machine learning classification over encrypted data
play

Machine Learning Classification over Encrypted Data Raphal Bost - PowerPoint PPT Presentation

Dec 28, 2022 •991 likes •1.3k views

Machine Learning Classification over Encrypted Data Raphal Bost Raluca Ada Popa, Universit Rennes 1 ETH Zrich MIT MIT Stephen Tu Shafi Goldwasser MIT MIT Classification (Machine Learning) Supervised learning (training)

  1. Machine Learning Classification over Encrypted Data Raphaël Bost 
 Raluca Ada Popa, Université Rennes 1 ETH Zürich 
 MIT MIT Stephen Tu Shafi Goldwasser MIT MIT

  2. Classification (Machine Learning) • Supervised learning (training) • Classification data classification training model data set phase phase prediction server client

  3. Problem • The provider’s model is sensitive financial model, genetic sequences, … • Client’s private data medical records, credit history, …

  4. Problem • The provider’s model is sensitive financial model, genetic sequences, … • Client’s private data medical records, credit history, … MPC / 2PC

  5. Using General 2PC ? + Works for every circuit + Constant number of interactions - Have to build circuits - Hard to ‘compose’ - Not easily reusable

  6. Using General 2PC ? + Works for every circuit + Constant number of interactions - Have to build circuits - Hard to ‘compose’ - Not easily reusable ➡ Ad Hoc protocols

  7. Goal • Enable classification without sacrificing privacy • Secure classification, no learning the model is already known • Practical performance

  8. Approach • Classifiers as specialized 2PC • Identify and construct reusable building blocks • Threat model: passive (honest-but-curious) adversary

  9. Insight ML Algorithm Classifier Perceptron Linear Least squares Linear Fischer linear discriminant Linear Support vector machine Linear Naïve Bayes Naïve Bayes ID3/C4.5 Decision trees

  10. Insight • Identify core operations • Construct reusable/composable building blocks • Choose the best fitted primitives Homomorphic Encryption, FHE, Garbled Circuits, …

  11. Related Work • Privacy-preserving training • Using FHE, linear means classifier [GLN12] • Specific techniques for Naïve Bayes [VKC08], decision trees [BDMN05,LP00], linear discriminant [DHC04], kernel methods [LLM06] • Privacy-preserving classification • Using FHE, outsource computation [BLN13] • Secure branching programs [BFK+09, BFL+09] • Specific classifiers (face recognition/detection) [SSW09, AB07]

  12. Building Blocks • Dot product • Encrypted Comparison • Encrypted (arg)max • Decision trees • Encryption scheme switching

  13. Classifiers from blocks Naïve Bayes Decision Tree Linear Classifier Classifier Classifier Private Enc. Enc. ES Dot Product Decision Compare Argmax Switching Trees

  14. Classifiers In Practice • Linear Classifier • Naïve Bayes Classifier • Decision Trees

  15. Linear Classifier • Separate two sets of points • Very common classifier • Dot product + Encrypted compare

  16. Linear Classifier Time / protocol Model Size Total Comm. Inter. Dot Product Enc. Comp. 30 <0.01s 0.194 s 0.204 s 35.84 kB 7 47 0.024 s 0.194 s 0.217 s 40.19 kB 7 Evaluation on UC Irvine ML databases 
 40 ms network latency 
 2,66 GHz Intel Core i7

  17. Naïve Bayes Classifier d Y argmax p ( C = c i ) p ( X j = x j | C = c i ) i ∈ [ k ] j =1

  18. Naïve Bayes Classifier d Y argmax p ( C = c i ) p ( X j = x j | C = c i ) i ∈ [ k ] j =1

  19. Naïve Bayes Classifier d Y argmax p ( C = c i ) p ( X j = x j | C = c i ) i ∈ [ k ] j =1 d X argmax log p ( C = c i ) log p ( X j = x j | C = c i ) i ∈ [ k ] j =1 • Additive homomorphism + Encrypted argmax

  20. Naïve Bayes Classifier # Cat. # Features Argmax Total Time Comm. Inter. 2 9 0.40 s 0.48 s 72.47 kB 14 5 9 1.33 s 1.42 s 150.7 kB 42 24 70 3.38 s 3.81 s 1911 kB 166 Evaluation on UC Irvine ML databases 
 40 ms network latency 
 2,66 GHz Intel Core i7

