No Free Lunch Theorem for Security and Utility in Federated Learning
Zhang, Xiaojin, Gu, Hanlin, Fan, Lixin, Chen, Kai, Yang, Qiang
–arXiv.org Artificial Intelligence
In a federated learning scenario where multiple parties jointly learn a model from their respective data, there exist two conflicting goals for the choice of appropriate algorithms. On one hand, private and sensitive training data must be kept secure as much as possible in the presence of \textit{semi-honest} partners, while on the other hand, a certain amount of information has to be exchanged among different parties for the sake of learning utility. Such a challenge calls for the privacy-preserving federated learning solution, which maximizes the utility of the learned model and maintains a provable privacy guarantee of participating parties' private data. This article illustrates a general framework that a) formulates the trade-off between privacy loss and utility loss from a unified information-theoretic point of view, and b) delineates quantitative bounds of privacy-utility trade-off when different protection mechanisms including Randomization, Sparsity, and Homomorphic Encryption are used. It was shown that in general \textit{there is no free lunch for the privacy-utility trade-off} and one has to trade the preserving of privacy with a certain degree of degraded utility. The quantitative analysis illustrated in this article may serve as the guidance for the design of practical federated learning algorithms.
arXiv.org Artificial Intelligence
Sep-5-2022
- Country:
- North America > United States
- New York > New York County
- New York City (0.04)
- Illinois > Champaign County
- Urbana (0.04)
- New York > New York County
- Europe > United Kingdom
- England > Cambridgeshire > Cambridge (0.04)
- Asia
- Middle East > Jordan (0.04)
- China
- Hong Kong (0.05)
- Guangdong Province > Shenzhen (0.04)
- North America > United States
- Genre:
- Research Report (0.82)
- Industry:
- Information Technology > Security & Privacy (1.00)
- Technology: