Taeho Jung,XuFei Mao,Xiang-Yang Li,Shaojie Tang,Wei Gong,Lan Zhang

DOI: https://doi.org/10.1109/INFCOM.2013.6567071

2013-04-12

Abstract:Much research has been conducted to securely outsource multiple parties' data aggregation to an untrusted aggregator without disclosing each individual's data, or to enable multiple parties to jointly aggregate their data while preserving privacy. However, those works either assume to have a secure channel or suffer from high complexity. Here we consider how an external aggregator or multiple parties learn some algebraic statistics (e.g., summation, product) over participants' data while any individual's input data is kept secret to others (the aggregator and other participants). We assume channels in our construction are insecure. That is, all channels are subject to eavesdropping attacks, and all the communications throughout the aggregation are open to others. We successfully guarantee data confidentiality under this weak assumption while limiting both the communication and computation complexity to at most linear.

Cryptography and Security

Taeho Jung,Xiang-Yang Li,Meng Wan

DOI: https://doi.org/10.1109/TDSC.2014.2309134

2015-01-01

Abstract:Much research has been conducted to securely outsource multiple parties' data aggregation to an untrusted aggregator without disclosing each individual's privately owned data, or to enable multiple parties to jointly aggregate their data while preserving privacy. However, those works either require secure pair-wise communication channels or suffer from high complexity. In this paper, we consider how an external aggregator or multiple parties can learn some algebraic statistics (e.g., sum, product) over participants' privately owned data while preserving the data privacy. We assume all channels are subject to eavesdropping attacks, and all the communications throughout the aggregation are open to others. We first propose several protocols that successfully guarantee data privacy under semi-honest model, and then present advanced protocols which tolerate up to k passive adversaries who do not try to tamper the computation. Under this weak assumption, we limit both the communication and computation complexity of each participant to a small constant. At the end, we present applications which solve several interesting problems via our protocols.

Junxu Liu,Jian Lou,Li Xiong,Jinfei Liu,Xiaofeng Meng

DOI: https://doi.org/10.14778/3503585.3503592

IF: 2.5

2021-01-01

Proceedings of the VLDB Endowment

Abstract:Federated Learning (FL) is a promising framework for multiple clients to learn a joint model without directly sharing the data. In addition to high utility of the joint model, rigorous privacy protection of the data and communication efficiency are important design goals. Many existing efforts achieve rigorous privacy by ensuring differential privacy for intermediate model parameters, however, they assume a uniform privacy parameter for all the clients. In practice, different clients may have different privacy requirements due to varying policies or preferences. In this paper, we focus on explicitly modeling and leveraging the heterogeneous privacy requirements of different clients and study how to optimize utility for the joint model while minimizing communication cost. As differentially private perturbations affect the model utility, a natural idea is to make better use of information submitted by the clients with higher privacy budgets (referred to as "public" clients, and the opposite as "private" clients). The challenge is how to use such information without biasing the joint model. We propose P rojected F ederated A veraging (PFA), which extracts the top singular subspace of the model updates submitted by "public" clients and utilizes them to project the model updates of "private" clients before aggregating them. We then propose communication-efficient PFA+, which allows "private" clients to upload projected model updates instead of original ones. Our experiments verify the utility boost of both algorithms compared to the baseline methods, whereby PFA+ achieves over 99% uplink communication reduction for "private" clients.

Min Lu,Zhiguo Shi,Rongxing Lu,Ruixue Sun,Xueminsherman Shen

DOI: https://doi.org/10.1109/ICCChina.2013.6671200

2013-01-01

Abstract:Characterized by time-of-using pricing, better capacity, and usage planning, smart grid has attracted considerable attention in recent years. However, one of the research challenges in smart grid is the privacy issue due to too much sensitive and real-time user data involved. In this paper, we propose a practical privacy-preserving aggregation scheme, named PPPA, for secure smart grid communications. PPPA utilizes the lightweight cryptographic aggregation technique to achieve provable security guarantee, the differential privacy technique to achieve privacy preservation of each individual user, and the quad tree structure to achieve failure tolerance. For data communication from users to control center, data aggregation is conducted directly on ciphertexts at local gateway without decryption, and the aggregation results are reported by relays to the control center. Through extensive analysis, we demonstrate that PPPA can not only provide authentication and guarantee the data integrity, but also achieve strong privacy-preserving for each user, and thus it is feasible in practical smart grid scenarios.

