Explained: Model Distillation Attacks

You spend eighteen months and several million dollars training a model. It is good. It is your competitive edge. You wrap it in a clean API, set a price per thousand calls, and open it to the world. Six weeks later a competitor launches a near-identical service at half your price. Their model behaves almost exactly like yours: same quirks, same edge-case answers, even the same odd mistakes on the same odd inputs. They never breached your servers.… Read More