Differentially private convolutional neural networks with adaptive gradient descent

Xixi Huang; Jian Guan; Bin Zhang; Shuhan Qi; Xuan Wang; Qing Liao

doi:10.1109/DSC.2019.00105

Differentially private convolutional neural networks with adaptive gradient descent

Xixi Huang
, Jian Guan
, Bin Zhang
, Shuhan Qi
, Xuan Wang
, Qing Liao

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

8 Scopus citations

Abstract

Deep learning achieves remarkable success in the fields of target detection, computer vision, natural language processing, and speech recognition. However, traditional deep learning models may suffer the privacy risk due to some training data involve sensitive information, such as the medical histories, location information and face images. Attackers can exploit the implicit information to recover the sensitive information from the training data. In order to protecting privacy of deep learning model, we develop a novel optimization algorithm called DPAGD-CNN for convolution neural network which cooperates differential privacy technique. Specifically, DPAGD-CNN allocates privacy budgets more carefully in each iteration, rather than assigning a fixed privacy budget per iteration. We theoretically prove that our approach can protect the privacy of training data and it achieves higher classification accuracy under the moderate privacy budget in the MNIST and CIFAR-10 datasets.

Original language	English
Title of host publication	Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	642-648
Number of pages	7
ISBN (Electronic)	9781728145280
DOIs	https://doi.org/10.1109/DSC.2019.00105
State	Published - Jun 2019
Externally published	Yes
Event	4th IEEE International Conference on Data Science in Cyberspace, DSC 2019 - Hangzhou, China Duration: 23 Jun 2019 → 25 Jun 2019

Publication series

Name	Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019
Volume	2019-January

Conference

Conference	4th IEEE International Conference on Data Science in Cyberspace, DSC 2019
Country/Territory	China
City	Hangzhou
Period	23/06/19 → 25/06/19

Keywords

Convolutional neural network
Differential privacy
Gradient descent
Privacy-preserving

Access to Document

10.1109/DSC.2019.00105

Cite this

Huang, X., Guan, J., Zhang, B., Qi, S., Wang, X., & Liao, Q. (2019). Differentially private convolutional neural networks with adaptive gradient descent. In Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019 (pp. 642-648). (Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019; Vol. 2019-January). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/DSC.2019.00105

Huang, Xixi ; Guan, Jian ; Zhang, Bin et al. / Differentially private convolutional neural networks with adaptive gradient descent. Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019. Institute of Electrical and Electronics Engineers Inc., 2019. pp. 642-648 (Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019).

@inproceedings{602a03967228489383bc4585976d8b69,

title = "Differentially private convolutional neural networks with adaptive gradient descent",

abstract = "Deep learning achieves remarkable success in the fields of target detection, computer vision, natural language processing, and speech recognition. However, traditional deep learning models may suffer the privacy risk due to some training data involve sensitive information, such as the medical histories, location information and face images. Attackers can exploit the implicit information to recover the sensitive information from the training data. In order to protecting privacy of deep learning model, we develop a novel optimization algorithm called DPAGD-CNN for convolution neural network which cooperates differential privacy technique. Specifically, DPAGD-CNN allocates privacy budgets more carefully in each iteration, rather than assigning a fixed privacy budget per iteration. We theoretically prove that our approach can protect the privacy of training data and it achieves higher classification accuracy under the moderate privacy budget in the MNIST and CIFAR-10 datasets.",

keywords = "Convolutional neural network, Differential privacy, Gradient descent, Privacy-preserving",

author = "Xixi Huang and Jian Guan and Bin Zhang and Shuhan Qi and Xuan Wang and Qing Liao",

note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 4th IEEE International Conference on Data Science in Cyberspace, DSC 2019 ; Conference date: 23-06-2019 Through 25-06-2019",

year = "2019",

month = jun,

doi = "10.1109/DSC.2019.00105",

language = "英语",

series = "Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "642--648",

booktitle = "Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019",

address = "美国",

}

Huang, X, Guan, J, Zhang, B, Qi, S , Wang, X & Liao, Q 2019, Differentially private convolutional neural networks with adaptive gradient descent. in Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019. Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019, vol. 2019-January, Institute of Electrical and Electronics Engineers Inc., pp. 642-648, 4th IEEE International Conference on Data Science in Cyberspace, DSC 2019, Hangzhou, China, 23/06/19. https://doi.org/10.1109/DSC.2019.00105

Differentially private convolutional neural networks with adaptive gradient descent. / Huang, Xixi; Guan, Jian; Zhang, Bin et al.
Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019. Institute of Electrical and Electronics Engineers Inc., 2019. p. 642-648 (Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019; Vol. 2019-January).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Differentially private convolutional neural networks with adaptive gradient descent

AU - Huang, Xixi

AU - Guan, Jian

AU - Zhang, Bin

AU - Qi, Shuhan

AU - Wang, Xuan

AU - Liao, Qing

PY - 2019/6

Y1 - 2019/6

N2 - Deep learning achieves remarkable success in the fields of target detection, computer vision, natural language processing, and speech recognition. However, traditional deep learning models may suffer the privacy risk due to some training data involve sensitive information, such as the medical histories, location information and face images. Attackers can exploit the implicit information to recover the sensitive information from the training data. In order to protecting privacy of deep learning model, we develop a novel optimization algorithm called DPAGD-CNN for convolution neural network which cooperates differential privacy technique. Specifically, DPAGD-CNN allocates privacy budgets more carefully in each iteration, rather than assigning a fixed privacy budget per iteration. We theoretically prove that our approach can protect the privacy of training data and it achieves higher classification accuracy under the moderate privacy budget in the MNIST and CIFAR-10 datasets.

AB - Deep learning achieves remarkable success in the fields of target detection, computer vision, natural language processing, and speech recognition. However, traditional deep learning models may suffer the privacy risk due to some training data involve sensitive information, such as the medical histories, location information and face images. Attackers can exploit the implicit information to recover the sensitive information from the training data. In order to protecting privacy of deep learning model, we develop a novel optimization algorithm called DPAGD-CNN for convolution neural network which cooperates differential privacy technique. Specifically, DPAGD-CNN allocates privacy budgets more carefully in each iteration, rather than assigning a fixed privacy budget per iteration. We theoretically prove that our approach can protect the privacy of training data and it achieves higher classification accuracy under the moderate privacy budget in the MNIST and CIFAR-10 datasets.

KW - Convolutional neural network

KW - Differential privacy

KW - Gradient descent

KW - Privacy-preserving

UR - https://www.scopus.com/pages/publications/85114777978

U2 - 10.1109/DSC.2019.00105

DO - 10.1109/DSC.2019.00105

M3 - 会议稿件

AN - SCOPUS:85114777978

T3 - Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019

SP - 642

EP - 648

BT - Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 4th IEEE International Conference on Data Science in Cyberspace, DSC 2019

Y2 - 23 June 2019 through 25 June 2019

ER -

Huang X, Guan J, Zhang B, Qi S , Wang X , Liao Q. Differentially private convolutional neural networks with adaptive gradient descent. In Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019. Institute of Electrical and Electronics Engineers Inc. 2019. p. 642-648. (Proceedings - 2019 IEEE 4th International Conference on Data Science in Cyberspace, DSC 2019). doi: 10.1109/DSC.2019.00105

Differentially private convolutional neural networks with adaptive gradient descent

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this