Centrala begrepp
The author presents FedTracker, a framework providing ownership verification and traceability in FL models using watermarking and local fingerprints.
Sammanfattning
FedTracker introduces a bi-level protection scheme with global watermarking for ownership verification and local fingerprints for traceability. It addresses challenges of utility preservation during watermark embedding and differentiation between Client models.
Key points:
- Federated Learning (FL) faces model leakage issues due to malicious clients.
- Ownership verification and traceability are crucial for protecting FL model copyright.
- FedTracker embeds global watermarks and local fingerprints to address these concerns effectively.
- Challenges include preserving model utility during watermark embedding and distinguishing different Client models.
Statistik
Ownership verification refers to proving the suspicious model belongs to the FL group.
Traceability involves tracing the stolen model back to the malicious client in FL.