Skip to content
/ Secure-Multi-Party-Computation Public

Collaboration project with Criteo in order to evaluate the relevance of the Secure Multiparty Computation (sMPC) in the context of a Federative Learning

2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

WilliamJonas08/Secure-Multi-Party-Computation

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

41 Commits
resources
resources
 
 
results
results
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
config.py
config.py
 
 
greedyMouse.py
greedyMouse.py
 
 
qlearn.py
qlearn.py
 
 
results.py
results.py
 
 
setup.py
setup.py
 
 
setup.pyc
setup.pyc
 
 

Repository files navigation

Secure-MultiParty-Computation

This project has been realized in the frame of my Artificial Intelligence and Machine Learning master project.

Criteo is a French ad retargeting company with revenues of €2 billion, serving over 4 billion ads every day.

The objective of the project (research oriented) is to evaluate the relevance, for the Machine Learning domain, of the cryptographic method called Secure Multiparty Computation (sMPC) in the context of a Federative Learning method.

Task: We first tried this method on a reinforcement learning algorithm where a mouse is trained to survive as long as possible. Then we tried it on a MNIST classification task.

We are comparing this new method to classic Federated Learning through some questions:

  • Does this method increase the accuracy of the models?
  • Does this method consume less energy? (data not exported to the cloud).
  • What are the limitations of this method?
  • Does it allow to increase data privacy ?

We are trying this new method which is supposed to be more secure because a lot of research has shown that updates received from users (using a traditional Federated Learning aggregation method) leak information about the underlying data samples. Here are a few of them: Exploiting unintended feature leakage in collaborative learning (in SP2019), Deep leakage from gradients (in NeurIPS2019), Beyond Inferring Class Representatives: User-Level Privacy Leakage From Federated Learning (in INFOCOM2019)

We rely on the open-source library Crypten. It is a framework built on PyTorch to facilitate secure and privacy-preserving machine learning search. Crypten implements the sMPC method, which encrypts information by splitting the data between multiple parties, each of which can perform computations on their share but are not able to read the original data.

📌 The strategy used is to confront the following 3 models:

  • Q-Learning Bandits Algorithm
  • Q-Learning algorithm trained via Federated Learning
  • Q-Learning algorithm trained via Federated Learning with sMPC method

Reproduce it yourself

git clone https://github.com/WilliamJonas08/Secure-Multi-Party-Computation
cd Secure-Multi-Party-Computation
python greedyMouse.py

The simulation parameters can be modified from the config.py file where:

  • number_of_worlds : number of mouse/worlds generated in parallel
  • learning_mode_index : learning type among Tabular Q-Learning / Deep QLearning / Federated Deep QLearning
  • MAX_AGE : number of iterations

Project Results

Our project was very short in time and we didn't have access to a powerful calculation system. We didn't have the time to run all the learning methods on 300k iterations where we should see the learning effect of the mouse (at least in tabular Q-Learning mode). Your can find below the results given by 20k iterations where it's normal to don't see the learning effect.

Hence, in order to display some results on time, we decided to adapt the task to be done and we implemented a simple MNIST classification task. You can find below the results on the first iterations.

You can check out the report for further details about the project

Possible improvements

  • Reducing the number of agents interacting throught sMPC might accelerate calculations (create pre-aggregation step)
  • Find better Q-Learning regression model architecture

Original QLearningMouse (tabular Q-Learning)

QLearningMouse is a small cat-mouse-cheese game based on Q-Learning. The original version is by vmayoral: basic_reinforcement_learning:tutorial1, I reconstructed his code to make the game more configurable, and what different most is that I use breadth-first-search(BFS) when cat chasing the AI mouse, so the cat looks much more brutal.

About the game

Cat always chase the mouse in the shortest path, however the mouse first does not know the danger of being eaten.

  • Mouse win when eating the cheese and earns rewards value of 50, then a new cheese will be produced in a random grid.
  • cat win when eating the mouse, the latter will gain rewards value of -100 when dead. Then it will relive in a random grid.

Algorithm

The basic algorithm of Q-Learning is:

Q(s, a) += alpha * (reward(s,a) + gamma * max(Q(s', a') - Q(s,a))
#UPDATE TO CONTEXTUAL BANDITS

alpha is the learning rate. gamma is the value of the future reward. It use the best next choice of utility in later state to update the former state.

Learn more about Q-Learning:

  1. The Markov Decision Problem : Value Iteration and Policy Iteration
  2. ARTIFICIAL INTELLIGENCE FOUNDATIONS OF COMPUTATIONAL AGENTS : 11.3.3 Q-learning

Example

Below we present a mouse player after 300 generations of reinforcement learning:

  • blue is for mouse.
  • black is for cat.
  • orange is for cheese.

After 339300 generations:

About

Collaboration project with Criteo in order to evaluate the relevance of the Secure Multiparty Computation (sMPC) in the context of a Federative Learning

Topics

machine-learning reinforcement-learning federated-learning secure-multiparty-computation

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages