Can compiled .engine be reverse engineered?

mathiasbertorelli · June 11, 2021, 2:24pm

Hello,

I have a Pytorch model compiled to TensorRT, which I need to deliver to a third party client so they can use it (business requirement, we cannot perform the detections in our cloud service).

Since we’re worried about other people stealing the architecture of our model, as well as the weights, I would like to know if there is any way of reverse engineering the .engine file and extracting said weights and model architecture.

Thank you in advance

spolisetty · June 14, 2021, 3:40pm

Hi @mathiasbertorelli,

Yes, it would not be that difficult to reverse engineer a plan file. If the you want to protect against that, then you need to protect it against tampering. To protect .plan file can be encrypted or the weights can be loaded at runtime via the refit interface.

Thank you.

mathiasbertorelli · June 15, 2021, 6:12pm

Thank you so much for your answer.

Topic		Replies	Views
Engine MODEL Encryption TensorRT	2	1850	September 17, 2023
Nvinfer use model from memory over path DeepStream SDK	5	549	June 28, 2022
PLAN file security Jetson Nano	3	446	October 12, 2019
Convert .engine extension file to .plan extension TensorRT omniverse_extension	1	1217	November 3, 2021
How to read the PLAN file? TensorRT	4	1477	October 12, 2021
What is the difference between building an engine and serializing a model? Jetson TX2 tensorrt	2	488	October 18, 2021
Tensort RT - Can we get API version from .engine/.plan file? TensorRT	0	471	May 15, 2018
Request: ability to cross-build PLAN files TensorRT	3	1256	January 17, 2021
Tensorrt conversion for muiltiple weights file with the same architecture TensorRT tensorrt	1	358	October 31, 2023
Jetpack from 4.4 to 4.6 and AI models issues Jetson Xavier NX jetson-inference	2	429	July 7, 2022

Can compiled .engine be reverse engineered?

Related topics