Paper Abstract and Keywords |
Presentation |
2024-06-06 13:20
Enhanced Security with Random Binary Weights for Privacy-Preserving Federated Learning Hiroto Sawada, Shoko Imaizumi (Chiba Univ.), Hitoshi Kiya (TMU) |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
In this paper, we propose a novel method for enhancing security in privacy-preserving federated learning under the use of the vision transformer. In federated learning, learning is performed by collecting updated information without collecting raw data from each client. However, the problem is that raw data may be inferred from updated information.
To address this issue, conventional data guessing countermeasures (security enhancement methods) have a trade-off relationship between privacy protection strength and learning efficiency, and generally degrade model performance. In this paper, we propose a novel method of federated learning that does not degrade model performance and is robust against data guessing attacks on updated information. In the proposed method, each client independently prepares a sequence of binary (0 or 1) random numbers, multiplies it by the update information, and sends it to the server for model learning. In experiments, the effectiveness of the proposed method is confirmed in terms of model performance and resistance to the APRIL (Attention PRIvacy Leakage) restoration attack. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
federated learning / vision transformer / privacy preserving / gradient leakage attack resilient / / / / |
Reference Info. |
ITE Tech. Rep. |
Paper # |
|
Date of Issue |
|
ISSN |
Online edition: ISSN 2424-1970 |
Download PDF |
|
Conference Information |
Committee |
ME IST IEICE-BioX IEICE-SIP IEICE-MI IEICE-IE |
Conference Date |
2024-06-06 - 2024-06-07 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Nigata University (Ekinan-Campus "TOKIMATE") |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
|
Paper Information |
Registration To |
IEICE-SIP |
Conference Code |
2024-06-ME-IST-BioX-SIP-MI-IE |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
Enhanced Security with Random Binary Weights for Privacy-Preserving Federated Learning |
Sub Title (in English) |
|
Keyword(1) |
federated learning |
Keyword(2) |
vision transformer |
Keyword(3) |
privacy preserving |
Keyword(4) |
gradient leakage attack resilient |
Keyword(5) |
|
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Hiroto Sawada |
1st Author's Affiliation |
Chiba University (Chiba Univ.) |
2nd Author's Name |
Shoko Imaizumi |
2nd Author's Affiliation |
Chiba University (Chiba Univ.) |
3rd Author's Name |
Hitoshi Kiya |
3rd Author's Affiliation |
Tokyo Metropolitan University (TMU) |
4th Author's Name |
|
4th Author's Affiliation |
() |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2024-06-06 13:20:00 |
Presentation Time |
25 minutes |
Registration for |
IEICE-SIP |
Paper # |
|
Volume (vol) |
vol.48 |
Number (no) |
|
Page |
|
#Pages |
|
Date of Issue |
|