Download pdf - Dancing in the Dark: Private Multi-Party Machine Learning ... · Dancing in the Dark: Private Multi-Party Machine Learning in an Untrusted Setting Clement Fung, Jamie Koerner, Stewart

Transcript
Page 1: Dancing in the Dark: Private Multi-Party Machine Learning ... · Dancing in the Dark: Private Multi-Party Machine Learning in an Untrusted Setting Clement Fung, Jamie Koerner, Stewart

University of British Columbia

Dancing in the Dark: Private Multi-Party Machine Learning in an Untrusted SettingClement Fung, Jamie Koerner, Stewart Grant, Ivan Beschastnikh

Challenges● Machine learning (ML) at scale is popular:

○ But not privacy focused, vulnerable● Differentially private ML exists:

○ But theoretical and not well applied● Tor allows anonymity in P2P networks

○ But how do we use it for ML?

Partners

Our contributions1. Brokered Learning: A design paradigm and API for ML in untrusted setting2. TorMentor: a system for anonymous, differentially-private multi-party ML3. We translate known ML attacks (Information Leakage, Poisoning) and defenses (RONI,

Differential Privacy) to a private, untrusted setting

Evaluation results1. Effects of client batch size and privacy parameters in multi-party ML2. Defending against inversion: Including users, DP mitigates attacks3. Defending against poisoning at scale: Tuning RONI threshold

References1. McMahan et al. “Communication-Efficient Learning of Deep Networks from Decentralized Data ”, AISTATS ‘17re Aggr

2. Song et al. “Stochastic Gradient Descent With Differentially Private Updates, GlobalSIP’ 133. Huang et al. "Adversarial Machine Learning", AISec ‘114. Hitaj et al. "Deep Models Under the GAN: Information Leakage from Collaborative Deep Learning" CCS'17

TorMentor design

Brokered Learning API1. Curator: define model, validation set2. Client: Join model, privacy constraints

We trust cloud providers with our data for Machine Learning (ML).

Future Research Directions1. Investigate client incentives for anonymous ML2. Improve understandability of privacy parameters3. Mitigation of attacks with fewer assumptions4. Remove trust model in broker

Defense ingredients

Differentially private modelML with ε noise

3. Tor: Anonymize network traffic source

2. RONI: Verify correct ML; use validation score

RONI Model

VerifyModel update

Information Leakage: Copy private training data through observing ML model while training

ML attacks we consider

Global ML Server

Random Model Poisoning: Manipulate performance of global model with bad updates

Global ML Server

Provide trusted guarantees to facilitate anonymous ML

Privately use training data, (Privacy ε, batch size

bystanders)

3. Train model via differentially private SGD4. Anonymously return model to curator

Wants to train ML model, need

training data

Can we support ML in private, anonymous, untrusted settings?

