Beyond Inferring Class Representatives: User-Level Privacy Leakage From Federated Learning

Federated learning (FL) rests on the notion of training a global model in a decentralized manner. Under this setting, mobile devices perform computations on their local data before uploading the required updates to improve the global model. However, when the participating clients implement an uncoordinated computation strategy, the difficulty is to handle the communication efficiency (i.e., the number of communications per iteration) while exchanging the model parameters during aggregation. Therefore, a key challenge in FL is how users participate to build a high-quality global model with communication efficiency. We tackle this issue by formulating a utility maximization problem, and propose a novel crowdsourcing framework to leverage FL that considers the communication efficiency during parameters exchange. First, we show an incentivebased interaction between the crowdsourcing platform and the participating client's independent strategies for training a global learning model, where each side maximizes its own benefit. We formulate a two-stage Stackelberg game to analyze such scenario and find the game's equilibria. Second, we formalize an admission control scheme for participating clients to ensure a level of local accuracy. Simulated results demonstrate the efficacy of our proposed solution with up to 22% gain in the offered reward.

show abstract

“…We observe that Lemma 2 is a direct consequence of the solution structure derived in (28). Hence, we conclude the proof.…”

Section: B Stackelberg Equilibrium: Algorithm and Solution Approachsupporting

confidence: 70%

“…The idea in this work was to adapt the communication period such that it minimizes the optimization error at each wall-clock time. To this end, interestingly, in some of the latest works such as [28], the authors have well-studied and demonstrated the privacy risk scenario under collaborated learning mechanism such as FL.…”

Section: Related Workmentioning

confidence: 99%

A Crowdsourcing Framework for On-Device Federated Learning

Pandey

Tran

Bennis

et al. 2020

IEEE Trans. Wireless Commun.

248

View full text Add to dashboard Cite

show abstract

“…Information leakage: By definition, FL systems avoid sharing healthcare data among participating institutions. However, the shared information may still indirectly expose private data used for local training, e.g., by model inversion 60 of the model updates, the gradients themselves 61 or adversarial attacks 62,63 . FL is different from traditional training insofar as the training process is exposed to multiple parties, thereby increasing the risk of leakage via reverseengineering if adversaries can observe model changes over time, observe specific model updates (i.e., a single institution's update), or manipulate the model (e.g., induce additional memorisation by others through gradient-ascent-style attacks).…”

Section: Technical Considerationsmentioning

confidence: 99%

The future of digital health with federated learning

et al. 2020

View full text Add to dashboard Cite

Data-driven machine learning (ML) has emerged as a promising approach for building accurate and robust statistical models from medical data, which is collected in huge volumes by modern healthcare systems. Existing medical data is not fully exploited by ML primarily because it sits in data silos and privacy concerns restrict access to this data. However, without access to sufficient data, ML will be prevented from reaching its full potential and, ultimately, from making the transition from research to clinical practice. This paper considers key factors contributing to this issue, explores how federated learning (FL) may provide a solution for the future of digital health and highlights the challenges and considerations that need to be addressed.

show abstract

“…Future research should thus seek to explore the application of DLT-based federated learning to more complex AI models and investigate ways to reduce the induced performance overhead in real-world application scenarios. Furthermore, despite increased confidentiality, research has also shown that federated learning is potentially vulnerable to inference attacks, whereby an adversary can aim to extract information about private training data by inferring the AI model multiple times (Melis et al 2019;Wang et al 2019). In addition to employing DLT for preserving training data provenance and AI model integrity, future research should therefore also explore how DLT could help with preventing inference attacks on federated learning networks.…”

Section: Dlt-based Federated Learningmentioning

confidence: 99%

Trustworthy artificial intelligence

2020

View full text Add to dashboard Cite

Artificial intelligence (AI) brings forth many opportunities to contribute to the wellbeing of individuals and the advancement of economies and societies, but also a variety of novel ethical, legal, social, and technological challenges. Trustworthy AI (TAI) bases on the idea that trust builds the foundation of societies, economies, and sustainable development, and that individuals, organizations, and societies will therefore only ever be able to realize the full potential of AI, if trust can be established in its development, deployment, and use. With this article we aim to introduce the concept of TAI and its five foundational principles (1) beneficence, (2) non-maleficence, (3) autonomy, (4) justice, and (5) explicability. We further draw on these five principles to develop a data-driven research framework for TAI and demonstrate its utility by delineating fruitful avenues for future research, particularly with regard to the distributed ledger technology-based realization of TAI.

show abstract

Beyond Inferring Class Representatives: User-Level Privacy Leakage From Federated Learning

Cited by 690 publications

References 18 publications

A Crowdsourcing Framework for On-Device Federated Learning

A Crowdsourcing Framework for On-Device Federated Learning

The future of digital health with federated learning

Trustworthy artificial intelligence

Contact Info

Product

Resources

About