Watermarking Protocol for Deep Neural Network Ownership Regulation in Federated Learning
File version
Author(s)
Wang, SL
Liew, AWC
Griffith University Author(s)
Primary Supervisor
Other Supervisors
Editor(s)
Date
Size
File type(s)
Location
Taipei City, Taiwan
License
Abstract
With the wide application of deep learning models, it is important to verify an author's possession over a deep neural network model by watermarks and protect the model. The development of distributed learning paradigms such as federated learning raises new challenges for model protection. Each author should be able to conduct independent verification and trace traitors. To meet those requirements, we propose a watermarking protocol, Merkle-Sign to meet the prerequisites for ownership verification in federated learning. Our work paves the way for generalizing watermark as a practical security mechanism for protecting deep learning models in distributed learning platforms.
Journal Title
Conference Title
2022 IEEE International Conference on Multimedia and Expo Workshops (ICMEW)
Book Title
Edition
Volume
Issue
Thesis Type
Degree Program
School
Publisher link
Patent number
Funder(s)
Grant identifier(s)
Rights Statement
Rights Statement
Item Access Status
Note
Access the data
Related item(s)
Subject
Neural networks
Deep learning
Machine learning
Persistent link to this record
Citation
Li, FQ; Wang, SL; Liew, AWC, Watermarking Protocol for Deep Neural Network Ownership Regulation in Federated Learning, 2022 IEEE International Conference on Multimedia and Expo Workshops (ICMEW), 2022