Yingting Liu,Chaochao Chen,Longfei Zheng,Li Wang,Jun Zhou,Guiquan Liu,Shuang Yang

DOI: https://doi.org/10.48550/arxiv.2002.02091

2020-01-01

Abstract:In this paper, we present a general multiparty modeling paradigm with PrivacyPreserving Principal Component Analysis (PPPCA) for horizontally partitioneddata. PPPCA can accomplish multiparty cooperative execution of PCA under thepremise of keeping plaintext data locally. We also propose implementationsusing two techniques, i.e., homomorphic encryption and secret sharing. Theoutput of PPPCA can be sent directly to data consumer to build any machinelearning models. We conduct experiments on three UCI benchmark datasets and areal-world fraud detection dataset. Results show that the accuracy of the modelbuilt upon PPPCA is the same as the model with PCA that is built based oncentralized plaintext data.

Mei Wang,Kun He,Jing Chen,Ruiying Du,Bingsheng Zhang,Zengpeng Li

DOI: https://doi.org/10.1016/j.future.2022.01.007

IF: 7.307

2022-01-01

Future Generation Computer Systems

Abstract:Privacy-preserving data aggregation is becoming a demanding necessity for many promising scenarios, e.g., health care analysis. Sensitive data are collected and aggregated in a privacy-preserving approach using current Internet of Things (IoT) technology, leading to immense challenge and consequent interest in developing secure computing algorithms for individual and organizational data. However, most existing solutions focus on specific evaluations (e.g., SUM), and they use heavy cryptographic techniques, which are far from practice for constrained IoT devices. The Trusted Execution Environment (TEE, implemented with Intel SGX) can assist in computing arbitrary functions and avoiding resource-consuming operations. Nevertheless, TEE is subject to several challenges because TEE is vulnerable to limited resource and even function violations, e.g., the attacker may bypass the boundary of TEE. In this paper, we propose a lightweight non-interactive privacy-preserving data aggregation scheme for resource-constrained devices, named PANDA, where TEE is introduced to bypass the trusted entities requirement and heavy overhead. Additionally, PANDA explores the certificate-aided function authorization to prevent leakage from unauthorized functions, and designs the public verifiable certificate management to detect the abnormal behaviors of the host to mitigate the external host compromise. We formalize PANDA with rigorous security analysis to indicate privacy protection against the compromised aggregator and analyst. The evaluation results show that PANDA has constant online communication cost and lightweight computation overhead for constrained devices, which is suitable for IoT applications.

Hao Ren,Hongwei Li,Xiaohui Liang,Shibo He,Yuanshun Dai,Lian Zhao

DOI: https://doi.org/10.3390/s16091463

IF: 3.9

2016-01-01

Sensors

Abstract:With the rapid growth of the health data scale, the limited storage and computation resources of wireless body area sensor networks (WBANs) is becoming a barrier to their development. Therefore, outsourcing the encrypted health data to the cloud has been an appealing strategy. However, date aggregation will become difficult. Some recently-proposed schemes try to address this problem. However, there are still some functions and privacy issues that are not discussed. In this paper, we propose a privacy-enhanced and multifunctional health data aggregation scheme (PMHA-DP) under differential privacy. Specifically, we achieve a new aggregation function, weighted average (WAAS), and design a privacy-enhanced aggregation scheme (PAAS) to protect the aggregated data from cloud servers. Besides, a histogram aggregation scheme with high accuracy is proposed. PMHA-DP supports fault tolerance while preserving data privacy. The performance evaluation shows that the proposal leads to less communication overhead than the existing one.

