Secure Sparse Gradient Aggregation in Distributed Architectures

被引:0
作者
van Rooij, Mario [1 ]
van Rooij, Sabina [2 ]
Bouma, Henri [2 ]
Pimentel, Andy [3 ]
机构
[1] UvA TNO, The Hague, Netherlands
[2] TNO, The Hague, Netherlands
[3] Univ Amsterdam, Amsterdam, Netherlands
来源
2022 9TH INTERNATIONAL CONFERENCE ON INTERNET OF THINGS: SYSTEMS, MANAGEMENT AND SECURITY, IOTSMS | 2022年
关键词
Federated Learning; Security; Privacy; Distributed systems; IoT; Big Data; Secure Multi-Party Computation;
D O I
10.1109/IOTSMS58070.2022.10062180
中图分类号
TP301 [理论、方法];
学科分类号
081202 ;
摘要
Federated Learning allows multiple parties to train a model collaboratively while keeping data locally. Two main concerns when using Federated Learning are communication costs and privacy. A technique proposed to significantly reduce communication costs and increase privacy is Partial Weight Sharing (PWS). However, this method is insecure due to the possibility to reconstruct the original data from the partial gradients, called inversion attacks. In this paper, we propose a novel method to successfully combine these PWS and Secure Multi-Party Computation, a method for increasing privacy. This is done by making clients share the same part of their gradient, and adding noise to those entries, which are canceled on aggregation. We show that this method does not decrease the accuracy compared to existing methods while preserving privacy.
引用
收藏
页码:128 / 135
页数:8
相关论文
共 34 条
  • [1] Deep Learning with Differential Privacy
    Abadi, Martin
    Chu, Andy
    Goodfellow, Ian
    McMahan, H. Brendan
    Mironov, Ilya
    Talwar, Kunal
    Zhang, Li
    [J]. CCS'16: PROCEEDINGS OF THE 2016 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2016, : 308 - 318
  • [2] [Anonymous], 2017, EMNLP 2017
  • [3] Biewald L., 2020, Experiment tracking with weights and biases
  • [4] Practical Secure Aggregation for Privacy-Preserving Machine Learning
    Bonawitz, Keith
    Ivanov, Vladimir
    Kreuter, Ben
    Marcedone, Antonio
    McMahan, H. Brendan
    Patel, Sarvar
    Ramage, Daniel
    Segal, Aaron
    Seth, Karn
    [J]. CCS'17: PROCEEDINGS OF THE 2017 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY, 2017, : 1175 - 1191
  • [5] Bouma H., 2021, SPIE Counterterrorism, Crime Fighting, Forensics, and Surveillance Technologies, V11869, P38
  • [6] Chen C.-Y., 2020, ADV NEURAL INFORM PR
  • [7] Chen M., 2021, P NATL ACAD SCI, P118
  • [8] Clement J, 2020, ANN NUMBER DATA BREA
  • [9] Federated learning for predicting clinical outcomes in patients with COVID-19
    Dayan, Ittai
    Roth, Holger R.
    Zhong, Aoxiao
    Harouni, Ahmed
    Gentili, Amilcare
    Abidin, Anas Z.
    Liu, Andrew
    Costa, Anthony Beardsworth
    Wood, Bradford J.
    Tsai, Chien-Sung
    Wang, Chih-Hung
    Hsu, Chun-Nan
    Lee, C. K.
    Ruan, Peiying
    Xu, Daguang
    Wu, Dufan
    Huang, Eddie
    Kitamura, Felipe Campos
    Lacey, Griffin
    de Antonio Corradi, Gustavo Cesar
    Nino, Gustavo
    Shin, Hao-Hsin
    Obinata, Hirofumi
    Ren, Hui
    Crane, Jason C.
    Tetreault, Jesse
    Guan, Jiahui
    Garrett, John W.
    Kaggie, Joshua D.
    Park, Jung Gil
    Dreyer, Keith
    Juluru, Krishna
    Kersten, Kristopher
    Rockenbach, Marcio Aloisio Bezerra Cavalcanti
    Linguraru, Marius George
    Haider, Masoom A.
    AbdelMaseeh, Meena
    Rieke, Nicola
    Damasceno, Pablo F.
    Silva, Pedro Mario Cruz E.
    Wang, Pochuan
    Xu, Sheng
    Kawano, Shuichi
    Sriswasdi, Sira
    Park, Soo Young
    Grist, Thomas M.
    Buch, Varun
    Jantarabenjakul, Watsamon
    Wang, Weichung
    Tak, Won Young
    [J]. NATURE MEDICINE, 2021, 27 (10) : 1735 - +
  • [10] Deac A., 2018, Perspectives of Law and Public Administration, V7, P151
1234