CISPA
Browse

File(s) not publicly available

Adversarial Watermarking Transformer: Towards Tracing Text Provenance with Data Hiding

conference contribution
posted on 2023-11-29, 18:16 authored by Sahar Abdelnabi, Mario FritzMario Fritz
Recent advances in natural language generation have introduced powerful language models with high-quality output text. However, this raises concerns about the potential misuse of such models for malicious purposes. In this paper, we study natural language watermarking as a defense to help better mark and trace the provenance of text. We introduce the Adversarial Watermarking Transformer (AWT) with a jointly trained encoder-decoder and adversarial training that, given an input text and a binary message, generates an output text that is unobtrusively encoded with the given message. We further study different training and inference strategies to achieve minimal changes to the semantics and correctness of the input text. AWT is the first end-to-end model to hide data in text by automatically learning -- without ground truth -- word substitutions along with their locations in order to encode the message. We empirically show that our model is effective in largely preserving text utility and decoding the watermark while hiding its presence against adversaries. Additionally, we demonstrate that our method is robust against a range of attacks.

History

Preferred Citation

Sahar Abdelnabi and Mario Fritz. Adversarial Watermarking Transformer: Towards Tracing Text Provenance with Data Hiding. In: IEEE Symposium on Security and Privacy (S&P). 2021.

Primary Research Area

  • Trustworthy Information Processing

Name of Conference

IEEE Symposium on Security and Privacy (S&P)

Legacy Posted Date

2021-05-20

Open Access Type

  • Unknown

BibTeX

@inproceedings{cispa_all_3427, title = "Adversarial Watermarking Transformer: Towards Tracing Text Provenance with Data Hiding", author = "Abdelnabi, Sahar and Fritz, Mario", booktitle="{IEEE Symposium on Security and Privacy (S&P)}", year="2021", }

Usage metrics

    Categories

    No categories selected

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC