PuSH - Publikationsserver des Helmholtz Zentrums München

Export: TXT Text RIS Endnote (RIS) BIB BibTeX
Nasirigerdeh, R. ; Torkzadehmahani, J.* ; Rueckert, D.* ; Kaissis, G.

Kernel Normalized Convolutional Networks for Privacy-Preserving Machine Learning.

In: (Proceedings - 2023 IEEE Conference on Secure and Trustworthy Machine Learning, SaTML 2023). 10662 Los Vaqueros Circle, Po Box 3014, Los Alamitos, Ca 90720-1264 Usa: Ieee Computer Soc, 2023. 107-118 (Proceedings - 2023 IEEE Conference on Secure and Trustworthy Machine Learning, SaTML 2023)
DOI
Normalization is an important but understudied challenge in privacy-related application domains such as federated learning (FL), differential privacy (DP), and differentially private federated learning (DP-FL). While the unsuitability of batch normalization for these domains has already been shown, the impact of other normalization methods on the performance of federated or differentially private models is not well-known. To address this, we draw a performance comparison among layer normalization (LayerNorm), group normalization (GroupNorm), and the recently proposed kernel normalization (KernelNorm) in FL, DP, and DP-FL settings. Our results indicate LayerNorm and GroupNorm provide no performance gain compared to the baseline (i.e. no normalization) for shallow models in FL and DP. They, on the other hand, considerably enhance the performance of shallow models in DP-FL and deeper models in FL and DP. KernelNorm, moreover, significantly outperforms its competitors in terms of accuracy and convergence rate (or communication efficiency) for both shallow and deeper models in all considered learning environments. Given these key observations, we propose a kernel normalized ResNet architecture called KNResNet-13 for differentially private learning. Using the proposed architecture, we provide new state-of-the-art accuracy values on the CIFAR-10 and Imagenette datasets, when trained from scratch.
Altmetric
Tags
Anmerkungen
Besondere Publikation
Auf Hompepage verbergern

Zusatzinfos bearbeiten
Eigene Tags bearbeiten
Privat
Eigene Anmerkung bearbeiten
Privat
Auf Publikationslisten für
Homepage nicht anzeigen
Als besondere Publikation
markieren
Publikationstyp Artikel: Konferenzbeitrag
Schlagwörter Batch Normalization ; Differential Privacy ; Federated Learning ; Group Normalization ; Kernel Normalization
Sprache englisch
Veröffentlichungsjahr 2023
HGF-Berichtsjahr 2023
ISSN (print) / ISBN 9781665462990
Konferenztitel Proceedings - 2023 IEEE Conference on Secure and Trustworthy Machine Learning, SaTML 2023
Quellenangaben Band: , Heft: , Seiten: 107-118 Artikelnummer: , Supplement: ,
Verlag Ieee Computer Soc
Verlagsort 10662 Los Vaqueros Circle, Po Box 3014, Los Alamitos, Ca 90720-1264 Usa
Institut(e) Helmholtz Artifical Intelligence Cooperation Unit (HAICU)
Institute for Machine Learning in Biomed Imaging (IML)
POF Topic(s) 30205 - Bioengineering and Digital Health
30505 - New Technologies for Biomedical Discoveries
Forschungsfeld(er) Enabling and Novel Technologies
PSP-Element(e) G-530014-001
G-507100-001
DOI 10.1109/SaTML54575.2023.00016
WOS ID 001012311500006
Scopus ID 85159404751
Erfassungsdatum 2023-10-18
[➜Korrektur melden]