Question 1

What is Model Extraction?

Accepted Answer

Attacks that attempt to reconstruct or clone a proprietary ML model through systematic queries. Attacker sends many queries to API, collects input-output pairs, trains "surrogate model". Works with MLaaS, can steal billions in R&D investment. Defenses: Rate limiting, query monitoring, output perturbation.

Question 2

How does Model Extraction work?

Accepted Answer

Attacker sends many queries to API, collects input-output pairs, trains "surrogate model". Works with MLaaS, can steal billions in R&D investment. Defenses: Rate limiting, query monitoring, output perturbation.

Question 3

Why is Model Extraction important for marketing?

Accepted Answer

Anyone offering custom AI models via APIs risks model extraction. Competitors could steal proprietary insights.

Question 4

How is Model Extraction used in practice?

Accepted Answer

A competitor sends 1 million queries to a product recommendation API, trains their own model – saves years of development and data collection.

Question 5

What are common mistakes with Model Extraction?

Accepted Answer

Hard to distinguish from legitimate usage. Rate limiting can hinder real customers. Legal situation unclear.

Question 6

Where does Model Extraction come from?

Accepted Answer

Tramèr et al. demonstrated model extraction against cloud ML APIs in 2016. With the LLM era, it became relevant for API services like OpenAI. API access costs make attacks more expensive, but not impossible.

Model Extraction

Explanation

Marketing Relevance

Example

Common Pitfalls

Origin & History

Comparisons & Differences

Model Extraction vs. Data Poisoning

Model Extraction vs. Prompt Leaking

Further Resources

Related Services

Related Terms