Data management method
By establishing a connection between storage devices and information processing devices, and utilizing a distributed ledger database to manage the hash values of learning data and issue verifiable proof information, the problem of tampering with learning datasets is solved, thus achieving the reliability of learning data and the stability of the model.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Applications(China)
- Current Assignee / Owner
- TOYOTA JIDOSHA KK
- Filing Date
- 2025-12-04
- Publication Date
- 2026-06-09
AI Technical Summary
In existing technologies, learning datasets are easily tampered with maliciously, leading to unstable performance of machine learning models and an inability to ensure data reliability.
By establishing a connection between storage devices and information processing devices, a distributed ledger database is used to manage the hash values of learning data and issue verification information that can be verified by third parties, ensuring the integrity and reliability of learning data.
It effectively prevents learning data from being tampered with, ensures data reliability, and improves the performance and security of machine learning models.
Smart Images

Figure CN122174279A_ABST
Abstract
Description
Technical Field
[0001] This invention relates to the technical field of a data management method. Background Technology
[0002] For example, as a learning method for artificial intelligence (AI) models, a learning dataset is proposed that uses a set of training data, including learning data and correct labels (see Patent Document 1).
[0003] Patent Document 1: Japanese Patent Application Publication No. 2024-151166 Summary of the Invention
[0004] For example, the accuracy of machine learning often depends on the learning dataset. In other words, whether or not a learning model can achieve the desired performance generally depends on the learning dataset. Furthermore, there is a known method of attacking a model that learns using a tampered learning dataset by maliciously altering a portion of the learning dataset (so-called data poisoning).
[0005] The present invention was made in view of the above circumstances, and its objective is to provide a data management method that can ensure the reliability of learning data.
[0006] One aspect of the present invention relates to a data management method comprising: a management step in which a management unit associated with a storage device manages third-party verifiable certification information issued to the storage device, the storage device storing learning data that meets predetermined conditions. Attached Figure Description
[0007] Figure 1 This is a diagram illustrating an example of a hardware structure used to implement the data management method involved in the implementation method.
[0008] Figure 2 This is a block diagram illustrating an example of the structure of an information processing apparatus according to an embodiment.
[0009] Figure 3 This is a concept diagram representing the concept of issuing proof information. Detailed Implementation
[0010] refer to Figures 1 to 3 The implementation methods involved in the data management approach are described. Figure 1 In this system, a decentralized network 1 with multiple computers can implement a first decentralized ledger database. A decentralized network 2 with multiple computers can implement a second decentralized ledger database. Furthermore, at least one of the first and second decentralized ledger databases can be a blockchain.
[0011] The storage device DS stores learning data LD used for machine learning of the model. The learning data LD stored in the storage device DS is data that meets certain conditions. These conditions may include at least one of the following: data cleaning has been performed, it does not contain personal information, and it does not violate copyright law. As an example of data cleaning when the learning data DS is text data, examples include correcting inconsistencies or misrepresentations. Furthermore, various existing methods can be applied to data cleaning. Therefore, a detailed explanation of data cleaning is omitted.
[0012] Information processing device 10 manages storage device DS. (Reference) Figure 2 The structure of the information processing device 10 will be described. Figure 2 The information processing device 10 includes a computing unit 11, a storage unit 12, a communication unit 13, an input unit 14, and an output unit 15. The computing unit 11, storage unit 12, communication unit 13, input unit 14, and output unit 15 are connected via a data bus 16. Furthermore, the information processing device 10 can be a personal computer, a tablet terminal, or a smartphone.
[0013] The arithmetic unit 11 may have a processor. Furthermore, the arithmetic unit 11 may have a single processor or multiple processors. That is, the arithmetic unit 11 may have more than one processor. Additionally, the processor may be a multi-core processor. In the case where the arithmetic unit 11 has a single processor that functions as a multi-core processor, it can be said that the arithmetic unit 11 logically has multiple processors.
[0014] The processor may be at least one of a Central Processing Unit (CPU), a Graphics Processing Unit (GPU), a Field Programmable Gate Array (FPGA), and a Tensor Processing Unit (TPU).
[0015] Storage device 12 may be at least one of random access memory (RAM), read-only memory (ROM), hard disk drive, magneto-optical disk drive, solid-state drive (SSD), and optical disk array. That is, storage device 12 may be implemented by a single device or by multiple devices.
[0016] The communication device 13 can communicate with external devices of the information processing device 10. In addition, the communication device 13 can perform wired communication or wireless communication.
[0017] Input device 14 is a device capable of accepting information input from an external source to information processing device 10. Input device 14 may include user-operable devices (e.g., keyboard, mouse, touch panel, etc.) of information processing device 10. Input device 14 may include, for example, a recording medium reading device capable of reading information recorded on a recording medium removable from information processing device 10, such as a Universal Serial Bus (USB) memory. Furthermore, when information is input to information processing device 10 via communication device 13 (in other words, when information processing device 10 obtains information via communication device 13), communication device 13 may function as an input device.
[0018] Output device 15 is a device capable of outputting information to the outside of information processing device 10. Output device 15 may include a display device capable of outputting visual information such as characters and images. Additionally, output device 15 may include a speaker capable of outputting auditory information such as sound. Output device 15 may include a vibration motor capable of outputting tactile information such as vibration. Output device 15 may include a printer. Output device 15 may output information to a recording medium removable from information processing device 10, such as a USB memory. Furthermore, when information processing device 10 outputs information via communication device 13, communication device 13 may function as an output device.
[0019] Storage device 12 is capable of storing desired data. The computer program CP executed by the arithmetic unit 11 can be stored in storage device 12. When the arithmetic unit 11 executes the computer program CP, storage device 12 can temporarily store data temporarily used by the arithmetic unit 11.