Yuqi Zhang,Xiangyang Li,Qingcai Luo,Yang Wang,Yanzhao Shen

DOI: https://doi.org/10.1145/3625343.3625344

2023-01-01

Abstract:In recent years, Federal Learning has received much attention becourse it can train models by updating gradients without contacting users’ true data. However, adversaries also can track users’ privacy from the shared gradient. In this paper, we aim to solve three major issues during the process of federated learning: 1) how to protect users’ privacy during training; 2) How to verify the correctness of the aggregation results returned from the server; 3) How to reduce communication costs while ensuring training security. So we propose a verifiable aggregation scheme that can effectively verify the results of server aggregation. Specifically, we follow the classic double mask aggregation scheme, and use Paillier homomorphic encryption algorithm to implement the message authentication code with additive homomorphic property. Users can compare their local codes with server’s aggregation results to verify the correctness of the aggregation results and improve model’s accuracy. In our framework, we adopt a Top-k gradient selection scheme to reduce models’ communication and computing overhead. Experimental results indicate that our training framework is feasible and efficient.

Hongyang Yan,Li Hu,Xiaoyu Xiang,Zheli Liu,Xu Yuan

DOI: https://doi.org/10.1016/j.ins.2020.09.064

IF: 8.1

2021-02-01

Information Sciences

Abstract:<p>Collaborative learning and related techniques such as federated learning, allow multiple clients to train a model jointly while keeping their datasets at local. <em>Secure Aggregation</em> in most existing works focus on protecting model gradients from the server. However, an dishonest user could still easily get the privacy information from the other users. It remains a challenge to propose an effective solution to prevent information leakage against dishonest users.</p><p>To tackle this challenge, we propose a novel and effective privacy-preserving collaborative machine learning scheme, targeting at preventing information leakage agains adversaries. Specifically, we first propose a privacy-preserving network transformation method by utilizing Random-Permutation in Software Guard Extensions(SGX), which protects the model parameters from being inferred by a curious server and dishonest clients. Then, we apply Partial-Random Uploading mechanism to mitigate the information inference through visualizations. To further enhance the efficiency, we introduce network pruning operation and employ it to accelerate the convergence of training. We present the formal security analysis to demonstrate that our proposed scheme can preserve privacy while ensuring the convergence and accuracy of secure aggregation. We conduct experiments to show the performance of our solution in terms of accuracy and efficiency. The experimental results show that the proposed scheme is practical.</p>

computer science, information systems

Chang Xu,Lvhan Zhang,Liehuang Zhu,Chuan Zhang,Xiaojiang Du,Mohsen Guizani,Kashif Sharif

DOI: https://doi.org/10.1016/j.future.2020.04.021

IF: 7.307

2020-01-01

Future Generation Computer Systems

Abstract:Information-Centric Networking (ICN) is a novel future network architecture which in contrast to IP-based networks relies on content and its name. It separates the physical location of data from the discovery and forwarding process and solely relies on the content itself. For the Internet of Thing (IoT) networks, stripping the location information may provide privacy, but this does not translate to operational privacy. Attackers can infer user behavior patterns through operational privacy, by eavesdropping on meaningful information. The content name and designed signature in ICN can associate content with the identity of the provider, even if the IP address is hidden. Although several research efforts focus on the privacy protection of ICN, they do not consider the privacy implications of data aggregation. Most existing privacy-preserving data aggregation protocols are designed for special operations, such as sum, average, variance, max or min, and they cannot support arbitrary aggregation operations in the ciphertexts domain. Besides, the need for trusted authority (TA) restricts the use of existing protocols in the real world. In this paper, we propose a practical and privacy-preserving data aggregation scheme that can compute arbitrary aggregation functions without a TA. On one hand, our scheme can ensure users’ anonymity and privacy protection, while on the other, the scheme is efficient in enabling participants to join or leave the system dynamically. Security analysis shows that the proposed scheme can achieve the desired security properties, while experimental results demonstrate its effectiveness and efficiency.

