Privacy-Preserving and Fairness-Aware Federated Learning for Critical Infrastructure Protection and Resilience

Zhang, Y; Sun, R; Shen, L; Bai, G; Xue, M; Meng, MH; Li, X; Ko, R; Nepal, S

Privacy-Preserving and Fairness-Aware Federated Learning for Critical Infrastructure Protection and Resilience

Zhang, Y

Sun, R Shen, L Bai, G Xue, M Meng, MH Li, X Ko, R Nepal, S

Permalink

Publisher:: Association for Computing Machinery (ACM)
Publication Type:: Conference Proceeding
Citation:: WWW 2024 - Proceedings of the ACM Web Conference, 2024, pp. 2986-2997
Issue Date:: 2024-05-13

Open Access

Copyright Clearance Process

Recently Added
In Progress
Open Access

This item is open access.

Download Published versionAdobe PDF (2.84 MB)

View on publisher's site

View statistics

Full metadata record

Field	Value	Language
dc.contributor.author	Zhang, Y https://orcid.org/0000-0001-5611-3483
dc.contributor.author	Sun, R
dc.contributor.author	Shen, L
dc.contributor.author	Bai, G
dc.contributor.author	Xue, M
dc.contributor.author	Meng, MH
dc.contributor.author	Li, X
dc.contributor.author	Ko, R
dc.contributor.author	Nepal, S
dc.date.accessioned	2025-01-28T23:01:43Z
dc.date.available	2025-01-28T23:01:43Z
dc.date.issued	2024-05-13
dc.identifier.citation	WWW 2024 - Proceedings of the ACM Web Conference, 2024, pp. 2986-2997
dc.identifier.uri	http://hdl.handle.net/10453/184552
dc.description.abstract	The energy industry is undergoing significant transformations as it strives to achieve net-zero emissions and future-proof its infrastructure, where every participant in the power grid has the potential to both consume and produce energy resources. Federated learning - which enables multiple participants to collaboratively train a model without aggregating the training data - becomes a viable technology. However, the global model parameters that have to be shared for optimization are still susceptible to training data leakage. In this work, we propose confined gradient descent (CGD) that enhances the privacy of federated learning by eliminating the sharing of global model parameters. CGD exploits the fact that a gradient descent optimization can start with a set of discrete points and converges to another set in the neighborhood of the global minimum of the objective function. As such, each participant can independently initiate its own private global model∼(referred to as the confined model ), and collaboratively learn it towards the optimum. The updates to their own models are worked out in a secure collaborative way during the training process.In such a manner, CGD retains the ability of learning from distributed data but greatly diminishes information sharing. Such a strategy also allows the proprietary confined models to adapt to the heterogeneity in federated learning, providing inherent benefits of fairness. We theoretically and empirically demonstrate that decentralized CGD øne provides a stronger differential privacy (DP) protection; \two is robust against the state-of-the-art poisoning privacy attacks; þree results in bounded fairness guarantee among participants; and \four provides high test accuracy (comparable with centralized learning) with a bounded convergence rate over four real-world datasets.
dc.language	en
dc.publisher	Association for Computing Machinery (ACM)
dc.relation.ispartof	WWW 2024 - Proceedings of the ACM Web Conference
dc.relation.ispartof	Proceedings of the ACM Web Conference 2024
dc.relation.isbasedon	10.1145/3589334.3645545
dc.rights	info:eu-repo/semantics/openAccess
dc.title	Privacy-Preserving and Fairness-Aware Federated Learning for Critical Infrastructure Protection and Resilience
dc.type	Conference Proceeding
pubs.organisational-group	University of Technology Sydney
pubs.organisational-group	University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	University of Technology Sydney/Faculty of Engineering and Information Technology/School of Computer Science
utslib.copyright.status	open_access	*
dc.rights.license	This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License (CC BY-NC-SA 4.0). To view a copy of this license, visit https://creativecommons.org/licenses/by-nc-sa/4.0/
dc.date.updated	2025-01-28T23:01:42Z
pubs.publication-status	Published

Abstract:

The energy industry is undergoing significant transformations as it strives to achieve net-zero emissions and future-proof its infrastructure, where every participant in the power grid has the potential to both consume and produce energy resources. Federated learning - which enables multiple participants to collaboratively train a model without aggregating the training data - becomes a viable technology. However, the global model parameters that have to be shared for optimization are still susceptible to training data leakage. In this work, we propose confined gradient descent (CGD) that enhances the privacy of federated learning by eliminating the sharing of global model parameters. CGD exploits the fact that a gradient descent optimization can start with a set of discrete points and converges to another set in the neighborhood of the global minimum of the objective function. As such, each participant can independently initiate its own private global model∼(referred to as the confined model ), and collaboratively learn it towards the optimum. The updates to their own models are worked out in a secure collaborative way during the training process.In such a manner, CGD retains the ability of learning from distributed data but greatly diminishes information sharing. Such a strategy also allows the proprietary confined models to adapt to the heterogeneity in federated learning, providing inherent benefits of fairness. We theoretically and empirically demonstrate that decentralized CGD øne provides a stronger differential privacy (DP) protection; \two is robust against the state-of-the-art poisoning privacy attacks; þree results in bounded fairness guarantee among participants; and \four provides high test accuracy (comparable with centralized learning) with a bounded convergence rate over four real-world datasets.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/184552