A. Tran, T. Luong, Cong-Chieu Ha, Duc-Tho Hoang, Thi-Luong Tran
{"title":"通过深度学习即服务的安全推理而不泄露隐私","authors":"A. Tran, T. Luong, Cong-Chieu Ha, Duc-Tho Hoang, Thi-Luong Tran","doi":"10.1109/RIVF51545.2021.9642089","DOIUrl":null,"url":null,"abstract":"Cloud computing plays an important role in many applications today. There is a lot of machine learning as a service that provides models for users’ prediction online. However, in many problems which involve healthcare or finances, the privacy of the data that sends from users to the cloud server needs to be considered. Machine learning as a service application does not only require accurate predictions but also ensures data privacy and security. In this paper, we present a novel secure protocol that ensures to compute a scalar product of two real number vectors without revealing the origin of themselves. The scalar product is the most common operation that used in the deep neural network so that our proposed protocol can be used to allow a data owner to send her data to a cloud service that hosts a deep model to get a prediction of input data. We show that the cloud service is capable of applying the neural network to make predictions without knowledge of the user’s original data. We demonstrate our proposed protocol on an image benchmark dataset MNIST and an real life application dataset - COVID-19. The results show that our model can achieve 98.8% accuracy on MNIST and 95.02% on COVID-19 dataset with very simple network architecture and nearly no reduction in accuracy when compares with the original model. Moreover, the proposed system can make around 120000 predictions per hour on a single PC with low resources. Therefore, they allow high throughput, accurate, and private predictions.","PeriodicalId":6860,"journal":{"name":"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)","volume":"1 1","pages":"1-6"},"PeriodicalIF":0.0000,"publicationDate":"2021-08-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Secure Inference via Deep Learning as a Service without Privacy Leakage\",\"authors\":\"A. Tran, T. Luong, Cong-Chieu Ha, Duc-Tho Hoang, Thi-Luong Tran\",\"doi\":\"10.1109/RIVF51545.2021.9642089\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Cloud computing plays an important role in many applications today. There is a lot of machine learning as a service that provides models for users’ prediction online. However, in many problems which involve healthcare or finances, the privacy of the data that sends from users to the cloud server needs to be considered. Machine learning as a service application does not only require accurate predictions but also ensures data privacy and security. In this paper, we present a novel secure protocol that ensures to compute a scalar product of two real number vectors without revealing the origin of themselves. The scalar product is the most common operation that used in the deep neural network so that our proposed protocol can be used to allow a data owner to send her data to a cloud service that hosts a deep model to get a prediction of input data. We show that the cloud service is capable of applying the neural network to make predictions without knowledge of the user’s original data. We demonstrate our proposed protocol on an image benchmark dataset MNIST and an real life application dataset - COVID-19. The results show that our model can achieve 98.8% accuracy on MNIST and 95.02% on COVID-19 dataset with very simple network architecture and nearly no reduction in accuracy when compares with the original model. Moreover, the proposed system can make around 120000 predictions per hour on a single PC with low resources. Therefore, they allow high throughput, accurate, and private predictions.\",\"PeriodicalId\":6860,\"journal\":{\"name\":\"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)\",\"volume\":\"1 1\",\"pages\":\"1-6\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-08-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/RIVF51545.2021.9642089\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 RIVF International Conference on Computing and Communication Technologies (RIVF)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/RIVF51545.2021.9642089","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Secure Inference via Deep Learning as a Service without Privacy Leakage
Cloud computing plays an important role in many applications today. There is a lot of machine learning as a service that provides models for users’ prediction online. However, in many problems which involve healthcare or finances, the privacy of the data that sends from users to the cloud server needs to be considered. Machine learning as a service application does not only require accurate predictions but also ensures data privacy and security. In this paper, we present a novel secure protocol that ensures to compute a scalar product of two real number vectors without revealing the origin of themselves. The scalar product is the most common operation that used in the deep neural network so that our proposed protocol can be used to allow a data owner to send her data to a cloud service that hosts a deep model to get a prediction of input data. We show that the cloud service is capable of applying the neural network to make predictions without knowledge of the user’s original data. We demonstrate our proposed protocol on an image benchmark dataset MNIST and an real life application dataset - COVID-19. The results show that our model can achieve 98.8% accuracy on MNIST and 95.02% on COVID-19 dataset with very simple network architecture and nearly no reduction in accuracy when compares with the original model. Moreover, the proposed system can make around 120000 predictions per hour on a single PC with low resources. Therefore, they allow high throughput, accurate, and private predictions.