ScionFL: Efficient and Robust Secure Quantized Aggregation

Yaniv Ben-Itzhak; Helen Mollering; Benny Pinkas; Thomas Schneider; Ajith Suresh; Oleksandr Tkachenko; Shay Vargaftik; Christian Weinert; Hossein Yalame; Avishay Yanai

doi:10.1109/SaTML59370.2024.00031

ScionFL: Efficient and Robust Secure Quantized Aggregation

Yaniv Ben-Itzhak, Helen Mollering, Benny Pinkas, Thomas Schneider, Ajith Suresh, Oleksandr Tkachenko, Shay Vargaftik, Christian Weinert, Hossein Yalame, Avishay Yanai

The BIU Center for Research in Applied Cryptography and Cyber Security

Bar-Ilan University

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Secure aggregation is commonly used in federated learning (FL) to alleviate privacy concerns related to the central aggregator seeing all parameter updates in the clear. Unfortunately, most existing secure aggregation schemes ignore two critical orthogonal research directions that aim to (i) significantly reduce client-server communication and (ii) mitigate the impact of malicious clients. However, both of these additional properties are essential to facilitate cross-device FL with thousands or even millions of (mobile) participants.In this paper, we unite both research directions by introducing ScionFL, the first secure aggregation framework for FL that operates efficiently on quantized inputs and simultaneously provides robustness against malicious clients. Our framework leverages (novel) multi-party computation (MPC) techniques and supports multiple linear (1-bit) quantization schemes, including ones that utilize the randomized Hadamard transform and Kashin's representation.Our theoretical results are supported by extensive evaluations. We show that with no overhead for clients and moderate overhead for the server compared to transferring and processing quantized updates in plaintext, we obtain comparable accuracy for standard FL benchmarks. Moreover, we demonstrate the robustness of our framework against state-of-the-art poisoning attacks.

Original language	English
Title of host publication	Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	490-511
Number of pages	22
ISBN (Electronic)	9798350349504
DOIs	https://doi.org/10.1109/SaTML59370.2024.00031
State	Published - 2024
Event	2024 IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024 - Toronto, Canada Duration: 9 Apr 2024 → 11 Apr 2024

Publication series

Name	Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024

Conference

Conference	2024 IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024
Country/Territory	Canada
City	Toronto
Period	9/04/24 → 11/04/24

All Science Journal Classification (ASJC) codes

Artificial Intelligence
Safety, Risk, Reliability and Quality
Modelling and Simulation

Access to Document

10.1109/SaTML59370.2024.00031

Cite this

Ben-Itzhak, Y., Mollering, H., Pinkas, B., Schneider, T., Suresh, A., Tkachenko, O., Vargaftik, S., Weinert, C., Yalame, H., & Yanai, A. (2024). ScionFL: Efficient and Robust Secure Quantized Aggregation. In Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024 (pp. 490-511). (Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SaTML59370.2024.00031

@inproceedings{4f177250cec546668fec0c919df04c66,

title = "ScionFL: Efficient and Robust Secure Quantized Aggregation",

abstract = "Secure aggregation is commonly used in federated learning (FL) to alleviate privacy concerns related to the central aggregator seeing all parameter updates in the clear. Unfortunately, most existing secure aggregation schemes ignore two critical orthogonal research directions that aim to (i) significantly reduce client-server communication and (ii) mitigate the impact of malicious clients. However, both of these additional properties are essential to facilitate cross-device FL with thousands or even millions of (mobile) participants.In this paper, we unite both research directions by introducing ScionFL, the first secure aggregation framework for FL that operates efficiently on quantized inputs and simultaneously provides robustness against malicious clients. Our framework leverages (novel) multi-party computation (MPC) techniques and supports multiple linear (1-bit) quantization schemes, including ones that utilize the randomized Hadamard transform and Kashin's representation.Our theoretical results are supported by extensive evaluations. We show that with no overhead for clients and moderate overhead for the server compared to transferring and processing quantized updates in plaintext, we obtain comparable accuracy for standard FL benchmarks. Moreover, we demonstrate the robustness of our framework against state-of-the-art poisoning attacks.",

author = "Yaniv Ben-Itzhak and Helen Mollering and Benny Pinkas and Thomas Schneider and Ajith Suresh and Oleksandr Tkachenko and Shay Vargaftik and Christian Weinert and Hossein Yalame and Avishay Yanai",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 2024 IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024 ; Conference date: 09-04-2024 Through 11-04-2024",