  21. Decision Trees y x ≥ x 2 x < x 2 B D y 2 y < y 1 y > y 2 y 1 E D B A C x ≥ x 1 x < x 1 E C A x 1 x 2 x

  22. Decision Tree • Combination of other classifiers • In this example, linear classifiers • Linear classifier + ES Switching + Decision Trees

  23. Decision Tree Tree Time / Protocol Specs. Total Comm. Inter. Decision Nodes Depth Lin. Class. ES Switch Tree (FHE) 4 4 0.45 s 1.64 s 0.27 s 2.3 s 2639 kB 30 6 4 1.41 s 7.41 s 0.93 s 9.8 s 3555 kB 44 Evaluation on UC Irvine ML databases 
 40 ms network latency 
 2,66 GHz Intel Core i7

  24. Decision Tree Tree Time / Protocol Specs. Total Comm. Inter. Decision Nodes Depth Lin. Class. ES Switch Tree (FHE) 4 4 0.45 s 1.64 s 0.27 s 2.3 s 2639 kB 30 6 4 1.41 s 7.41 s 0.93 s 9.8 s 3555 kB 44 Run sequentially, can be parallelized

  25. Building blocks library • Designed to be modular Easy composition • Easy to construct new secure classifiers Face detection algorithm (Viola & Jones)

  26. Building blocks library E.g.: Linear Classifier Client Server PK SK v w Dot Product Dot Product SK J h v, w i K PK Enc. Compare Enc. Compare h v, w i > 0

  27. 
 Building blocks library E.g.: Linear Classifier Client Server bool Linear_Classifier_Client::run() void Linear_Classifier_Server_session:: run_session() 
 { { 
 exchange_keys(); exchange_keys(); // enc_model_ is the encrypted model vector 
 // values_ is a vector of integers 
 // compute the dot product 
 // compute the dot product 
 help_compute_dot_product(enc_model_, true); 
 mpz_class v = compute_dot_product(values_); 
 mpz_class w = 1; // encryption of 0 // help the client to get 
 // compare the dot product with 0 // the sign of the dot product 
 return enc_comparison(v, w, bit_size_, false); 
 help_enc_comparison(bit_size_, false); 
 } }

  28. In conclusion • Composable building blocks for secure classifiers • Library with practical performances Future work : • Less roundtrips (work on the protocols) • More parallelism (work on the implementation)

  29. Questions?

Recommend

Machine Learning Classification over Encrypted Data Raphael Bost, Raluca Ada Popa, Stephen Tu,

Machine Learning Classification over Encrypted Data Raphael Bost, Raluca Ada Popa, Stephen Tu,

Machine Learning Classification over Encrypted Data Raphael Bost, Raluca Ada Popa, Stephen Tu, Shafi Goldwasser Classification (Machine Learning) Supervised learning (training) Classification data classification training model

1.29k views • 54 slides
Introduction to machine learning COMS 4721 Learning from data Machine learning : the study

Introduction to machine learning COMS 4721 Learning from data Machine learning : the study

Introduction to machine learning COMS 4721 Learning from data Machine learning : the study of computational mechanisms that learn from data in order to make predictions and decisions. Example 1: image classification A birdwatcher

932 views • 14 slides
Decision Trees TJ Machine Learning Club Classification vs. Regression Classification

Decision Trees TJ Machine Learning Club Classification vs. Regression Classification

Decision Trees TJ Machine Learning Club Classification vs. Regression Classification Classifying photos of fruits Determining whether tumor is benign or malignant Regression Predicting COVID-19 cases given demographic data

505 views • 26 slides
Data Mining: Classification Jay Urbain, PhD Credits: Tom Mitchell, Machine Learning, CMU Nazli

Data Mining: Classification Jay Urbain, PhD Credits: Tom Mitchell, Machine Learning, CMU Nazli

Data Mining: Classification Jay Urbain, PhD Credits: Tom Mitchell, Machine Learning, CMU Nazli Goharian, IIT/Georgetown Jiawei Han, Micheline Kamber, and Jian Pei, Data Mining 1 1 2 Classification: Basic Concepts n Classifica(on:

1.39k views • 126 slides
x ? Machine Learning 5/4/20 Tim Althoff, UW CS547: Machine Learning for Big Data,

x ? Machine Learning 5/4/20 Tim Althoff, UW CS547: Machine Learning for Big Data,

