A Joint Client-Server Watermarking Framework for Federated Learning

被引:0
|
作者
Fang, Shufen [1 ,2 ]
Gai, Keke [1 ]
Yu, Jing [3 ]
机构
[1] Beijing Inst Technol, Sch Cyberspace Sci & Technol, Beijing 100081, Peoples R China
[2] Beijing Muguo Tech Ltd, Beijing 100081, Peoples R China
[3] Chinese Acad Sci, Inst Informat Engn, Beijing 100081, Peoples R China
基金
中国国家自然科学基金;
关键词
Federated Learning; Intellectual Property Protection; Watermarking;
D O I
10.1007/978-981-97-5501-1_32
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Federated Learning is a distributed machine learning framework, which is based on the principle of coordinating clients to train models on their private datasets through a centralized server without direct data exchange. It mitigates data privacy risks and improves efficiency, but there is still the risk of model theft, model plagiarism, and unauthorized distribution from adversaries. Watermarking is a well-known paradigm used to prevent these issues. It protects model intellectual property by providing proof of the violation issue's existence. Some recent studies have focused on embedding watermarks on either the client or the server side alone. However, in reality, both the server and clients have ownership of the model. In this paper, we propose a joint client-server watermark embedding framework to protect the intellectual property of both sides. White-box watermark is embedded on the client side and black-box watermark is on the server side. Clients and server can verify their embedded watermarks independently to claim ownership of the model. In addition, we employ continual learning to address the catastrophic forgetting issue. Our experimental results demonstrate that our proposed method can effectively deal with classical watermark removal attacks and is compatible with Differential Privacy.
引用
收藏
页码:424 / 436
页数:13
相关论文
共 50 条
  • [1] A review on client-server attacks and defenses in federated learning
    Sharma, Anee
    Marchang, Ningrinla
    [J]. COMPUTERS & SECURITY, 2024, 140
  • [2] A Framework for OpenGL Client-Server Rendering
    Dyken, Christopher
    Lye, Kjetil Olsen
    Seland, Johan
    Bjonnes, Erik W.
    Hjelmervik, Jon
    Nygaard, Jens Olav
    Hagen, Trond Runar
    [J]. 2012 IEEE 4TH INTERNATIONAL CONFERENCE ON CLOUD COMPUTING TECHNOLOGY AND SCIENCE (CLOUDCOM), 2012,
  • [3] CLIENT-SERVER LEARNING-CURVE
    BROUSELL, DR
    [J]. DATAMATION, 1993, 39 (14): : 9 - 9
  • [4] A Client-Server Deep Federated Learning for Cross-Domain Surgical Image Segmentation
    Subedi, Ronast
    Gaire, Rebati Raman
    Ali, Sharib
    Anh Nguyen
    Stoyanov, Danail
    Bhattarai, Binod
    [J]. DATA ENGINEERING IN MEDICAL IMAGING, DEMI 2023, 2023, 14314 : 21 - 33
  • [5] Client-Server Framework for Securely Outsourcing Computations
    Veugen, Thijs
    [J]. ERCIM NEWS, 2016, (106): : 33 - 33
  • [6] Design and Development of Server-Client Cooperation Framework for Federated Learning
    Park, Jongbin
    Kum, Seung Woo
    [J]. 2022 THIRTEENTH INTERNATIONAL CONFERENCE ON UBIQUITOUS AND FUTURE NETWORKS (ICUFN), 2022, : 271 - 273
  • [7] IS - THE CLIENT-SERVER CONNECTION
    BOGENSCHUTZ, C
    CRATER, TL
    HEDRICK, DR
    HILL, CRD
    JOHNSON, M
    PIZZELANTI, T
    WERTZ, F
    [J]. PIMA MAGAZINE, 1994, 76 (04): : 22 - 25
  • [8] BEWARE OF CLIENT-SERVER
    HADBURG, BP
    [J]. DATAMATION, 1995, 41 (22): : 90 - 90
  • [9] DEFINE CLIENT-SERVER
    FORSELL, C
    [J]. DATAMATION, 1995, 41 (19): : 12 - 12
  • [10] BACKING INTO CLIENT-SERVER
    BAUM, D
    [J]. DATAMATION, 1994, 40 (20): : 71 - 77