Improving privacy of Federated Learning Generative Adversarial Networks using Intel SGX

Bachelor thesis (2022)

Authors

W. Jehee Electrical Engineering, Mathematics and Computer Science

Contributors

K. Liang Cyber Security - (mentor)

Julián Urbano (graduation committee member)

R. Wang Cyber Security - (mentor)

Faculty

Electrical Engineering, Mathematics and Computer Science, Electrical Engineering, Mathematics and Computer Science

To reference this document use:

http://resolver.tudelft.nl/uuid:d30df7e9-a945-4c29-adb3-2273430a58a2

More Info

expand_more

Published Date

22-06-2022

Language

English

Reuse Rights

Other than for strictly personal use, it is not permitted to download, forward or distribute the text or part of it, without the consent of the author(s) and/or copyright holder(s), unless the work is under an open content license such as Creative Commons.

Faculty

Electrical Engineering, Mathematics and Computer Science

Abstract

Federated learning (FL), although a major privacy improvement over centralized learning, is still vulnerable to privacy leaks. The research presented in this paper provides an analysis of the threats to FL Generative Adversarial Networks. Furthermore, an implementation is provided to better protect the data of the participants with Trusted Execution Environments (TEEs), using Intel Software Guard Extensions. Lastly, the viability of it’s use in practice is evaluated and discussed. The results indicate that this approach protects the data, while not affecting the predicting capabilities of the model, with a noticeable but manageable impact on the training duration.

Files

Final_paper_cse3000.pdf

(pdf | 0.353 Mb)