Practical and Light-weight Secure Aggregation for Federated Submodel Learning

Cui, Jamie; Chen, Cen; Ye, Tiandi; Wang, Li

doi:10.48550/arxiv.2111.01432

Cited by 3 publications

(5 citation statements)

References 41 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [84], gradient sparsification technique is adopted to compress the users' model. Besides, SecAggbased PPAgg protocols for federated submodel learning can be found in [85] and [86]. However, the above-mentioned works rely on the SecAgg scheme for aggregation and thus still involve high communication overheads when it comes to large-scale FL systems.…”

Section: Masking-based Aggregationmentioning

confidence: 99%

“…The HE-based aggregation in FL is relatively straightforward than that of masking-based aggregation. To aggregate Model quantization;TEE [80] [81] [83] Model quantization [84] Coding approach [82] Model spasification [85] [86] Determined by the size of submodels Submodel aggregation [87] Methods of guarantee the aggregation correctness [112] Semi-honest users; Malicious server [113] Malicious users; Semi-honest server Additional n communication rounds for following the chain structure Chain structure the sum of users' locally trained models in an FL round, the users need to encrypt their models and send them to the central server. Then the central server adds the received encrypted models together, relying on the additive homomorphic property of the used crypto-system, which can be decrypted to obtain the global model in that FL round (see Figure 5).…”

Section: He-based Aggregationmentioning

confidence: 99%

See 1 more Smart Citation

Privacy-Preserving Aggregation in Federated Learning: A Survey

Liu

Guo

Yang

et al. 2024

IEEE Trans. Big Data

View full text Add to dashboard Cite

Over the recent years, with the increasing adoption of Federated Learning (FL) algorithms and growing concerns over personal data privacy, Privacy-Preserving Federated Learning (PPFL) has attracted tremendous attention from both academia and industry. Practical PPFL typically allows multiple participants to individually train their machine learning models, which are then aggregated to construct a global model in a privacy-preserving manner. As such, Privacy-Preserving Aggregation (PPAgg) as the key protocol in PPFL has received substantial research interest. This survey aims to fill the gap between a large number of studies on PPFL, where PPAgg is adopted to provide a privacy guarantee, and the lack of a comprehensive survey on the PPAgg protocols applied in FL systems. This survey reviews the PPAgg protocols proposed to address privacy and security issues in FL systems. The focus is placed on the construction of PPAgg protocols with an extensive analysis of the advantages and disadvantages of these selected PPAgg protocols and solutions. Additionally, we discuss the open-source FL frameworks that support PPAgg. Finally, we highlight significant challenges and future research directions for applying PPAgg to FL systems and the combination of PPAgg with other technologies for further security improvement.

show abstract

Section: Masking-based Aggregationmentioning

confidence: 99%

Section: He-based Aggregationmentioning

confidence: 99%

Privacy-Preserving Aggregation in Federated Learning: A Survey

Liu

Guo

Yang

et al. 2024

IEEE Trans. Big Data

View full text Add to dashboard Cite

show abstract

“…In [79], gradient sparsification technique is adopted to compress the users' model. Besides, SecAgg-based PPAgg protocols for federated submodel learning can be found in [80] and [81]. However, the above-mentioned works rely on the SecAgg scheme for aggregation, and thus still involve high communication overheads when it comes to large-scale FL systems.…”

Section: Masking-based Aggregationmentioning

confidence: 99%

“…TEE in [74], pseudo-random functions in [103], MAC-like technique in [104], homomorphic hash in [106], zero-knowledge proofs in [107], and commitment scheme in [105] are deployed to guarantee that the server correctly aggregates the sum from FL users. Model Quantization;TEE [75] [76] [78] Model Quantization [79] Coding approach [77] Model spasification [80] [81] Determined by the size of submodels Submodel aggregation [82] So far, we have reviewed masking-based aggregation protocols to protect users' model privacy and global model privacy. We should note that aggregation protocols based on pair-wise masking allow efficient unmasking with dropped users, and thus are suitable for the cross-device setting where FL users are mobile IoT devices that may drop out of the system at any time.…”

