| CPC G06F 21/16 (2013.01) [G06F 16/90335 (2019.01); G06N 5/04 (2013.01); G06N 20/00 (2019.01); H04L 9/3247 (2013.01); H04L 63/0428 (2013.01)] | 20 Claims |
|
1. A computer-implemented method of a data processing (DP) accelerator, the method comprising:
receiving, by the DP accelerator comprising one of a math co-processor and a DSP, input data from a host device over a secure link of a peripheral component interconnect express (PCIe) communication channel;
executing, by the DP accelerator, a watermark-enabled artificial intelligence (AI) model based on the input data,
receiving, by the DP accelerator, a watermark-enabled kernel over the secure link;
executing, by the DP accelerator, the received watermark-enabled kernel to extract the watermark from the watermark-enabled AI model;
executing, by the DP accelerator, the watermark-enabled kernel to sign the extracted watermark;
transmitting the signed watermark of the watermark-enabled AI model to the host device over the secure link;
whereby the execution of the DP accelerator of the watermark-enabled kernel is faster than a corresponding execution performed by the host;
and whereby the host is configured to verify the signed watermark to determine that the watermark-enabled artificial intelligence (AI) model is authentic because the watermark-enabled kernel is trusted.
|