Privacy-Preserving Machine Learning

We characterize performance overhead of privacy-preserving computation techniques, focusing on homomorphic encryption (HE) technique. Homomorphic encryption makes it possible to compute on encrypted data leveraging a huge computation overhead, which raises challenges on its actual deployment. We analyze the overhead and build its performance and cost model. We investigate the practicality of this new computing model that is capable of secure computation outsourcing.

We place emphasis on privacy-preserving machine learning/deep learning applications because recent advances in (personalized) deep learning applications can significantly facilitate our lives provided that user's privacy is protected. To make use of homomorphic encryption techniques with these applications, we optimize it on both algorithm and hardware levels. Specifically, based on the characteristics of deep learning and homomorphic encryption workloads, we look at how to fit the pipeline of homomorphic encryption operations to the hardware better. We design a specialized hardware accelerator and conduct performance and power analysis with the algorithm-level optimizations combined.

Select Publications

2022

Maximilian Lam, Michael Mitzenmacher, Vijay Janapa Reddi, Gu-Yeon Wei, and David Brooks. 2022. “Tabula: Efficiently Computing Nonlinear Activation Functions for Secure Neural Network Inference”

2021

Maximilian Lam, Gu-Yeon Wei, David Brooks, Vijay Janapa Reddi, and Michael Mitzenmacher. 2021. “Gradient Disaggregation: Breaking Privacy in Federated Learning by Reconstructing the User Participant Matrix”

2020

Brandon Reagen, Wooseok Choi, Yeongil Ko, Vincent Lee, Gu Wei, Lee S, and David Brooks. 2020. “Cheetah: Optimizations and Methods for PrivacyPreserving Inference via Homomorphic Encryption”

See all project publications