• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

WFB:基于水印的联邦学习模型区块链版权保护框架

WFB: watermarking-based copyright protection framework for federated learning model via blockchain.

作者信息

Shao Sujie, Wang Yue, Yang Chao, Liu Yan, Chen Xingyu, Qi Feng

机构信息

State Key Laboratory of Networking and Switching Technology, Beijing University of Posts and Telecommunications, Beijing, 100876, China.

State Grid Liaoning Electric Power Co., Ltd, Shenyang, 110006, China.

出版信息

Sci Rep. 2024 Aug 21;14(1):19453. doi: 10.1038/s41598-024-70025-1.

DOI:10.1038/s41598-024-70025-1
PMID:39169096
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC11339463/
Abstract

Federated learning (FL) enables users to train the global model cooperatively without exposing their private data across the engaged parties, which is widely used in privacy-sensitive business. However, during the life cycle of FL models, both adversaries' attacks and ownership generalization threaten the FL models' copyright and affect the models' reliability. To address these problems, existing model watermarking techniques can be used to verify FL model's ownership. However, due to the lack of credible binding from "model extracted watermarks" to "ownership verification", it is difficult to form a closed-loop watermarking framework for copyright protection. Therefore, starting from the shortcomings of the current watermark verification scheme, this article proposed WFB, a blockchain-empowered watermarking framework for ownership verification of federated models. Firstly, we propose a improved watermark generation algorithm to solve the credibility issue of watermarks. Secondly, we propose a watermark embedding method in federated learning, while blockchain technology is used to ensure the credible storage of watermark information throughout the process. Thirdly, the credibility of ownership verification is improved because of the watermark authenticity. Experimental results demonstrate the fidelity, effectiveness and robustness of WFB, with other superiorities such as improving process security and traceability.

摘要

联邦学习(FL)使用户能够在不向参与方暴露其私有数据的情况下协同训练全局模型,这在对隐私敏感的业务中被广泛使用。然而,在联邦学习模型的生命周期中,对手的攻击和所有权泛化都威胁着联邦学习模型的版权,并影响模型的可靠性。为了解决这些问题,可以使用现有的模型水印技术来验证联邦学习模型的所有权。然而,由于缺乏从“模型提取的水印”到“所有权验证”的可信绑定,很难形成一个用于版权保护的闭环水印框架。因此,本文从当前水印验证方案的缺点出发,提出了WFB,一种用于联邦模型所有权验证的区块链赋能水印框架。首先,我们提出了一种改进的水印生成算法来解决水印的可信度问题。其次,我们提出了一种联邦学习中的水印嵌入方法,同时利用区块链技术确保水印信息在整个过程中的可信存储。第三,由于水印的真实性,提高了所有权验证的可信度。实验结果证明了WFB的保真度、有效性和鲁棒性,以及在提高过程安全性和可追溯性等其他优势。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/696954404cce/41598_2024_70025_Fig8_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/591276d7b655/41598_2024_70025_Fig1_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/8863103fa7b5/41598_2024_70025_Fig2_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/6050628c41f7/41598_2024_70025_Fig3_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/e5b7ba0f239a/41598_2024_70025_Figa_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/f0c14c2ec548/41598_2024_70025_Fig4_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/ba5f03195589/41598_2024_70025_Figb_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/f693a3f916eb/41598_2024_70025_Fig5_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/fe00ac0bf76e/41598_2024_70025_Figc_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/cca0f60b468a/41598_2024_70025_Fig6_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/fa16f01e5409/41598_2024_70025_Fig7_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/696954404cce/41598_2024_70025_Fig8_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/591276d7b655/41598_2024_70025_Fig1_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/8863103fa7b5/41598_2024_70025_Fig2_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/6050628c41f7/41598_2024_70025_Fig3_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/e5b7ba0f239a/41598_2024_70025_Figa_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/f0c14c2ec548/41598_2024_70025_Fig4_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/ba5f03195589/41598_2024_70025_Figb_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/f693a3f916eb/41598_2024_70025_Fig5_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/fe00ac0bf76e/41598_2024_70025_Figc_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/cca0f60b468a/41598_2024_70025_Fig6_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/fa16f01e5409/41598_2024_70025_Fig7_HTML.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/ed59/11339463/696954404cce/41598_2024_70025_Fig8_HTML.jpg

相似文献

1
WFB: watermarking-based copyright protection framework for federated learning model via blockchain.WFB:基于水印的联邦学习模型区块链版权保护框架
Sci Rep. 2024 Aug 21;14(1):19453. doi: 10.1038/s41598-024-70025-1.
2
FedIPR: Ownership Verification for Federated Deep Neural Network Models.FedIPR:联邦深度学习模型的所有权验证。
IEEE Trans Pattern Anal Mach Intell. 2023 Apr;45(4):4521-4536. doi: 10.1109/TPAMI.2022.3195956. Epub 2023 Mar 7.
3
Securing federated learning with blockchain: a systematic literature review.利用区块链保障联邦学习安全:一项系统文献综述
Artif Intell Rev. 2023;56(5):3951-3985. doi: 10.1007/s10462-022-10271-9. Epub 2022 Sep 16.
4
Robust copyright protection using multiple ownership watermarks.
Opt Express. 2015 Feb 9;23(3):3035-46. doi: 10.1364/OE.23.003035.
5
A novel blockchain-watermarking mechanism utilizing interplanetary file system and fast walsh hadamard transform.一种利用星际文件系统和快速沃尔什-哈达玛变换的新型区块链水印机制。
iScience. 2024 Aug 28;27(9):110821. doi: 10.1016/j.isci.2024.110821. eCollection 2024 Sep 20.
6
Imperceptible reversible watermarking of radiographic images based on quantum noise masking.基于量子噪声掩蔽的射线图像的不可感知可逆水印。
Comput Methods Programs Biomed. 2018 Jul;160:119-128. doi: 10.1016/j.cmpb.2018.03.011. Epub 2018 Mar 21.
7
Blockchain Empowered Federated Learning Ecosystem for Securing Consumer IoT Features Analysis.区块链赋能的联邦学习生态系统,用于保障消费者物联网功能分析。
Sensors (Basel). 2022 Sep 8;22(18):6786. doi: 10.3390/s22186786.
8
A robust semi-fragile watermarking system using Pseudo-Zernike moments and dual tree complex wavelet transform for social media content authentication.一种使用伪泽尼克矩和双树复数小波变换的用于社交媒体内容认证的稳健半脆弱水印系统。
Multimed Tools Appl. 2023 Apr 13:1-53. doi: 10.1007/s11042-023-15177-4.
9
PDE based scheme for multi-modal medical image watermarking.基于偏微分方程的多模态医学图像水印方案。
Biomed Eng Online. 2015 Nov 25;14:108. doi: 10.1186/s12938-015-0101-x.
10
A statistical watermark detection technique without using original images for resolving rightful ownerships of digital images.一种无需使用原始图像来解决数字图像合法所有权问题的统计水印检测技术。
IEEE Trans Image Process. 1999;8(11):1534-48. doi: 10.1109/83.799882.

引用本文的文献

1
Practical Implementation of Federated Learning for Detecting Backdoor Attacks in a Next-word Prediction Model.联邦学习在基于下一个单词预测模型中检测后门攻击的实际应用
Sci Rep. 2025 Jan 17;15(1):2328. doi: 10.1038/s41598-024-82079-2.