year = "2024",

doi = "10.1109/SaTML59370.2024.00031",

language = "الإنجليزيّة",

series = "Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "490--511",

booktitle = "Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024",

address = "الولايات المتّحدة",

}

Ben-Itzhak, Y, Mollering, H, Pinkas, B, Schneider, T, Suresh, A, Tkachenko, O, Vargaftik, S, Weinert, C, Yalame, H & Yanai, A 2024, ScionFL: Efficient and Robust Secure Quantized Aggregation. in Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024. Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024, Institute of Electrical and Electronics Engineers Inc., pp. 490-511, 2024 IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024, Toronto, Canada, 9/04/24. https://doi.org/10.1109/SaTML59370.2024.00031

ScionFL: Efficient and Robust Secure Quantized Aggregation. / Ben-Itzhak, Yaniv; Mollering, Helen; Pinkas, Benny et al.
Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024. Institute of Electrical and Electronics Engineers Inc., 2024. p. 490-511 (Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - ScionFL

T2 - 2024 IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024

AU - Ben-Itzhak, Yaniv

AU - Mollering, Helen

AU - Pinkas, Benny

AU - Schneider, Thomas

AU - Suresh, Ajith

AU - Tkachenko, Oleksandr

AU - Vargaftik, Shay

AU - Weinert, Christian

AU - Yalame, Hossein

AU - Yanai, Avishay

PY - 2024

Y1 - 2024

N2 - Secure aggregation is commonly used in federated learning (FL) to alleviate privacy concerns related to the central aggregator seeing all parameter updates in the clear. Unfortunately, most existing secure aggregation schemes ignore two critical orthogonal research directions that aim to (i) significantly reduce client-server communication and (ii) mitigate the impact of malicious clients. However, both of these additional properties are essential to facilitate cross-device FL with thousands or even millions of (mobile) participants.In this paper, we unite both research directions by introducing ScionFL, the first secure aggregation framework for FL that operates efficiently on quantized inputs and simultaneously provides robustness against malicious clients. Our framework leverages (novel) multi-party computation (MPC) techniques and supports multiple linear (1-bit) quantization schemes, including ones that utilize the randomized Hadamard transform and Kashin's representation.Our theoretical results are supported by extensive evaluations. We show that with no overhead for clients and moderate overhead for the server compared to transferring and processing quantized updates in plaintext, we obtain comparable accuracy for standard FL benchmarks. Moreover, we demonstrate the robustness of our framework against state-of-the-art poisoning attacks.

AB - Secure aggregation is commonly used in federated learning (FL) to alleviate privacy concerns related to the central aggregator seeing all parameter updates in the clear. Unfortunately, most existing secure aggregation schemes ignore two critical orthogonal research directions that aim to (i) significantly reduce client-server communication and (ii) mitigate the impact of malicious clients. However, both of these additional properties are essential to facilitate cross-device FL with thousands or even millions of (mobile) participants.In this paper, we unite both research directions by introducing ScionFL, the first secure aggregation framework for FL that operates efficiently on quantized inputs and simultaneously provides robustness against malicious clients. Our framework leverages (novel) multi-party computation (MPC) techniques and supports multiple linear (1-bit) quantization schemes, including ones that utilize the randomized Hadamard transform and Kashin's representation.Our theoretical results are supported by extensive evaluations. We show that with no overhead for clients and moderate overhead for the server compared to transferring and processing quantized updates in plaintext, we obtain comparable accuracy for standard FL benchmarks. Moreover, we demonstrate the robustness of our framework against state-of-the-art poisoning attacks.

UR - http://www.scopus.com/inward/record.url?scp=85193840000&partnerID=8YFLogxK

U2 - 10.1109/SaTML59370.2024.00031

DO - 10.1109/SaTML59370.2024.00031

M3 - منشور من مؤتمر

T3 - Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024

SP - 490

EP - 511

BT - Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 9 April 2024 through 11 April 2024

ER -

Ben-Itzhak Y, Mollering H, Pinkas B, Schneider T, Suresh A, Tkachenko O et al. ScionFL: Efficient and Robust Secure Quantized Aggregation. In Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024. Institute of Electrical and Electronics Engineers Inc. 2024. p. 490-511. (Proceedings - IEEE Conference on Safe and Trustworthy Machine Learning, SaTML 2024). doi: 10.1109/SaTML59370.2024.00031

ScionFL: Efficient and Robust Secure Quantized Aggregation

Abstract

Publication series

Conference

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this