RobWE introduces a novel watermark embedding approach to safeguard ownership of personalized models in federated learning. The scheme decouples the embedding process into head layer and representation layer, ensuring client privacy and model aggregation compatibility. By employing watermark slice embedding and tamper detection mechanisms, RobWE achieves superior fidelity, reliability, and robustness compared to state-of-the-art schemes.
إلى لغة أخرى
من محتوى المصدر
arxiv.org
الرؤى الأساسية المستخلصة من
by Yang Xu,Yunl... في arxiv.org 03-01-2024
https://arxiv.org/pdf/2402.19054.pdfاستفسارات أعمق