Skip to content
/ PrivDL Public

code for the paper: PRIVACY-PRESERVING DEEP LEARNING: LEVERAGING DEFORMABLE OPERATORS FOR SECURE TASK LEARNING

factral.co/privdl/
6 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Factral/PrivDL

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
checkpoints
checkpoints
 
 
experiments
experiments
 
 
models
models
 
 
operators
operators
 
 
static
static
 
 
utils
utils
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
requirements.txt
requirements.txt
 
 

Repository files navigation

Privacy-Preserving Deep Learning Using Deformable Operators for Secure Task Learning

Description of the image

Fabian Perez · Jhon Lopez · Henry Arguello

ICASSP 2024 Paper

Oveview

In the era of cloud computing and data-driven applications, it is crucial to protect sensitive information to maintain data privacy, ensuring truly reliable systems. As a result, preserving privacy in deep learning systems has become a critical concern. Existing methods for privacy preservation rely on image encryption or perceptual transformation approaches.

However, they often suffer from reduced task performance and high computational costs. To address these challenges, we propose a novel Privacy-Preserving framework that uses a set of deformable operators for secure task learning. Our method involves shuffling pixels during the analog-to-digital conversion process to generate visually protected data. Those are then fed into a well-known network enhanced with deformable operators. Using our approach, users can achieve equivalent performance to original images without additional training using a secret key.

Moreover, our method enables access control against unauthorized users. Experimental results demonstrate the efficacy of our approach, showcasing its potential in cloud-based scenarios and privacy-sensitive applications.

Results

To validate the privacy protection of our approach, we evaluated the performance of the shuffled images for the classification task on the CIFAR-10 dataset

Experiment Accuracy (%)
Non-privacy 94.1
Pre-trained 11.7
Fine-tuning 57.6
our method with key 94.1
our method without key 11.8

Also, we evaluated our per-formance of the proposed approach using a PreResNet-110 adapted to our method compared to state-of-the-art techniques for private image classification.

Method Model # Parameters (10^6) Acc
ELE Shakedrop 29.31 83.06
EtC Shakedrop 5.35 89.09
PrivConv ConvMixer-512/16 5.35 92.65
Ours PreResNet-110 1.70 95.06

Code Structure Explanation

The codebase is structured as follows:

  • checkpoints/: This directory is used to store model checkpoints during training

  • experiments/: Contains subdirectories for different experiments like classification and segmentation.

    • classification/: Includes configuration files (conf.py), inference script (inference.py), and training and testing scripts for CIFAR-10 dataset (train_cifar10.py, test_cifar10.py).
    • segmentation/: Includes the same files as the classification directory but for segmentation tasks. will be added soon

  • models/: Contains model definitions.

    • vgg.py: Standard VGG model.
    • vgg_deformable.py: VGG model with deformable layers.

  • operators/: Includes custom layers or functions like deformable pooling, offset calculations, and scramblers.

    • deformable_pooling.py: Deformable pooling layer.
    • offset.py: Offset calculation for deformable layers.
    • scrambler.py: Pixel scrambler for images

  • utils/: Utility functions for training and other tasks.

    • utils.py: General utility functions.
    • utils_train.py: Utilities specific to training processes.

Installation

To set up the environment for running the experiments, please follow these steps:

git clone https://github.com/Factral/PrivDL
cd PrivDL
pip install -r requirements.txt

Usage

To train a model on classification, run the following command

Non-privacy training

python3 train_cifar10.py -net "vgg16" -dataset "cifar10" -epochs 200 -save_weights -gpu

Privacy training

python3 train_cifar10.py -net "vgg16" -dataset "cifar10" -epochs 200 -permute -save_weights -gpu

To test a model on classification, run the following command:

Non-privacy testing

python3 test_cifar10.py -net "vgg16" -dataset "cifar10" -b 64 -seed 1312 -weights 'path-to-weights'

Privacy testing

python3 test_cifar10.py -net "vgg16_permuted" -dataset "cifar10" -permute -b 64 -seed 1312 -weights 'path-to-weights'

To run inference on a single image, run the following command:

Non-privacy inference

python3 inference.py -net "vgg16" -weights 'path-to-weights' -image 'path-to-image'

privacy inference

python3 inference.py -net "vgg16_permuted" -permute -weights 'path-to-weights' -image 'path-to-image'

Citation

If you find this work useful, please consider citing our paper:

@INPROCEEDINGS{10446218,
  author={Perez, Fabian and Lopez, Jhon and Arguello, Henry},
  booktitle={ICASSP 2024 - 2024 IEEE International Conference on Acoustics, Speech and Signal Processing (ICASSP)}, 
  title={Privacy-Preserving Deep Learning Using Deformable Operators for Secure Task Learning}, 
  year={2024},
  volume={},
  number={},
  pages={5980-5984},
  keywords={Deep learning;Training;Privacy;Cloud computing;Encryption;Computational efficiency;Task analysis;Computational Imaging;Deformable Operators;Image Privacy;Image Encryption},
  doi={10.1109/ICASSP48485.2024.10446218}}

About

code for the paper: PRIVACY-PRESERVING DEEP LEARNING: LEVERAGING DEFORMABLE OPERATORS FOR SECURE TASK LEARNING

factral.co/PrivDL/

Topics

privacy deep-learning shuffle icassp privacy-preserving privacy-deep-learning privacy-preserving-deep-learning

Resources

Readme
Activity

Stars

6 stars

Watchers

1 watching

Forks

0 forks
Report repository

Languages