Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
skip to main content
10.1145/3532105.3536394acmconferencesArticle/Chapter ViewAbstractPublication PagessacmatConference Proceedingsconference-collections
keynote

Keynote Talk - Federated Learning: The Hype, State-of-the-Art and Open Challenges

Published: 08 June 2022 Publication History

Abstract

The popularity of machine learning models has dramatically increased in a large variety of applications that affect people's daily lifes, including product recommendations, healthcare predictions and critical applications. This wide availability has at the same time raised questions about the trustworthiness, security, and privacy implications of using these systems. While novel technologies and methodologies have been emerging to protect the privacy and security of AI Systems, there are still open challenges that need to be addressed by the research community. Over the past years, my research has focused on the creation of defenses to protect the machine learning pipeline and the design of privacy-aware methodologies to enable the training of accurate machine learning models without transmitting the data to a central place. In this talk, I will focus on data privacy covering a game-changing paradigm known as federated learning [4], which to some extend addresses privacy concerns and regulations that prevent the free transmission and sharing of information. Federated learning is a technology that enables multiple participants owning private data to collaboratively train a single machine learning model while maintaining their training data locally. This is in sharp contrast to traditional machine learning where all data needs to be in a central place. Some argue that federated learning is a privacy-by-design technology given that it does not require data to be transmitted to a central place. However, there are still privacy risks that are relevant in some scenarios. Novel inference attacks that take advantage of the federated learning process have been demonstrated in the literature, resulting in a variety of defenses that aim to reduce these risks. I will present some of these attacks and several cryptographical and differential privacy techniques to deter them, including [5,7,8]. The plethora of defenses is particularly interesting given their diverse threat models and the divergent set of privacy requirements they address. In this talk I will demystify them. I will also explain some challenges related to manipulation attacks [6,9] and machine learning fairness [1] in the context of federated learning. Finally, I will touch upon transparency issues and how to enable accountability for regulated industries [2,3] and vertical federated learning [7]. This talk will go through the security and privacy challenges and solutions in federated learning systems.

References

[1]
Abay, Annie, Yi Zhou, Nathalie Baracaldo, Shashank Rajamoni, Ebube Chuba, and Heiko Ludwig. "Mitigating bias in federated learning." arXiv preprint arXiv:2012.02447 (2020)
[2]
Baracaldo, Nathalie, Ali Anwar, Mark Purcell, Ambrish Rawat, Mathieu Sinn, Bashar Altakrouri, Dian Balta et al. "Towards an Accountable and Reproducible Federated Learning: A FactSheets Approach." arXiv preprint arXiv:2202.12443(2022).
[3]
Balta, Dian, Mahdi Sellami, Peter Kuhn, Ulrich Schöpp, Matthias Buchinger, Nathalie Baracaldo, Ali Anwar et al. "Accountable Federated Machine Learning in Government: Engineering and Management Insights." In International Conference on Electronic Participation, pp. 125--138. Springer, Cham, 2021.
[4]
McMahan, Brendan, Eider Moore, Daniel Ramage, Seth Hampson, and Blaise Aguera y Arcas. "Communication-efficient learning of deep networks from decentralized data." In Artificial intelligence and statistics, pp. 1273--1282. PMLR, 2017.
[5]
Truex, Stacey, Nathalie Baracaldo, Ali Anwar, Thomas Steinke, Heiko Ludwig, Rui Zhang, and Yi Zhou. "A hybrid approach to privacy-preserving federated learning." In Proceedings of the 12th ACM workshop on artificial intelligence and security, pp. 1--11. 2019.
[6]
Varma, Kamala, Yi Zhou, Nathalie Baracaldo, and Ali Anwar. "LEGATO: A LayerwisE Gradient AggregaTiOn Algorithm for Mitigating Byzantine Attacks in Federated Learning." In 2021 IEEE 14th International Conference on Cloud Computing (CLOUD), pp. 272--277. IEEE, 2021.
[7]
Xu, Runhua, Nathalie Baracaldo, Yi Zhou, Ali Anwar, James Joshi, and Heiko Ludwig. "FedV: Privacy-Preserving Federated Learning over Vertically Partitioned Data." In Proceedings of the 14th ACM Workshop on Artificial Intelligence and Security, pp. 181--192. 2021.
[8]
Xu, Runhua, Nathalie Baracaldo, Yi Zhou, Ali Anwar, and Heiko Ludwig. "Hybridalpha: An efficient approach for privacy-preserving federated learning." In Proceedings of the 12th ACM Workshop on Artificial Intelligence and Security, pp. 13--23. 2019.
[9]
Zawad, Syed, Ahsan Ali, Pin-Yu Chen, Ali Anwar, Yi Zhou, Nathalie Baracaldo, Yuan Tian, and Feng Yan. "Curse or redemption? How data heterogeneity affects the robustness of federated learning." arXiv preprint arXiv:2102.00655 (2021).

Index Terms

  1. Keynote Talk - Federated Learning: The Hype, State-of-the-Art and Open Challenges

    Recommendations

    Comments

    Information & Contributors

    Information

    Published In

    cover image ACM Conferences
    SACMAT '22: Proceedings of the 27th ACM on Symposium on Access Control Models and Technologies
    June 2022
    282 pages
    ISBN:9781450393577
    DOI:10.1145/3532105
    Permission to make digital or hard copies of part or all of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for third-party components of this work must be honored. For all other uses, contact the Owner/Author.

    Sponsors

    Publisher

    Association for Computing Machinery

    New York, NY, United States

    Publication History

    Published: 08 June 2022

    Check for updates

    Author Tags

    1. federated learning
    2. machine learning
    3. privacy
    4. security

    Qualifiers

    • Keynote

    Conference

    SACMAT '22
    Sponsor:

    Acceptance Rates

    Overall Acceptance Rate 177 of 597 submissions, 30%

    Contributors

    Other Metrics

    Bibliometrics & Citations

    Bibliometrics

    Article Metrics

    • 0
      Total Citations
    • 132
      Total Downloads
    • Downloads (Last 12 months)7
    • Downloads (Last 6 weeks)1
    Reflects downloads up to 22 Dec 2024

    Other Metrics

    Citations

    View Options

    Login options

    View options

    PDF

    View or Download as a PDF file.

    PDF

    eReader

    View online with eReader.

    eReader

    Media

    Figures

    Other

    Tables

    Share

    Share

    Share this Publication link

    Share on social media