[0020] Furthermore, the computer program CP can be recorded on a computer-readable and non-transitory recording medium. In this case, the computer program CP can be stored in the storage device 12 by reading the recording medium using a recording medium reading device (not shown) included in the information processing device 10. Additionally, at least one of optical discs, magnetic media, magneto-optical discs, semiconductor memory, and any medium capable of storing other programs can be used as the recording medium. Furthermore, the computer program CP can also be obtained from an external device (not shown) outside the information processing device 10 via the communication device 13. In other words, the computer program CP can be downloaded from an external device to the storage device 12 of the information processing device 10.
[0021] The arithmetic unit 11 (e.g., a processor) can perform the processing to be performed by the information processing unit 10 together with the storage device 12 storing the computer program CP (in other words, together with the storage device 12 and the computer program CP stored in the storage device 12). For example, the arithmetic unit 11 can implement logical function blocks for performing the processing to be performed by the information processing unit 10 within the arithmetic unit 11 (e.g., within the processor) by executing the computer program CP.
[0022] For example, the computing unit 11 of the information processing device 10 can calculate the hash value of the learning data LD stored in the storage device DS. The information processing device 10 can register the calculated hash value into the second decentralized ledger database via the decentralized network 2. As a result, the hash values associated with the learning data LD can be managed by the second decentralized ledger database.
[0023] After registering the hash value associated with the learning data LD stored in the storage device DS to the second decentralized ledger database, the information processing device 10 can provide the issuer V (refer to) the proof information that can be verified by a third party. Figure 3 ) Request the issuance of certification information related to the storage device DS. Additionally, as an example of certification information that can be verified by a third party, verifiable credentials (VCs) can be cited.
[0024] The issuer V, having received the issuance request for certification information from the information processing device 10, can examine whether the storage device DS meets the prescribed issuance requirements. For example, the prescribed issuance requirements may include that the learning data LD meets the prescribed requirements and that the hash value associated with the learning data LD is registered in the distributed ledger database.
[0025] When the storage device DS meets the prescribed issuance conditions, the issuer V can issue certification information related to the storage device DS. The issued certification information can be sent to the information processing device 10 that manages the storage device DS (in other words, is associated with the storage device DS). Here, the certification information may include issuer identification information for identifying the issuer V, storage device identification information for identifying the storage device DS, and digital signatures, etc. When the issuer V issues the certification information, the issuer V can register the issuer identification information, storage device identification information, and the public key associated with the issuer V in the first decentralized ledger database via the decentralized network 1.
[0026] The information processing device 10, upon receiving the issued certification information, stores the certification information in a management unit (e.g., a wallet) that is associated with the storage device identification information. Furthermore, at least a portion of this management unit may be implemented by the storage device 12.
[0027] Additionally, the first decentralized ledger database can be referred to as a "verifiable data registry." At least one of the issuer identification information and storage device identification information can be a decentralized identifier (DID).
[0028] An example of a method for verifying proof information associated with storage device DS is illustrated. The public key of issuer V can be obtained from a first decentralized ledger database based on the issuer identification information included in the proof information associated with storage device DS. Then, issuer V's public key can be used to verify the digital signature included in the proof information associated with storage device DS.
[0029] (Technical effect)
[0030] As described above, the hash value associated with the learning data LD stored in the storage device DS is managed by the second decentralized ledger database. It is assumed that if at least a portion of the learning data LD is tampered with, the hash value associated with the tampered learning data LD will differ from the hash value associated with the learning data LD registered in the second decentralized ledger database. Therefore, by having the hash value associated with the learning data LD managed by the second decentralized ledger database, tampering of the learning data LD stored in the storage device DS can be suppressed. Furthermore, a verification certificate (e.g., VC) is issued to the storage device DS that can be verified by a third party. This verification certificate proves the legitimacy of the storage device DS. As a result, the reliability of the learning data LD stored in the storage device DS can be ensured.
[0031] Hereinafter, various aspects of the invention derived from the embodiments described above will be described.
[0032] One aspect of the invention relates to a data management method comprising: a management step in which a management unit associated with a storage device manages third-party verifiable certification information issued to the storage device, the storage device storing learning data that meets predetermined conditions.
[0033] In the data management method described above, the hash value associated with the learning data can be registered in the blockchain. This configuration can prevent the learning data from being tampered with.
[0034] In the data management methods described above, the specified conditions may include at least one of the following: data cleaning has been completed, the data does not contain personal information, and the data does not violate copyright law. If such conditions are met, high-quality learning data can be provided.
[0035] In the data management methods described above, the proof information can be a verifiable credential.
[0036] This invention is not limited to the embodiments described above, and appropriate modifications can be made without departing from the spirit or concept of the invention as read in its entirety from the claims and description. The data management method accompanying such modifications is also included within the technical scope of this invention.
[0037] Symbol Explanation
[0038] 1, 2 - Distributed network, 10 - Information processing device, DS - Storage device.
Claims
1. A data management method, characterized in that, include: The management process involves a management unit associated with the storage device managing third-party verifiable certification information issued to the storage device, which stores learning data that meets specified conditions.
2. The data management method according to claim 1, characterized in that, The hash value associated with the learning data is registered in the blockchain.
3. The data management method according to claim 1, characterized in that, The stipulated conditions are that the data has been cleaned, does not contain personal information, and does not violate at least one of the following conditions: data has been cleaned, it does not contain personal information, and it does not violate copyright law.
4. The data management method according to claim 1, characterized in that, The proof information is a verifiable credential.