1. Differential Privacy: Privacy in ML from ε noise

Recommended

Party cupcake with sprinkles! Glow bracelet to take … Disco 2017.pdf · Party cupcake with sprinkles! Glow bracelet to take home! Your favourite party tunes! Party games! Dancing
Party cupcake with sprinkles! Glow bracelet to take … Disco 2017.pdf · Party cupcake with sprinkles! Glow bracelet to take home! Your favourite party tunes! Party games! Dancing Documents
Dancing in the Dark Grade
Dancing in the Dark Grade Documents
Dance like Peppa Pig and host your own dancing party!...Peppa themed recipes to serve to your guests – they’ll have quite an appetite after all that dancing. Set up a craft area
Dance like Peppa Pig and host your own dancing party!...Peppa themed recipes to serve to your guests – they’ll have quite an appetite after all that dancing. Set up a craft area Documents
New Eve party dancing to house DJ zzy Jeff 2020 celebrate ... Well New Years Post… · New Eve party dancing to house DJ zzy Jeff 2020 celebrate Year's Eve at The WELL Party starts
New Eve party dancing to house DJ zzy Jeff 2020 celebrate ... Well New Years Post… · New Eve party dancing to house DJ zzy Jeff 2020 celebrate Year's Eve at The WELL Party starts Documents
Miracle deliverance€¦ · dark SecretS of chriStian Magic Pat holliday, Ph.d. chriStian MySticiSM ~ ekStaSiS WorShiP ~ trance dancing ~ trance MUSic ~ neW MySticS – conteMPlative
Miracle deliverance€¦ · dark SecretS of chriStian Magic Pat holliday, Ph.d. chriStian MySticiSM ~ ekStaSiS WorShiP ~ trance dancing ~ trance MUSic ~ neW MySticS – conteMPlative Documents
Dancing in the Dark Ages (Middle Ages). What does the Middle Ages remind you of? Knights
Dancing in the Dark Ages (Middle Ages). What does the Middle Ages remind you of? Knights Documents
Dancing in the Dark. Deconstructing a Narrative of Epiphany on the Isopata Ring
Dancing in the Dark. Deconstructing a Narrative of Epiphany on the Isopata Ring Documents
Dancing eyes-dancing feet’ Disease
Dancing eyes-dancing feet’ Disease Documents
PROGRAM Dancing in the Dark:Program Dancing in the Darkpressarchive.theoldglobe.org/_pdf/Programs/2007-08... · Welcome to the world premiere of Dancing in the Dark, based on the
PROGRAM Dancing in the Dark:Program Dancing in the Darkpressarchive.theoldglobe.org/_pdf/Programs/2007-08... · Welcome to the world premiere of Dancing in the Dark, based on the Documents
Document1 - Omega Theateromegatheater.org/wordpress/wp-content/uploads/2014/... · cently, Dancing in the Flames: The Dark Goddess in the Transformation of Consciousness. Saphira:
Document1 - Omega Theateromegatheater.org/wordpress/wp-content/uploads/2014/... · cently, Dancing in the Flames: The Dark Goddess in the Transformation of Consciousness. Saphira: Documents
CHRISTMAS PARTY NIGHTS - clandeboyelodge.com · Nights present a poptastic ABBA discofest. By the end of the night, you’ll be soul dancing in the dark, thanking us for the music
CHRISTMAS PARTY NIGHTS - clandeboyelodge.com · Nights present a poptastic ABBA discofest. By the end of the night, you’ll be soul dancing in the dark, thanking us for the music Documents
Dancing - Passion 4 Dancing - Salsa Dancing - Ballroom Dancing - Swing Danc
Dancing - Passion 4 Dancing - Salsa Dancing - Ballroom Dancing - Swing Danc Documents
DANCING IN THE DARK
DANCING IN THE DARK Documents
Funny bones Party in the park By Lewis On a cold dark night there was a dark spooky house. In the dark spooky house there was a dark creaky staircase
Funny bones Party in the park By Lewis On a cold dark night there was a dark spooky house. In the dark spooky house there was a dark creaky staircase Documents
Internet Companies in China Dancing between the Party Line and the Bottom Line
Internet Companies in China Dancing between the Party Line and the Bottom Line Documents
Nashua, NH Janice B. Streeter Theatre - Actorsingers · Andrew Lippa's Wild Party ... The Wild Party is Danny's first production with Actorsingers. He is excited to showcase his dancing
Nashua, NH Janice B. Streeter Theatre - Actorsingers · Andrew Lippa's Wild Party ... The Wild Party is Danny's first production with Actorsingers. He is excited to showcase his dancing Documents
Dancing in the Dark - FStech
Dancing in the Dark - FStech Documents
st Live Band Performing - regalpalmsoa.com NYE Party flyer-Dec20.pdf · Dancing • Karaoke • Photo Booth • Horns Cash Bar • Him & Her Party Hats We are providing a variety
st Live Band Performing - regalpalmsoa.com NYE Party flyer-Dec20.pdf · Dancing • Karaoke • Photo Booth • Horns Cash Bar • Him & Her Party Hats We are providing a variety Documents