Task Runner API: Secure Aggregation #1346
Conversation
Signed-off-by: Pant, Akshay <[email protected]>
Signed-off-by: Pant, Akshay <[email protected]>
… tensor db Signed-off-by: Pant, Akshay <[email protected]>
…allbacks at the component Signed-off-by: Pant, Akshay <[email protected]>
…laborators to handle secure aggregation setup phase Signed-off-by: Pant, Akshay <[email protected]>
…o task-runner-api/secure-aggregation
…o task-runner-api/secure-aggregation
Signed-off-by: Pant, Akshay <[email protected]>
Signed-off-by: Pant, Akshay <[email protected]>
| @@ -94,6 +94,7 @@ def run(self): | |||
| 'tensorboardX', | |||
| 'protobuf>=4.22,<6.0.0', | |||
| 'grpcio>=1.56.2,<1.66.0', | |||
| 'pycryptodome' | |||
There was a problem hiding this comment.
If we keep this as setup, even when secure aggregation not needed by customer, they need to install it.
| @@ -0,0 +1,154 @@ | |||
| # Copyright 2020-2025 Intel Corporation | |||
There was a problem hiding this comment.
There is cryptography package in openfl. Isn't secagg packages more suitable inside cryptography.
Signed-off-by: Pant, Akshay <[email protected]>
Signed-off-by: Pant, Akshay <[email protected]>
Signed-off-by: Pant, Akshay <[email protected]>
…o task-runner-api/secure-aggregation
Signed-off-by: Pant, Akshay <[email protected]>
Signed-off-by: Pant, Akshay <[email protected]>
Signed-off-by: Pant, Akshay <[email protected]>
…o task-runner-api/secure-aggregation
Signed-off-by: Pant, Akshay <[email protected]>
theakshaypant
requested review from
MasterSkepticista,
kta-intel,
psfoley,
teoparvanov,
aayushgaintel,
gbikkiintel and
pasokan-intel
as code owners
theakshaypant
requested review from
rahulga1,
rajithkrishnegowda,
ishaileshpant,
tanwarsh and
srikanthenugul
as code owners
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| shape (Tuple): Shape of the numpy array to be generated. | ||
|
|
||
| Returns: | ||
| np.ndarray: array with pseudo-randomly generated numbers. |
Check notice
Code scanning / Bandit
Standard pseudo-random generators are not suitable for security/cryptographic purposes. Note
Signed-off-by: Pant, Akshay <[email protected]>
| """ | ||
| super().__init__(batch_size, **kwargs) | ||
|
|
||
| # TODO: We should be downloading the dataset shard into a directory |
There was a problem hiding this comment.
you can remove this comment - refer #1333 (comment)
| @@ -168,6 +175,18 @@ def set_available_devices(self, cuda: Tuple[str] = ()): | |||
| def run(self): | |||
| """Run the collaborator.""" | |||
| # Experiment begin | |||
|
|
|||
| # FIXME: Not working when added to callbacks on line 157. | |||
There was a problem hiding this comment.
@MasterSkepticista Need your input on this.
| @@ -0,0 +1,118 @@ | |||
| # Copyright (C) 2020-2021 Intel Corporation | |||
There was a problem hiding this comment.
is it not possible to refer the original file, if there is no sec_agg specific changes in here?
If not possible, we can change name to utils.py, mnist is already in the path.
There was a problem hiding this comment.
Have followed the same format as all other workspaces where the funnction definition is in all of them.
Changed file name in 1579c05.
| @@ -168,6 +175,18 @@ def set_available_devices(self, cuda: Tuple[str] = ()): | |||
| def run(self): | |||
| """Run the collaborator.""" | |||
| # Experiment begin | |||
|
|
|||
| # FIXME: Not working when added to callbacks on line 157. | |||
There was a problem hiding this comment.
please fix this or remove the comment if no longer required.
There was a problem hiding this comment.
Need input on this. Refer #1346 (comment).
| tensor_name = named_tensor.name | ||
| # Check if all collaborators have sent their data for the | ||
| # current key. | ||
| all_collaborators_sent = self.secagg.wait_for_all_collaborators(tensor_name) |
There was a problem hiding this comment.
in case of staggler, will it hang indefinitely?
There was a problem hiding this comment.
There is no wait in this method. Only checks if all collaborators have shared "tensor_name", will rename it appropriately.
Signed-off-by: Pant, Akshay <[email protected]>
…al for agg function Signed-off-by: Pant, Akshay <[email protected]>
Signed-off-by: Pant, Akshay <[email protected]>
|
@theakshaypant are we are storing keys and cipher text right in persistent storage? |
Introduction
This PR introduces secure aggregation to Task Runner API.
Would specially apprecaite comments on how tensors are exchanged between the participants.
Changes
on_experiment_begin.CollaboratorSecAggcallback.openfl.utilities.secagg.Setupwhcih performs "aggregation" of the tensors sent by the collaborators..send_local_task_resultsis modfied to save secure aggregation setup stage tensors to aggregator tensor db.SecureAggregationis used for "metric"s when enabled instead ofWeightedAverage.secure_aggregation: boolflag to the plan underaggregator.settingscollaborator.settingsNOTE
Testing
Aggregator logs (with extra debug prints)
Collaborator 1 logs
Collaborator 2 logs