Taeho Jung,Junze Han,Xiang-Yang Li

DOI: https://doi.org/10.1109/tdsc.2016.2577034

2018-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Third-party analysis on private records is becoming increasingly important due to the widespread data collection for various analysis purposes. However, the data in its original form often contains sensitive information about individuals, and its publication will severely breach their privacy. In this paper, we present a novel Privacy-preserving Data Analytics framework PDA, which allows a third-party aggregator to obliviously conduct many different types of polynomial-based analysis on private data records provided by a dynamic sub-group of users. Notably, every user needs to keep only $O(n)$ keys to join data analysis among $O(2^n)$ different groups of users, and any data analysis that is represented by polynomials is supported by our framework. Besides, a real implementation shows the performance of our framework is comparable to the peer works who present ad-hoc solutions for specific data analysis applications. Despite such nice properties of PDA, it is provably secure against a very powerful attacker (chosen-plaintext attack) even in the Dolev-Yao network model where all communication channels are insecure.

Pierre Dellenbach,Aurélien Bellet,Jan Ramon

DOI: https://doi.org/10.48550/arXiv.1803.09984

2018-03-27

Abstract:The amount of personal data collected in our everyday interactions with connected devices offers great opportunities for innovative services fueled by machine learning, as well as raises serious concerns for the privacy of individuals. In this paper, we propose a massively distributed protocol for a large set of users to privately compute averages over their joint data, which can then be used to learn predictive models. Our protocol can find a solution of arbitrary accuracy, does not rely on a third party and preserves the privacy of users throughout the execution in both the honest-but-curious and malicious adversary models. Specifically, we prove that the information observed by the adversary (the set of maliciours users) does not significantly reduce the uncertainty in its prediction of private values compared to its prior belief. The level of privacy protection depends on a quantity related to the Laplacian matrix of the network graph and generally improves with the size of the graph. Furthermore, we design a verification procedure which offers protection against malicious users joining the service with the goal of manipulating the outcome of the algorithm.

Machine Learning,Cryptography and Security,Distributed, Parallel, and Cluster Computing,Multiagent Systems

Xiao Lan,Hongjian Jin,Hui Guo,Xiao Wang

DOI: https://doi.org/10.1109/tifs.2023.3272775

IF: 7.231

2023-05-19

IEEE Transactions on Information Forensics and Security

Abstract:Computing the quantile of a massive data stream has been a crucial task in networking and data management. However, existing solutions assume a centralized model where one data owner has access to all data. In this paper, we put forward a study of secure quantile aggregation between private data streams, where data streams owned by different parties would like to obtain a quantile of the union of their data without revealing anything else about their inputs. To this end, we designed efficient cryptographic protocols that are secure in the semi-honest setting as well as the malicious setting. By incorporating differential privacy, we further improve the efficiency by to . We implemented our protocol, which shows practical efficiency to aggregate real-world data streams efficiently.

computer science, theory & methods,engineering, electrical & electronic

James Henry Bell,Kallista A. Bonawitz,Adrià Gascón,Tancrède Lepoint,Mariana Raykova

