TY - JOUR
T1 - WAFFLe: Weight Anonymized Factorization for Federated Learning
AU - Hao, Weituo
AU - Mehta, Nikhil
AU - Liang, Kevin J
AU - Cheng, Pengyu
AU - El-Khamy, Mostafa
AU - Carin, Lawrence
N1 - KAUST Repository Item: Exported on 2022-05-09
Acknowledgements: Supported in part by SOC R&D of Samsung Semiconductor Inc. USA
PY - 2022/5/5
Y1 - 2022/5/5
N2 - In domains where data are sensitive or private, there is great value in methods that can learn in a distributed manner without the data ever leaving the local devices. In light of this need, federated learning has emerged as a popular training paradigm. However, many federated learning approaches trade transmitting data for communicating updated weight parameters for each local device. Therefore, a successful breach that would have otherwise directly compromised the data instead grants whitebox access to the local model, which opens the door to a number of attacks, including exposing the very data federated learning seeks to protect. Additionally, in distributed scenarios, individual client devices commonly exhibit high statistical heterogeneity. Many common federated approaches learn a single global model; while this may do well on average, performance degrades when the i.i.d. assumption is violated, underfitting individuals further from the mean and raising questions of fairness. To address these issues, we propose Weight Anonymized Factorization for Federated Learning (WAFFLe), an approach that combines the Indian Buffet Process with a shared dictionary of weight factors for neural networks. Experiments on MNIST, FashionMNIST, and CIFAR-10 demonstrate WAFFLe’s significant improvement to local test performance and fairness while simultaneously providing an extra layer of security.
AB - In domains where data are sensitive or private, there is great value in methods that can learn in a distributed manner without the data ever leaving the local devices. In light of this need, federated learning has emerged as a popular training paradigm. However, many federated learning approaches trade transmitting data for communicating updated weight parameters for each local device. Therefore, a successful breach that would have otherwise directly compromised the data instead grants whitebox access to the local model, which opens the door to a number of attacks, including exposing the very data federated learning seeks to protect. Additionally, in distributed scenarios, individual client devices commonly exhibit high statistical heterogeneity. Many common federated approaches learn a single global model; while this may do well on average, performance degrades when the i.i.d. assumption is violated, underfitting individuals further from the mean and raising questions of fairness. To address these issues, we propose Weight Anonymized Factorization for Federated Learning (WAFFLe), an approach that combines the Indian Buffet Process with a shared dictionary of weight factors for neural networks. Experiments on MNIST, FashionMNIST, and CIFAR-10 demonstrate WAFFLe’s significant improvement to local test performance and fairness while simultaneously providing an extra layer of security.
UR - http://hdl.handle.net/10754/676666
UR - https://ieeexplore.ieee.org/document/9770028/
U2 - 10.1109/access.2022.3172945
DO - 10.1109/access.2022.3172945
M3 - Article
SN - 2169-3536
SP - 1
EP - 1
JO - IEEE Access
JF - IEEE Access
ER -