TY - GEN
T1 - Outsourcing Privacy-Preserving Federated Learning on Malicious Networks through MPC
AU - Hernandez, Richard
AU - Bautista, Oscar G.
AU - Manshaei, Mohammad Hossein
AU - Sahin, Abdulhadi
AU - Akkaya, Kemal
N1 - Publisher Copyright: © 2023 IEEE.
PY - 2023
Y1 - 2023
N2 - While Federated Learning (FL) enables training by only sharing model updates rather than data, FL can still be prone to privacy leaks. Therefore, many efforts have been made to adopt homomorphic encryption or differential privacy approaches to prevent this. However, these solutions come with several issues that may limit their widespread adoption in applications that involve sensitive data sitting in silos. Such issues include but are not limited to trust in the aggregation server, the accuracy of the model, potential collusion among clients, and limited aggregation function support. To address these issues, we advocate using secure Multiparty Computation (MPC) to offer privacy-preserving computation. Specifically, we propose an FL framework that enables outsourcing the model aggregation to MPC parties on untrusted cloud environments and offers correctness verification to the model owners. Unlike differential privacy-based solutions, the proposed framework offers the same level of accuracy as models that are trained on the clear and minimize the possibility of collusion among clients and MPC parties. We implemented and evaluated the proposed framework under various conditions. The results showed that our framework can match the accuracy of centralized FL training while maintaining the required level of privacy and security in malicious cross-silo settings.
AB - While Federated Learning (FL) enables training by only sharing model updates rather than data, FL can still be prone to privacy leaks. Therefore, many efforts have been made to adopt homomorphic encryption or differential privacy approaches to prevent this. However, these solutions come with several issues that may limit their widespread adoption in applications that involve sensitive data sitting in silos. Such issues include but are not limited to trust in the aggregation server, the accuracy of the model, potential collusion among clients, and limited aggregation function support. To address these issues, we advocate using secure Multiparty Computation (MPC) to offer privacy-preserving computation. Specifically, we propose an FL framework that enables outsourcing the model aggregation to MPC parties on untrusted cloud environments and offers correctness verification to the model owners. Unlike differential privacy-based solutions, the proposed framework offers the same level of accuracy as models that are trained on the clear and minimize the possibility of collusion among clients and MPC parties. We implemented and evaluated the proposed framework under various conditions. The results showed that our framework can match the accuracy of centralized FL training while maintaining the required level of privacy and security in malicious cross-silo settings.
KW - Federated Learning
KW - Machine Learning
KW - Malicious Network
KW - Multiparty Computation
UR - http://www.scopus.com/inward/record.url?scp=85182952235&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85182952235&partnerID=8YFLogxK
U2 - 10.1109/LCN58197.2023.10223365
DO - 10.1109/LCN58197.2023.10223365
M3 - Conference contribution
T3 - Proceedings - Conference on Local Computer Networks, LCN
BT - Proceedings of the 48th IEEE Conference on Local Computer Networks , LCN 2023
A2 - Bulut, Eyuphan
A2 - Tschorsch, Florian
A2 - Thilakarathna, Kanchana
PB - IEEE Computer Society
T2 - 48th IEEE Conference on Local Computer Networks , LCN 2023
Y2 - 2 October 2023 through 5 October 2023
ER -