demonstration

Demo: Image Disguising for Scalable GPU-accelerated Confidential Deep Learning

Authors:

Yuechun Gu,

Sagar Sharma,

Keke ChenAuthors Info & Claims

CCS '23: Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security

Pages 3679 - 3681

https://doi.org/10.1145/3576915.3624364

Published: 21 November 2023 Publication History

Get Access

Abstract

Deep learning training involves large training data and expensive model tweaking, for which cloud GPU resources can be a popular option. However, outsourcing data often raises privacy concerns. The challenge is to preserve data and model confidentiality without sacrificing GPU-based scalable training and low-cost client-side preprocessing, which is difficult for conventional cryptographic solutions to achieve. This demonstration shows a new approach, image disguising, represented by recent work: DisguisedNets, NeuraCrypt, and InstaHide, which aim to securely transform training images while still enabling the desired scalability and efficiency. We present an interactive system for visually and comparatively exploring these methods. Users can view disguised images, note low client-side processing costs, and observe the maintained efficiency and model quality during server-side GPU-accelerated training. This demo aids researchers and practitioners in swiftly grasping the advantages and limitations of image-disguising methods.

References

[1]

Martin Abadi and et al. 2016. Deep Learning with Differential Privacy. In Pro-ceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security.

Google Scholar

[2]

Nicholas Carlini, Samuel Deng, Sanjam Garg, Somesh Jha, Saeed Mahloujifar, Mohammad Mahmoody, Shuang Song, Abhradeep Thakurta, and Florian Tramèr. 2021. Is Private Learning Possible with Instance Encoding?. In IEEE Symposium on Security and Privacy (S&P).

Crossref

Google Scholar

[3]

Nicholas Carlini, Sanjam Garg, Somesh Jha, Saeed Mahloujifar, Mohammad Mahmoody, and Florian Tramèr. 2021. NeuraCrypt is not private. CoRR abs/2108.07256 (2021). arXiv:2108.07256 https://arxiv.org/abs/2108.07256

Google Scholar

[4]

Briland Hitaj, Giuseppe Ateniese, and Fernando Perez-Cruz. 2017. Deep Models Under the GAN: Information Leakage from Collaborative Deep Learning. In Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security. ACM.

Digital Library

Google Scholar

[5]

Yangsibo Huang, Zhao Song, Kai Li, and Sanjeev Arora. 2020. InstaHide: Instance-hiding Schemes for Private Distributed Learning. In Proceedings of the 37th International Conference on Machine Learning, Vol. 119. PMLR, 4507--4518.

Google Scholar

[6]

Payman Mohassel and Yupeng Zhang. 2017. SecureML: A System for Scalable Privacy-Preserving Machine Learning. In 2017 IEEE Symposium on Security and Privacy (SP). 19--38.

Google Scholar

[7]

Sagar Sharma, AKM Mubashwir Alam, and Keke Chen. 2021. Image Disguising for Protecting Data and Model Confidentiality in Outsourced Deep Learning. In IEEE Conference on Cloud Computing.

Google Scholar

[8]

Adam Yala and et al. 2021. NeuraCrypt: Hiding Private Health Data via Random Neural Networks for Public Training. CoRR abs/2106.02484 (2021). arXiv:2106.02484 https://arxiv.org/abs/2106.02484

Google Scholar

Cited By

View all

Xiong SChen XZhang H(2023)Deep Learning-Based Multifunctional End-to-End Model for Optical Character Classification and DenoisingJournal of Computational Methods in Engineering Applications10.62836/jcmea.v3i1.030103(1-13)Online publication date: 15-Nov-2023
https://doi.org/10.62836/jcmea.v3i1.030103
Yao Y(2022)A Review of the Comprehensive Application of Big Data, Artificial Intelligence, and Internet of Things Technologies in Smart CitiesJournal of Computational Methods in Engineering Applications10.62836/jcmea.v2i1.0004(1-10)Online publication date: 22-Sep-2022
https://doi.org/10.62836/jcmea.v2i1.0004

