Hybridalpha: An efficient approach for privacy-preserving federated learning

Runhua Xu; Nathalie Baracaldo; Yi Zhou; Ali Anwar; Heiko Ludwig

doi:10.1145/3338501.3357371

Hybridalpha: An efficient approach for privacy-preserving federated learning

Runhua Xu, Nathalie Baracaldo, Yi Zhou, Ali Anwar, Heiko Ludwig

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

288 Scopus citations

Abstract

Federated learning has emerged as a promising approach for collaborative and privacy-preserving learning. Participants in a federated learning process cooperatively train a model by exchanging model parameters instead of the actual training data, which they might want to keep private. However, parameter interaction and the resulting model still might disclose information about the training data used. To address these privacy concerns, several approaches have been proposed based on differential privacy and secure multiparty computation (SMC), among others. They often result in large communication overhead and slow training time. In this paper, we propose HybridAlpha, an approach for privacy-preserving federated learning employing an SMC protocol based on functional encryption. This protocol is simple, efficient and resilient to participants dropping out. We evaluate our approach regarding the training time and data volume exchanged using a federated learning process to train a CNN on the MNIST data set. Evaluation against existing crypto-based SMC solutions shows that HybridAlpha can reduce the training time by 68% and data transfer volume by 92% on average while providing the same model performance and privacy guarantees as the existing solutions.

Original language	English (US)
Title of host publication	AISec 2019 - Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security
Publisher	Association for Computing Machinery
Pages	13-23
Number of pages	11
ISBN (Electronic)	9781450368339
DOIs	https://doi.org/10.1145/3338501.3357371
State	Published - Nov 11 2019
Externally published	Yes
Event	12th ACM Workshop on Artificial Intelligence and Security, AISec 2019, co-located with CCS 2019 - London, United Kingdom Duration: Nov 15 2019 → …

Publication series

Name	Proceedings of the ACM Conference on Computer and Communications Security
ISSN (Print)	1543-7221

Conference

Conference	12th ACM Workshop on Artificial Intelligence and Security, AISec 2019, co-located with CCS 2019
Country/Territory	United Kingdom
City	London
Period	11/15/19 → …

Bibliographical note

Publisher Copyright:
© 2019 Copyright held by the owner/author(s).

Keywords

Federated learning
Functional encryption
Neural networks
Privacy

Publisher link

10.1145/3338501.3357371

Find It

Find It at U of M Libraries

Cite this

Xu, R., Baracaldo, N., Zhou, Y., Anwar, A., & Ludwig, H. (2019). Hybridalpha: An efficient approach for privacy-preserving federated learning. In AISec 2019 - Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security (pp. 13-23). (Proceedings of the ACM Conference on Computer and Communications Security). Association for Computing Machinery. https://doi.org/10.1145/3338501.3357371

Hybridalpha: An efficient approach for privacy-preserving federated learning. / Xu, Runhua; Baracaldo, Nathalie; Zhou, Yi et al.
AISec 2019 - Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security. Association for Computing Machinery, 2019. p. 13-23 (Proceedings of the ACM Conference on Computer and Communications Security).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Xu, R, Baracaldo, N, Zhou, Y, Anwar, A & Ludwig, H 2019, Hybridalpha: An efficient approach for privacy-preserving federated learning. in AISec 2019 - Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security. Proceedings of the ACM Conference on Computer and Communications Security, Association for Computing Machinery, pp. 13-23, 12th ACM Workshop on Artificial Intelligence and Security, AISec 2019, co-located with CCS 2019, London, United Kingdom, 11/15/19. https://doi.org/10.1145/3338501.3357371

Xu R, Baracaldo N, Zhou Y, Anwar A, Ludwig H. Hybridalpha: An efficient approach for privacy-preserving federated learning. In AISec 2019 - Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security. Association for Computing Machinery. 2019. p. 13-23. (Proceedings of the ACM Conference on Computer and Communications Security). doi: 10.1145/3338501.3357371

