FedTracker introduces a novel framework for protecting FL models by embedding a global watermark and unique local fingerprints. The global watermark mechanism authenticates ownership, while local fingerprints identify the model's origin. The framework addresses challenges of utility preservation during watermark embedding and differentiation between Client models. FedTracker leverages Continual Learning principles to embed watermarks effectively. Experimental results demonstrate its effectiveness in ownership verification, traceability, fidelity, and robustness against attacks.
לשפה אחרת
מתוכן המקור
arxiv.org
תובנות מפתח מזוקקות מ:
by Shuo Shao,We... ב- arxiv.org 03-05-2024
https://arxiv.org/pdf/2211.07160.pdfשאלות מעמיקות