DOI: https://doi.org/10.1145/3372297.3417885

2020-10-30

Abstract:Secure aggregation is a cryptographic primitive that enables a server to learn the sum of the vector inputs of many clients. Bonawitz et al. (CCS 2017) presented a construction that incurs computation and communication for each client linear in the number of parties. While this functionality enables a broad range of privacy preserving computational tasks, scaling concerns limit its scope of use. We present the first constructions for secure aggregation that achieve polylogarithmic communication and computation per client. Our constructions provide security in the semi-honest and the semi-malicious settings where the adversary controls the server and a δ-fraction of the clients, and correctness with up to δ-fraction dropouts among the clients. Our constructions show how to replace the complete communication graph of Bonawitz et al., which entails the linear overheads, with a k-regular graph of logarithmic degree while maintaining the security guarantees. Beyond improving the known asymptotics for secure aggregation, our constructions also achieve very efficient concrete parameters. The semi-honest secure aggregation can handle a billion clients at the per-client cost of the protocol of Bonawitz et al. for a thousand clients. In the semi-malicious setting with 10 4 clients, each client needs to communicate only with 3% of the clients to have a guarantee that its input has been added together with the inputs of at least 5000 other clients, while withstanding up to 5% corrupt clients and 5% dropouts. We also show an application of secure aggregation to the task of secure shuffling which enables the first cryptographically secure instantiation of the shuffle model of differential privacy.

Zuyan Wang,Jun Tao,Dika Zou

2024-05-31

Abstract:The growing popular awareness of personal privacy raises the following quandary: what is the new paradigm for collecting and protecting the data produced by ever-increasing sensor devices. Most previous studies on co-design of data aggregation and privacy preservation assume that a trusted fusion center adheres to privacy regimes. Very recent work has taken steps towards relaxing the assumption by allowing data contributors to locally perturb their own data. Although these solutions withhold some data content to mitigate privacy risks, they have been shown to offer insufficient protection against disclosure attacks. Aiming at providing a more rigorous data safeguard for the Internet of Things (IoTs), this paper initiates the study of privacy-preserving data aggregation. We propose a novel paradigm (called RASE), which can be generalized into a 3-step sequential procedure, noise addition, followed by random permutation, and then parameter estimation. Specially, we design a differentially private randomizer, which carefully guides data contributors to obfuscate the truth. Then, a shuffler is employed to receive the noisy data from all data contributors. After that, it breaks the correct linkage between senders and receivers by applying a random permutation. The estimation phase involves using inaccurate data to calculate an approximate aggregate value. Extensive simulations are provided to explore the privacy-utility landscape of our RASE.

Cryptography and Security

Kartick Sutradhar,Ranjitha Venkatesh

DOI: https://doi.org/10.1007/s11128-024-04333-w

IF: 1.965

2024-03-26

Quantum Information Processing

Abstract:Secure quantum multiparty computation is an important field of quantum computing. Many of the preceding aggregation approaches are ( n , n ) threshold-dependent strategies, where n denotes the total number of participants. The previous aggregating techniques cannot aggregate the secret effectively if one participant is dishonest. This paper presents a quantum technique for secure aggregation. This technique is ( t , n ) threshold-dependent scheme, where t is the threshold number of participants. We used the properties of quantum mechanics to provide security in quantum aggregation. This technique can compute the aggregation of secrets securely with less computation and communication costs. The proposed aggregation technique is efficient and secure as compared to existing techniques. The simulation results of the proposed technique ensure correctness and practicality.

physics, multidisciplinary,quantum science & technology, mathematical

Kunal Talwar,Shan Wang,Audra McMillan,Vojta Jina,Vitaly Feldman,Pansy Bansal,Bailey Basile,Aine Cahill,Yi Sheng Chan,Mike Chatzidakis,Junye Chen,Oliver Chick,Mona Chitnis,Suman Ganta,Yusuf Goren,Filip Granqvist,Kristine Guo,Frederic Jacobs,Omid Javidbakht,Albert Liu,Richard Low,Dan Mascenik,Steve Myers,David Park,Wonhee Park,Gianni Parsa,Tommy Pauly,Christian Priebe,Rehan Rishi,Guy Rothblum,Michael Scaria,Linmao Song,Congzheng Song,Karl Tarbe,Sebastian Vogt,Luke Winstrom,Shundong Zhou