? ? x ? Machine Learning 5/4/20 Tim Althoff, UW CS547: Machine Learning for Big Data, http://www.cs.washington.edu/cse547 2 ? ? ? ? Machine Learning ? Node classification 5/4/20 Tim Althoff, UW CS547: Machine Learning for Big Data,

755 views • 53 slides
1: Sentiment Classification Machine Learning and Real-world Data (MLRD) Ann Copestake (based on

1: Sentiment Classification Machine Learning and Real-world Data (MLRD) Ann Copestake (based on

1: Sentiment Classification Machine Learning and Real-world Data (MLRD) Ann Copestake (based on slides created by Simone Teufel) Lent 2018 This course: Machine Learning and Real-world Data (MLRD) Three Topics: Classification: sentiment

337 views • 23 slides
Overview CS 446 What is machine learning? Machine learning : study of computational

Overview CS 446 What is machine learning? Machine learning : study of computational

Overview CS 446 What is machine learning? Machine learning : study of computational mechanisms that learn from data to make predictions and decisions. 1 / 21 Application 1: image classification Birdwatcher takes photos of birds,

1.08k views • 83 slides
Classifiers: Support Vector Machine 1 MACHINE LEARNING What is Classification? Female Adult

Classifiers: Support Vector Machine 1 MACHINE LEARNING What is Classification? Female Adult

MACHINE LEARNING MACHINE LEARNING Classifiers: Support Vector Machine 1 MACHINE LEARNING What is Classification? Female Adult Children Detecting facial attributes He &amp; Zhang, Pattern Recognition, 2011 Sony (Make Believe) Training set

914 views • 80 slides
Introduction to Big Data and Machine Learning Classification Dr. Mihail September 19, 2019 (Dr.

Introduction to Big Data and Machine Learning Classification Dr. Mihail September 19, 2019 (Dr.

Introduction to Big Data and Machine Learning Classification Dr. Mihail September 19, 2019 (Dr. Mihail) Intro Big Data September 19, 2019 1 / 3 Linear models for classification Goal Goal of classification: take an input vector x and assign

511 views • 17 slides
MACHINE LEARNING Slide adapted from learning from data book and course, and Berkeley cs188 by Dan

MACHINE LEARNING Slide adapted from learning from data book and course, and Berkeley cs188 by Dan

MACHINE LEARNING Slide adapted from learning from data book and course, and Berkeley cs188 by Dan Klein, and Pieter Abbeel Machine Learning ?? Learning from data Tasks: Prediction Classification Recognition Focus on

691 views • 36 slides
1 Model-Based Classification Model-Based Classification Model-based approach Build a

1 Model-Based Classification Model-Based Classification Model-based approach Build a

Machine Learning CSE 473: Artificial Intelligence Nave Bayes Up until now: how use a model to make optimal decisions Machine learning: how to acquire a model from data / experience Learning parameters (e.g. probabilities)

628 views • 8 slides
15-388/688 - Practical Data Science: Linear classification J. Zico Kolter Carnegie Mellon

15-388/688 - Practical Data Science: Linear classification J. Zico Kolter Carnegie Mellon

15-388/688 - Practical Data Science: Linear classification J. Zico Kolter Carnegie Mellon University Fall 2019 1 Outline Example: classifying tumors Classification in machine learning Example classification algorithms Libraries for machine

629 views • 27 slides
Generative and discriminative classification techniques Machine Learning and Category

Generative and discriminative classification techniques Machine Learning and Category

Generative and discriminative classification techniques Machine Learning and Category Representation 2014-2015 Jakob Verbeek, November 28, 2014 Course website: http://lear.inrialpes.fr/~verbeek/MLCR.14.15 Classification Given training data

295 views • 28 slides
Traditional Machine Learning: Unsupervised Learning Juhan Nam Traditional Machine Learning

Traditional Machine Learning: Unsupervised Learning Juhan Nam Traditional Machine Learning

GCT634/AI613: Musical Applications of Machine Learning (Fall 2020) Traditional Machine Learning: Unsupervised Learning Juhan Nam Traditional Machine Learning Pipeline in Classification Tasks A set of hand-designed audio features are selected

398 views • 26 slides
2: Naive Bayes Classification Machine Learning and Real-world Data Simone Teufel and Ann

2: Naive Bayes Classification Machine Learning and Real-world Data Simone Teufel and Ann

