| dc.contributor.author | Shamsabadi, AS | |
| dc.contributor.author | Gascon, A | |
| dc.contributor.author | Haddadi, H | |
| dc.contributor.author | Cavallaro, A | |
| dc.date.accessioned | 2021-04-19T13:08:31Z | |
| dc.date.available | 2021-04-19T13:08:31Z | |
| dc.date.issued | 2020 | |
| dc.identifier.citation | Shamsabadi, Ali Shahin et al. "Privedge: From Local To Distributed Private Training And Prediction". IEEE Transactions On Information Forensics And Security, 2020, pp. 1-1. Institute Of Electrical And Electronics Engineers (IEEE), doi:10.1109/tifs.2020.2988132. Accessed 19 Apr 2021. | en_US |
| dc.identifier.issn | 1556-6013 | |
| dc.identifier.uri | https://qmro.qmul.ac.uk/xmlui/handle/123456789/71350 | |
| dc.description.abstract | Machine Learning as a Service (MLaaS) operators provide model training and prediction on the cloud. MLaaS applications often rely on centralised collection and aggregation of user data, which could lead to significant privacy concerns when dealing with sensitive personal data. To address this problem, we propose PrivEdge, a technique for privacy-preserving MLaaS that safeguards the privacy of users who provide their data for training, as well as users who use the prediction service. With PrivEdge, each user independently uses their private data to locally train a one-class reconstructive adversarial network that succinctly represents their training data. As sending the model parameters to the service provider in the clear would reveal private information, PrivEdge secret-shares the parameters among two non-colluding MLaaS providers, to then provide cryptographically private prediction services through secure multi-party computation techniques. We quantify the benefits of PrivEdge and compare its performance with state-of-the-art centralised architectures on three privacy-sensitive image-based tasks: individual identification, writer identification, and handwritten letter recognition. Experimental results show that PrivEdge has high precision and recall in preserving privacy, as well as in distinguishing between private and non-private images. Moreover, we show the robustness of PrivEdge to image compression and biased training data. The source code is available at https://github.com/smartcameras/PrivEdge. | en_US |
| dc.format.extent | 3819 - 3831 | |
| dc.publisher | IEEE | en_US |
| dc.relation.ispartof | IEEE TRANSACTIONS ON INFORMATION FORENSICS AND SECURITY | |
| dc.subject | Training | en_US |
| dc.subject | Feature extraction | en_US |
| dc.subject | Computational modeling | en_US |
| dc.subject | Predictive models | en_US |
| dc.subject | Cryptography | en_US |
| dc.subject | Data privacy | en_US |
| dc.subject | Data models | en_US |
| dc.subject | Distributed learning | en_US |
| dc.subject | privacy | en_US |
| dc.subject | one-class classifier | en_US |
| dc.subject | generative adversarial network | en_US |
| dc.subject | multi-party computation | en_US |
| dc.title | PrivEdge: From Local to Distributed Private Training and Prediction | en_US |
| dc.type | Article | en_US |
| dc.rights.holder | © 2020 IEEE. Personal use of this material is permitted. Permission from IEEE must be obtained for all other uses, in any current or future media, including reprinting/republishing this material for advertising or promotional purposes, creating new collective works, for resale or redistribution to servers or lists, or reuse of any copyrighted component of this work in other works. | |
| dc.identifier.doi | 10.1109/TIFS.2020.2988132 | |
| pubs.author-url | http://gateway.webofknowledge.com/gateway/Gateway.cgi?GWVersion=2&SrcApp=PARTNER_APP&SrcAuth=LinksAMR&KeyUT=WOS:000550635500002&DestLinkType=FullRecord&DestApp=ALL_WOS&UsrCustomerID=612ae0d773dcbdba3046f6df545e9f6a | en_US |
| pubs.notes | Not known | en_US |
| pubs.publication-status | Published | en_US |
| pubs.volume | 15 | en_US |
| rioxxterms.funder | Default funder | en_US |
| rioxxterms.identifier.project | Default project | en_US |