Index Terms

Demo: Image Disguising for Scalable GPU-accelerated Confidential Deep Learning
1. Security and privacy
  1. Security services
    1. Privacy-preserving protocols

Recommendations

Image Disguising for Privacy-preserving Deep Learning
CCS '18: Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security

Due to the high training costs of deep learning, model developers often rent cloud GPU servers to achieve better efficiency. However, this practice raises privacy concerns. An adversarial party may be interested in 1) personal identifiable information ...
Optimizing linpack benchmark on GPU-accelerated petascale supercomputer
Special issue on Community Analysis and Information Recommendation

In this paper we present the programming of the Linpack benchmark on TianHe-1 system, the first petascale supercomputer system of China, and the largest GPU-accelerated heterogeneous system ever attempted before. A hybrid programming model consisting of ...
Compiler-based code generation and autotuning for geometric multigrid on GPU-accelerated supercomputers
Highlights
- Generate parallel CUDA code from sequential C input code using a compiler-based tool for key operators in Geometric Multigrid.
Abstract
GPUs, with their high bandwidths and computational capabilities are an increasingly popular target for scientific computing. Unfortunately, to date, harnessing the power of the GPU has required use of a GPU-specific programming model ...

Comments

Information & Contributors

Information

Published In

CCS '23: Proceedings of the 2023 ACM SIGSAC Conference on Computer and Communications Security

November 2023

3722 pages

ISBN:9798400700507

DOI:10.1145/3576915

General Chairs:
Weizhi Meng
Technical University of Denmark
,
Christian D. Jensen
Technical University of Denmark
,
Program Chairs:
Cas Cremers
CISPA Helmholtz Center for Information Security
,
Engin Kirda
Khoury College of Computer Sciences

Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 21 November 2023

Check for updates

Author Tags

Qualifiers

Demonstration

Funding Sources

Conference

CCS '23

Sponsor:

SIGSAC

CCS '23: ACM SIGSAC Conference on Computer and Communications Security

November 26 - 30, 2023

Copenhagen, Denmark

Acceptance Rates

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '24

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 14 - 18, 2024

Salt Lake City , UT , USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
127
Total Downloads

Downloads (Last 12 months)127
Downloads (Last 6 weeks)9

Reflects downloads up to 30 Aug 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Xiong SChen XZhang H(2023)Deep Learning-Based Multifunctional End-to-End Model for Optical Character Classification and DenoisingJournal of Computational Methods in Engineering Applications10.62836/jcmea.v3i1.030103(1-13)Online publication date: 15-Nov-2023
https://doi.org/10.62836/jcmea.v3i1.030103
Yao Y(2022)A Review of the Comprehensive Application of Big Data, Artificial Intelligence, and Internet of Things Technologies in Smart CitiesJournal of Computational Methods in Engineering Applications10.62836/jcmea.v2i1.0004(1-10)Online publication date: 22-Sep-2022
https://doi.org/10.62836/jcmea.v2i1.0004

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

Image Disguising for Privacy-preserving Deep Learning

Optimizing linpack benchmark on GPU-accelerated petascale supercomputer

Compiler-based code generation and autotuning for geometric multigrid on GPU-accelerated supercomputers

Comments

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Upcoming Conference

Other Metrics

Article Metrics

Other Metrics

Cited By

Login options

Full Access

PDF

eReader

Abstract

References

Cited By

Index Terms

Recommendations

Image Disguising for Privacy-preserving Deep Learning

Optimizing linpack benchmark on GPU-accelerated petascale supercomputer

Compiler-based code generation and autotuning for geometric multigrid on GPU-accelerated supercomputers

Comments

Information

Published In

Sponsors

Publisher

Publication History

Check for updates

Author Tags

Qualifiers

Funding Sources

Conference

Acceptance Rates

Upcoming Conference

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

Get Access

Login options

Full Access

View options

PDF

eReader

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations