Abstract:Convolutional Neural Networks (CNNs) possess extensive applicability across diverse domains, particularly in the realm of image recognition. In light of the advent of machine learning as a service, the utilization of a well-trained CNN model by servers to execute image classification based on user queries has become a significant service, catering to a wide array of applications. Nevertheless, this convenience is accompanied by the inherent risk of data privacy and model privacy disclosure, which can have severe ramifications, particularly in the context of specialized scenarios like medical images and location images. Hence, how to perform classification for CNN with privacy protection emerges as a crucial research concern. Furthermore, the nonlinearity of CNN's activation function renders it unsuitable for homomorphic cryptosystems. In order to address these challenges, we put forth a privacy-preserving CNN classification scheme employing a distributed two trapdoors public-key cryptosystem (DT-PKC). Initially, we introduce a security protocol toolkit encompassing protocols for secure multiplication, secure activation function computing, and average pooling. In addition, we propose a novel continuous and derivative Tanhplus function as an approximation of the Relu function, aiming to enhance the accuracy of classification results. The secure activation function computing protocol utilizes the aforementioned Tanhplus function in conjunction with the proposed homogenization algorithm to compute the activation function. This protocol guarantees more precise and accurate output in the activation function calculation of CNN when operating under ciphertext. Furthermore, the adoption of the DT-PKC cryptosystem not only ensures privacy protection for CNN classification but also provides support for lightweight users and multiple keys. Finally, security analysis and performance evaluations demonstrate that the proposed scheme is secure, practicable, and efficient with high accuracy.

Privacy-Preserving Convolutional Neural Network Classification Scheme With Multiple Keys

Privacy‐preserving convolutional neural network prediction with low latency and lightweight users

A Privacy-Preserving Scheme For Convolutional Neural Network-Based Applications In Mobile Cloud

Privacy-Preserving Convolutional Neural Networks Using Homomorphic Encryption

Secure $K$k-Nn Query on Encrypted Cloud Data with Multiple Keys

Masked image: Visually protected image dataset privacy-preserving scheme for convolutional neural networks

Privacy-Preserving CNN Training with Transfer Learning: Multiclass Logistic Regression

cuSCNN: A Secure and Batch-Processing Framework for Privacy-Preserving Convolutional Neural Network Prediction on GPU

A privacy-preserving method using secret key for convolutional neural network-based speech classification

Secure Convolution Neural Network Inference Based on Homomorphic Encryption

A Secure Convolutional Neural Network Inference Model Based on Homomorphic Encryption

FPCNN: A fast privacy-preserving outsourced convolutional neural network with low-bandwidth

CryptoDL: Deep Neural Networks over Encrypted Data

Efficient and privacy-preserving image classification using homomorphic encryption and chunk-based convolutional neural network

FALCON: A Fourier Transform Based Approach for Fast and Secure Convolutional Neural Network Predictions

Speech privacy-preserving methods using secret key for convolutional neural network models and their robustness evaluation

Privacy Prediction of Lightweight Convolutional Neural Network

PCNNCEC: Efficient and Privacy-Preserving Convolutional Neural Network Inference Based on Cloud-Edge-Client Collaboration

Differentially Private Convolutional Neural Networks with Adaptive Gradient Descent.

Efficient optimisation framework for convolutional neural networks with secure multiparty computation

Privacy-Preserving Video Classification with Convolutional Neural Networks