Federated Learning With Differential Privacy: Algorithms and Performance Analysis
Nanjing University of Science and Technology · Tomsk Polytechnic University · +7 more institutions
Abstract
Federated learning (FL), as a type of distributed machine learning, is capable of significantly preserving clients’ private data from being exposed to adversaries. Nevertheless, private information can still be divulged by analyzing uploaded parameters from clients, e.g., weights trained in deep neural networks. In this paper, to effectively prevent information leakage, we propose a novel framework based on the concept of differential privacy (DP), in which artificial noise is added to parameters at the clients’ side before aggregating, namely, noising before model aggregation FL (NbAFL). First, we prove that the NbAFL can satisfy DP under distinct protection levels by properly adapting different variances of…
Citation impact
- FWCI
- 125.13
- Percentile
- 100%
- References
- 58
Authors
9- KWKang WeiCorresponding
Nanjing University of Science and Technology
- JLJun Li
Nanjing University of Science and Technology, Tomsk Polytechnic University, National Research Tomsk State University
- MDMing Ding
Commonwealth Scientific and Industrial Research Organisation, Data61
- CMChuan Ma
Nanjing University of Science and Technology
- HHHoward H. Yang
Singapore University of Technology and Design
Topics & keywords
- Computer science
- Differential privacy
- Algorithm
- Theoretical computer science
- Peace, Justice and strong institutions