RobWE introduces a novel watermark embedding approach to safeguard ownership of personalized models in federated learning. The scheme decouples the embedding process into head layer and representation layer, ensuring client privacy and model aggregation compatibility. By employing watermark slice embedding and tamper detection mechanisms, RobWE achieves superior fidelity, reliability, and robustness compared to state-of-the-art schemes.
To Another Language
from source content
arxiv.org
Key Insights Distilled From
by Yang Xu,Yunl... at arxiv.org 03-01-2024
https://arxiv.org/pdf/2402.19054.pdfDeeper Inquiries