Optimal Obfuscation to Protect Client Privacy in Federated Learning

Authors

Bo Guan, College of Engineering
Shuangqing Wei, Louisiana State University
Amir Houmansadr, Manning College of Information & Computer Sciences
Hossein Pishro-Nik, College of Engineering
Dennis Goeckel, College of Engineering

Document Type

Conference Proceeding

Publication Date

1-1-2024

Abstract

Distributed data processing by clients with reports to a central server is an important component of contemporary discovery systems, e.g., federated learning. Although such client processing is generally considered privacy-enhancing, the client reports may still reveal attributes of the client to an adversary. We examine optimal randomization methods for obfuscating reports to preserve the privacy of client attributes while maintaining utility at the central server. Using total variation to bound the performance of the adversary in breaking privacy, we explore in detail at how privacy might possibly be leaked in the federated learning scenario. We demonstrate the difficulty of enforcing zero leakage of attribute values without significant utility loss followed by consideration of optimal obfuscation with bounded privacy leakage. Numerical results demonstrate the privacy versus utility trade-off and validate the utility approximations employed.

Publication Source (Journal or Book title)

2024 58th Annual Conference on Information Sciences and Systems, CISS 2024

Recommended Citation

Guan, B., Wei, S., Houmansadr, A., Pishro-Nik, H., & Goeckel, D. (2024). Optimal Obfuscation to Protect Client Privacy in Federated Learning. 2024 58th Annual Conference on Information Sciences and Systems, CISS 2024 https://doi.org/10.1109/CISS59072.2024.10480208