2024-07-19

Abstract:We revisit the problem of designing scalable protocols for private statistics and private federated learning when each device holds its private data. Locally differentially private algorithms require little trust but are (provably) limited in their utility. Centrally differentially private algorithms can allow significantly better utility but require a trusted curator. This gap has led to significant interest in the design and implementation of simple cryptographic primitives, that can allow central-like utility guarantees without having to trust a central server. Our first contribution is to propose a new primitive that allows for efficient implementation of several commonly used algorithms, and allows for privacy accounting that is close to that in the central setting without requiring the strong trust assumptions it entails. {\em Shuffling} and {\em aggregation} primitives that have been proposed in earlier works enable this for some algorithms, but have significant limitations as primitives. We propose a {\em Samplable Anonymous Aggregation} primitive, which computes an aggregate over a random subset of the inputs and show that it leads to better privacy-utility trade-offs for various fundamental tasks. Secondly, we propose a system architecture that implements this primitive and perform a security analysis of the proposed system. Our design combines additive secret-sharing with anonymization and authentication infrastructures.

Cryptography and Security,Machine Learning

Ze Yang,Youliang Tian

DOI: https://doi.org/10.1016/j.jksuci.2024.102073

IF: 9.006

2024-06-01

Journal of King Saud University - Computer and Information Sciences

Abstract:Highlights • We propose a lightweight computational scheme for private data aggregation. By adopting the CRT and encoding theory, private data is encoded into polynomial coefficients for computation and the random data are introduced to ensure that private data is not leaked to non-collusive servers. • We propose a non-interactive verifiable security aggregation protocol that satisfies the requirements of clients dropping out and partial server corruption. Furthermore, by introducing redundant shares and utilizing results returned by delayed servers, the proposed scheme achieves verifiable computation. • We provide a thorough analysis of the robustness, verification and security of our proposed. The experimental results show that the proposed scheme is effective in both computation and verification. Data aggregation involves the integration of relevant data generated across platforms and devices, leveraging the potential value of sensory data. However, in addition to security and efficiency, which are the basic requirements for data aggregation involving private data, how to achieve fault tolerance and interference of aggregation in real computing networks is imminent and is the main contribution of this paper. In this paper, we propose a secure aggregation framework involving multiple servers based on coding theory, which is not only robust to clients dropping out and tolerant to partial server withdrawal but also resistant to malicious computation by servers and forgery attacks by adversaries. In particular, the proposed protocol employs the Chinese Residual Theorem (CRT) to encode private data and constructs Lagrange interpolation polynomials to perform aggregation, which achieves lightweight privacy preservation while achieving robust, verifiable and secure aggregation goals.

computer science, information systems

Junze Han,Taeho Jung,Xiang-Yang Li,Lili Du

DOI: https://doi.org/10.1109/MSN.2016.034

2016-01-01

Abstract:Aggregate statistics are becoming increasingly commonplace for mobile sensing applications which crowdsources data from individual users. In order to relieve user's concerns for privacy leakage, privacy preserving mechanisms have to be applied to enable the aggregator to compute aggregate statistics without learning each individual data. Although the aggregator will not know the value of the data, it is necessary to ensure the (semantic) validity of the data contributed by users. In this work, we design a privacy-preserving protocol for an aggregator to compute corrected aggregated statistics over users' data that can both preserve user's privacy and verify the semantic validity of the data. We evaluated our protocol on real-world dataset and demonstrated the efficiency of our protocol.

Graham Cormode,Igor L. Markov

DOI: https://doi.org/10.48550/arXiv.2108.01521

2021-08-03

Abstract:Private data generated by edge devices -- from smart phones to automotive electronics -- are highly informative when aggregated but can be damaging when mishandled. A variety of solutions are being explored but have not yet won the public's trust and full backing of mobile platforms. In this work, we propose numerical aggregation protocols that empirically improve upon prior art, while providing comparable local differential privacy guarantees. Sharing a single private bit per value supports privacy metering that enable privacy controls and guarantees that are not covered by differential privacy. We put emphasis on the ease of implementation, compatibility with existing methods, and compelling empirical performance.

Cryptography and Security,Data Structures and Algorithms