@inproceedings{66536a592c484b84b6490dfee3967db8,

title = "Hybridalpha: An efficient approach for privacy-preserving federated learning",

abstract = "Federated learning has emerged as a promising approach for collaborative and privacy-preserving learning. Participants in a federated learning process cooperatively train a model by exchanging model parameters instead of the actual training data, which they might want to keep private. However, parameter interaction and the resulting model still might disclose information about the training data used. To address these privacy concerns, several approaches have been proposed based on differential privacy and secure multiparty computation (SMC), among others. They often result in large communication overhead and slow training time. In this paper, we propose HybridAlpha, an approach for privacy-preserving federated learning employing an SMC protocol based on functional encryption. This protocol is simple, efficient and resilient to participants dropping out. We evaluate our approach regarding the training time and data volume exchanged using a federated learning process to train a CNN on the MNIST data set. Evaluation against existing crypto-based SMC solutions shows that HybridAlpha can reduce the training time by 68% and data transfer volume by 92% on average while providing the same model performance and privacy guarantees as the existing solutions.",

keywords = "Federated learning, Functional encryption, Neural networks, Privacy",

author = "Runhua Xu and Nathalie Baracaldo and Yi Zhou and Ali Anwar and Heiko Ludwig",

note = "Publisher Copyright: {\textcopyright} 2019 Copyright held by the owner/author(s).; 12th ACM Workshop on Artificial Intelligence and Security, AISec 2019, co-located with CCS 2019 ; Conference date: 15-11-2019",

year = "2019",

month = nov,

day = "11",

doi = "10.1145/3338501.3357371",

language = "English (US)",

series = "Proceedings of the ACM Conference on Computer and Communications Security",

publisher = "Association for Computing Machinery",

pages = "13--23",

booktitle = "AISec 2019 - Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security",

}

TY - GEN

T1 - Hybridalpha

T2 - 12th ACM Workshop on Artificial Intelligence and Security, AISec 2019, co-located with CCS 2019

AU - Xu, Runhua

AU - Baracaldo, Nathalie

AU - Zhou, Yi

AU - Anwar, Ali

AU - Ludwig, Heiko

PY - 2019/11/11

Y1 - 2019/11/11

N2 - Federated learning has emerged as a promising approach for collaborative and privacy-preserving learning. Participants in a federated learning process cooperatively train a model by exchanging model parameters instead of the actual training data, which they might want to keep private. However, parameter interaction and the resulting model still might disclose information about the training data used. To address these privacy concerns, several approaches have been proposed based on differential privacy and secure multiparty computation (SMC), among others. They often result in large communication overhead and slow training time. In this paper, we propose HybridAlpha, an approach for privacy-preserving federated learning employing an SMC protocol based on functional encryption. This protocol is simple, efficient and resilient to participants dropping out. We evaluate our approach regarding the training time and data volume exchanged using a federated learning process to train a CNN on the MNIST data set. Evaluation against existing crypto-based SMC solutions shows that HybridAlpha can reduce the training time by 68% and data transfer volume by 92% on average while providing the same model performance and privacy guarantees as the existing solutions.

AB - Federated learning has emerged as a promising approach for collaborative and privacy-preserving learning. Participants in a federated learning process cooperatively train a model by exchanging model parameters instead of the actual training data, which they might want to keep private. However, parameter interaction and the resulting model still might disclose information about the training data used. To address these privacy concerns, several approaches have been proposed based on differential privacy and secure multiparty computation (SMC), among others. They often result in large communication overhead and slow training time. In this paper, we propose HybridAlpha, an approach for privacy-preserving federated learning employing an SMC protocol based on functional encryption. This protocol is simple, efficient and resilient to participants dropping out. We evaluate our approach regarding the training time and data volume exchanged using a federated learning process to train a CNN on the MNIST data set. Evaluation against existing crypto-based SMC solutions shows that HybridAlpha can reduce the training time by 68% and data transfer volume by 92% on average while providing the same model performance and privacy guarantees as the existing solutions.

KW - Federated learning

KW - Functional encryption

KW - Neural networks

KW - Privacy

UR - http://www.scopus.com/inward/record.url?scp=85075881884&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85075881884&partnerID=8YFLogxK

U2 - 10.1145/3338501.3357371

DO - 10.1145/3338501.3357371

M3 - Conference contribution

AN - SCOPUS:85075881884

T3 - Proceedings of the ACM Conference on Computer and Communications Security

SP - 13

EP - 23

BT - AISec 2019 - Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security

PB - Association for Computing Machinery

Y2 - 15 November 2019

ER -

Hybridalpha: An efficient approach for privacy-preserving federated learning

Abstract

Publication series

Conference

Bibliographical note

Keywords

Publisher link

Find It

Other files and links

Fingerprint

Cite this