Papers
Topics
Authors
Recent
Search
2000 character limit reached

Enabling Privacy-Preserving and Publicly Auditable Federated Learning

Published 7 May 2024 in cs.CR | (2405.04029v1)

Abstract: Federated learning (FL) has attracted widespread attention because it supports the joint training of models by multiple participants without moving private dataset. However, there are still many security issues in FL that deserve discussion. In this paper, we consider three major issues: 1) how to ensure that the training process can be publicly audited by any third party; 2) how to avoid the influence of malicious participants on training; 3) how to ensure that private gradients and models are not leaked to third parties. Many solutions have been proposed to address these issues, while solving the above three problems simultaneously is seldom considered. In this paper, we propose a publicly auditable and privacy-preserving federated learning scheme that is resistant to malicious participants uploading gradients with wrong directions and enables anyone to audit and verify the correctness of the training process. In particular, we design a robust aggregation algorithm capable of detecting gradients with wrong directions from malicious participants. Then, we design a random vector generation algorithm and combine it with zero sharing and blockchain technologies to make the joint training process publicly auditable, meaning anyone can verify the correctness of the training. Finally, we conduct a series of experiments, and the experimental results show that the model generated by the protocol is comparable in accuracy to the original FL approach while keeping security advantages.

Definition Search Book Streamline Icon: https://streamlinehq.com
References (16)
  1. H. B. McMahan, E. Moore, D. Ramage, and B. A. y Arcas, “Federated learning of deep networks using model averaging,” CoRR, vol. abs/1602.05629, 2016.
  2. B. McMahan, E. Moore, D. Ramage, S. Hampson, and B. A. y Arcas, “Communication-efficient learning of deep networks from decentralized data,” in Proceedings of the 20th International Conference on Artificial Intelligence and Statistics, AISTATS 2017, 20-22 April 2017, Fort Lauderdale, FL, USA.   PMLR, 2017, pp. 1273–1282.
  3. T. Yang, G. Andrew, and H. E. et al., “Applied federated learning: Improving google keyboard query suggestions,” CoRR, vol. abs/1812.02903, 2018.
  4. W. Li, F. Milletarì, and D. X. et al., “Privacy-preserving federated brain tumour segmentation,” in Machine Learning in Medical Imaging - 10th International Workshop, MLMI 2019, Held in Conjunction with MICCAI 2019, 2019, pp. 133–141.
  5. Z. Peng, J. Xu, and X. C. et al., “Vfchain: Enabling verifiable and auditable federated learning via blockchain systems,” IEEE Trans. Netw. Sci. Eng., vol. 9, no. 1, pp. 173–186, 2022.
  6. S. K. Lo, Y. Liu, and Q. e. a. Lu, “Towards trustworthy ai: Blockchain-based architecture design for accountability and fairness of federated learning systems,” IEEE Internet of Things Journal, pp. 1–1, 2022.
  7. X. Bao, C. Su, Y. Xiong, W. Huang, and Y. Hu, “Flchain: A blockchain for auditable federated learning with trust and incentive,” in 5th International Conference on Big Data Computing and Communications, BIGCOM 2019, QingDao, China, August 9-11, 2019.   IEEE, 2019, pp. 151–159.
  8. J. Weng, J. Weng, and J. Z. et al., “Deepchain: Auditable and privacy-preserving deep learning with blockchain-based incentive,” IEEE Trans. Dependable Secur. Comput., vol. 18, no. 5, pp. 2438–2455, 2021.
  9. G. Xu, H. Li, S. Liu, K. Yang, and X. Lin, “Verifynet: Secure and verifiable federated learning,” IEEE Trans. Inf. Forensics Secur., vol. 15, pp. 911–926, 2020.
  10. J. Zhao, H. Zhu, F. Wang, R. Lu, Z. Liu, and H. Li, “PVD-FL: A privacy-preserving and verifiable decentralized federated learning framework,” IEEE Trans. Inf. Forensics Secur., vol. 17, pp. 2059–2073, 2022.
  11. J. Xu, H. Li, J. Zeng, and M. Hao, “Efficient and privacy-preserving federated learning with irregular users,” in IEEE International Conference on Communications, ICC 2022.   IEEE, 2022, pp. 534–539.
  12. M. Hao, H. Li, G. Xu, H. Chen, and T. Zhang, “Efficient, private and robust federated learning,” in ACSAC ’21: Annual Computer Security Applications Conference 2021.   ACM, 2021, pp. 45–60.
  13. S. Kanchan and B. J. Choi, “An efficient and privacy-preserving federated learning scheme for flying ad hoc networks,” in IEEE International Conference on Communications, ICC 2022.   IEEE, 2022, pp. 1–6.
  14. Z. Zhang, X. Cao, J. Jia, and N. Z. Gong, “Fldetector: Defending federated learning against model poisoning attacks via detecting malicious clients,” in Proceedings of the 28th ACM SIGKDD Conference on Knowledge Discovery and Data Mining, 2022, pp. 2545–2555.
  15. X. Cao, M. Fang, J. Liu, and N. Z. Gong, “Fltrust: Byzantine-robust federated learning via trust bootstrapping,” in 28th Annual Network and Distributed System Security Symposium, NDSS 2021.
  16. Y. LeCun, “The mnist database of handwritten digits,” http://yann. lecun. com/exdb/mnist/, 1998.

Summary

No one has generated a summary of this paper yet.

Sign Up to Summarize

Paper to Video (Beta)

No one has generated a video about this paper yet.

Sign Up to Generate All Videos Subscribe on YouTube

Whiteboard

No one has generated a whiteboard explanation for this paper yet.

Sign Up to Generate

Open Problems

We haven't generated a list of open problems mentioned in this paper yet.

Generate Now

Continue Learning

We haven't generated follow-up questions for this paper yet.

Generate Now

Collections

Sign up for free to add this paper to one or more collections.

Sign Up

Tweets

Sign up for free to view the 2 tweets with 0 likes about this paper.

Sign Up for Free