Institut für Technische Informatik (ITEC) |
| Publikationstyp | Proceedingsbeitrag |
| Publikationsdatum | 08.04.2026 |
| Sprache | Englisch |
| Identifikator | ISBN: 979-8-3315-8361-3 ISSN: 1948-3287 KITopen-ID: 1000193690 |
| Erschienen in | 2026 27th International Symposium on Quality Electronic Design (ISQED), San Francisco, CA, 8th-10th April 2026 |
| Veranstaltung | 27th IEEE International Symposium on Quality Electronic Design (ISQED 2026), San Francisco, CA, USA, 08.04.2026 – 10.04.2026 |
| Verlag | Institute of Electrical and Electronics Engineers (IEEE) |
| Seiten | 1–6 |
| Serie | Conferences |
| Nachgewiesen in | OpenAlex Scopus |