2: Naive Bayes Classification Machine Learning and Real-world Data Simone Teufel and Ann Copestake Computer Laboratory University of Cambridge Lent 2017 Last session: an algorithmic solution to sentiment detection You built a symbolic

436 views • 16 slides
Multiclass Classification Machine Learning So far: Binary Classification We have seen linear

Multiclass Classification Machine Learning So far: Binary Classification We have seen linear

Multiclass Classification Machine Learning So far: Binary Classification We have seen linear models Learning algorithms for linear models Perceptron, Winnow, Adaboost, SVM We will see more soon: Nave Bayes, Logistic Regression

635 views • 24 slides
Introduction to Machine Learning Classification: Tasks Sonar Learning goals 0.20 Understand

Introduction to Machine Learning Classification: Tasks Sonar Learning goals 0.20 Understand

Introduction to Machine Learning Classification: Tasks Sonar Learning goals 0.20 Understand the main difference between regression and 0.15 classification Response V2 M R 0.10 Know that classification can be binary or multiclass 0.05

510 views • 8 slides
Machine learning strikes from below, a mining application: Material Classification by Drilling

Machine learning strikes from below, a mining application: Material Classification by Drilling

Machine learning strikes from below, a mining application: Material Classification by Drilling Machine Learning 2005 Johan Larsson Papers Material Classification by Drilling Diana LaBelle, John Bares, Illah Nourbakhsh Robotics Institute,

509 views • 29 slides
Partially Encrypted Machine Learning using Functional Encryption eo Ryffel 1,2 Edouard Dufour-Sans

Partially Encrypted Machine Learning using Functional Encryption eo Ryffel 1,2 Edouard Dufour-Sans

Partially Encrypted Machine Learning using Functional Encryption eo Ryffel 1,2 Edouard Dufour-Sans 1 Romain Gay 1,3 Th Francis Bach 2,1 David Pointcheval 1,2 1 Ecole Normale Sup erieure 2 INRIA 3 UC Berkeley August 18, 2019 Table of

418 views • 38 slides
1 Why Study Machine Learning? Why Study Machine Learning? Cognitive Science The Time is Ripe

1 Why Study Machine Learning? Why Study Machine Learning? Cognitive Science The Time is Ripe

What is Learning? Herbert Simon: Learning is any process by which a system improves performance from CS 391L: Machine Learning experience. Introduction What is the task? Classification Problem solving / planning /

603 views • 6 slides
Machine learning and event classification SOTARRIVA ALVAREZ ISAI ROBERTO Advisor Dr. Antonio

Machine learning and event classification SOTARRIVA ALVAREZ ISAI ROBERTO Advisor Dr. Antonio

Machine learning and event classification SOTARRIVA ALVAREZ ISAI ROBERTO Advisor Dr. Antonio Ortiz Velasquez 1 MACHINE LEARNING APPLIED TO EVENT CLASSIFICATION Motivation Jet like Sphere like OR Machine learning (low spherocity) (High

301 views • 14 slides
Generative and discriminative classification techniques Machine Learning and Object Recognition

Generative and discriminative classification techniques Machine Learning and Object Recognition

Generative and discriminative classification techniques Machine Learning and Object Recognition 2015-2016 Jakob Verbeek, December 11, 2015 Course website: http://lear.inrialpes.fr/~verbeek/MLOR.15.16 Classification Given training data

862 views • 61 slides
2. Naive Bayes Classification Machine Learning and Real-world Data (MLRD) Paula Buttery (based

2. Naive Bayes Classification Machine Learning and Real-world Data (MLRD) Paula Buttery (based

2. Naive Bayes Classification Machine Learning and Real-world Data (MLRD) Paula Buttery (based on slides created by Simone Teufel) Lent 2018 Last session: we used a sentiment lexicon for sentiment classification Movie review sentiment

446 views • 15 slides
CPSC 340: Machine Learning and Data Mining Non-Parametric Models Summer 2020 Course Map

CPSC 340: Machine Learning and Data Mining Non-Parametric Models Summer 2020 Course Map

CPSC 340: Machine Learning and Data Mining Non-Parametric Models Summer 2020 Course Map Machine Learning Approaches Supervised Semi-supervised Unsupervised Reinforcement Learning Learning Learning Learning Classification Regression

1.06k views • 57 slides

More recommend