Section: Masking-based Aggregationmentioning

confidence: 99%

Privacy-Preserving Aggregation in Federated Learning: A Survey

Liu¹,

Guo²,

Yang³

et al. 2022

Preprint

View full text Add to dashboard Cite

Over the recent years, with the increasing adoption of Federated Learning (FL) algorithms and growing concerns over personal data privacy, Privacy-Preserving Federated Learning (PPFL) has attracted tremendous attention from both academia and industry. Practical PPFL typically allows multiple participants to individually train their machine learning models, which are then aggregated to construct a global model in a privacy-preserving manner. As such, Privacy-Preserving Aggregation (PPAgg) as the key protocol in PPFL has received substantial research interest. This survey aims to fill the gap between a large number of studies on PPFL, where PPAgg is adopted to provide a privacy guarantee, and the lack of a comprehensive survey on the PPAgg protocols applied in FL systems. In this survey, we review the PPAgg protocols proposed to address privacy and security issues in FL systems. The focus is placed on the construction of PPAgg protocols with an extensive analysis of the advantages and disadvantages of these selected PPAgg protocols and solutions. Additionally, we discuss the open-source FL frameworks that support PPAgg. Finally, we highlight important challenges and future research directions for applying PPAgg to FL systems and the combination of PPAgg with other technologies for further security improvement.

show abstract

“…In [51], the gradient sparsification technique is adopted to compress the users' model. Besides, SecAgg-based PPAgg protocols for federated submodel learning can be found in [52] and [53]. However, the above-mentioned works rely on the SecAgg scheme for aggregation and thus still involve high communication overheads when it comes to large-scale FL systems.…”

Section: Secure Distributed Machine Learningmentioning

confidence: 99%

MPC-enabled privacy-preserving machine learning

Liu¹

View full text Add to dashboard Cite

Privacy-Preserving Machine Learning (PPML) has received much attention from the machine learning community, from academic researchers to industry practitioners to government regulators. The construction of PPML systems typically relies on two types of techniques, including (i) pure cryptographic construction, e.g., secure multi-party computation, and (ii) federated learning. The former provides strong security guarantees but involves large overheads. The latter allows participants to individually train their ML models, which are then aggregated to construct a global model. This process may lead to privacy leakage in the process of aggregation. This thesis proposes three PPML methods that aim to address the aforementioned issues. The proposed methods include both pure MPC-based construction and MPC-based aggregation protocols for privacy-enhanced federated learning.The major contributions of this thesis include: Firstly, a set of customized MPC protocols is proposed to improve the efficiency of secure neural network training in an active malicious setting. Theoretical analysis and experimental show their efficiency compared to those in a semi-honest setting. Experimental results show that the proposed protocols offer active security with affordable overheads of around 2 times and 2.7 times in LAN and WAN time, respectively. Secondly, to improve both the dropout resilience and communication efficiency of federated learning systems, we propose a privacy-preserving aggregation protocol that outperforms state-of-the-art schemes by up to 6.37 times in runtime and provides a stronger dropout resilience. Thirdly, to address the privacy risks caused by the multi-round training in federated learning, we propose a scheme including a strategy with a set of security protocols. This scheme proposes the first long-term privacy-preserving aggregation protocol providing both single-round and multi-round privacy guarantees.vi

show abstract

Practical and Light-weight Secure Aggregation for Federated Submodel Learning

Cited by 3 publications

References 41 publications

Privacy-Preserving Aggregation in Federated Learning: A Survey

Privacy-Preserving Aggregation in Federated Learning: A Survey

Privacy-Preserving Aggregation in Federated Learning: A Survey

MPC-enabled privacy-preserving machine learning

Contact Info

Product

Resources

About