SPEAR: Exact Gradient Inversion of Batches in Federated Learning, Mark Niklas Müller

Jun-1-2025, 11:12:59 GMT–Neural Information Processing Systems

Federated learning is a framework for collaborative machine learning where clients only share gradient updates and not their private data with a server. However, it was recently shown that gradient inversion attacks can reconstruct this data from the shared gradients. In the important honest-but-curious setting, existing attacks enable exact reconstruction only for batch size of b = 1, with larger batches permitting only approximate reconstruction. In this work, we propose SPEAR, the first algorithm reconstructing whole batches with b > 1 exactly. SPEAR combines insights into the explicit low-rank structure of gradients with a sampling-based algorithm.

artificial intelligence, machine learning, spear, (17 more...)

Neural Information Processing Systems

Jun-1-2025, 11:12:59 GMT

Conferences PDF

Add feedback

Country:
- Europe (0.46)
- North America
  - Canada (0.14)
  - United States (0.14)

Genre:
- Research Report
  - Experimental Study (1.00)
  - New Finding (0.93)

Industry:
- Government (0.93)
- Information Technology > Security & Privacy (1.00)
- Law (0.92)

Technology:
- Information Technology > Artificial Intelligence > Machine Learning > Neural Networks (1.00)