Aegis: A Trusted, Automatic and Accurate Verification Framework for Vertical Federated Learning
This addresses security concerns for real-world VFL applications, offering an incremental improvement in verification methods.
The paper tackles the security verification problem in vertical federated learning (VFL) by introducing Aegis, a framework that detects 95% of threat models and provides verification within 84% of the total VFL job time.
Vertical federated learning (VFL) leverages various privacy-preserving algorithms, e.g., homomorphic encryption or secret sharing based SecureBoost, to ensure data privacy. However, these algorithms all require a semi-honest secure definition, which raises concerns in real-world applications. In this paper, we present Aegis, a trusted, automatic, and accurate verification framework to verify the security of VFL jobs. Aegis is separated from local parties to ensure the security of the framework. Furthermore, it automatically adapts to evolving VFL algorithms by defining the VFL job as a finite state machine to uniformly verify different algorithms and reproduce the entire job to provide more accurate verification. We implement and evaluate Aegis with different threat models on financial and medical datasets. Evaluation results show that: 1) Aegis can detect 95% threat models, and 2) it provides fine-grained verification results within 84% of the total VFL job time.