Pencil: Private and Extensible Collaborative Learning without the Non-Colluding Assumption

no code implementations • 17 Mar 2024 • Xuanqi Liu, Zhuotao Liu, Qi Li, Ke Xu, Mingwei Xu

In this paper, we present Pencil, the first private training framework for collaborative learning that simultaneously offers data privacy, model privacy, and extensibility to multiple data providers, without relying on the non-colluding assumption.

Federated Learning Privacy Preserving

Brain-on-Switch: Towards Advanced Intelligent Network Data Plane via NN-Driven Traffic Analysis at Line-Speed

1 code implementation • 17 Mar 2024 • Jinzhu Yan, Haotian Xu, Zhuotao Liu, Qi Li, Ke Xu, Mingwei Xu, Jianping Wu

Many types of NNs (such as Recurrent Neural Network (RNN), and transformers) that are designed to work with sequential data have advantages over tree-based models, because they can take raw network data as input without complex feature computations on the fly.

Aggregation Weighting of Federated Learning via Generalization Bound Estimation

no code implementations • 10 Nov 2023 • Mingwei Xu, Xiaofeng Cao, Ivor W. Tsang, James T. Kwok

In this paper, we replace the aforementioned weighting method with a new strategy that considers the generalization bounds of each local model.

Federated Learning Generalization Bounds

FERN: Leveraging Graph Attention Networks for Failure Evaluation and Robust Network Design

no code implementations • 30 May 2023 • Chenyi Liu, Vaneet Aggarwal, Tian Lan, Nan Geng, Yuan Yang, Mingwei Xu, Qing Li

By providing a neural network function approximation of this common kernel using graph attention networks, we develop a unified learning-based framework, FERN, for scalable Failure Evaluation and Robust Network design.

Graph Attention

A Hard Label Black-box Adversarial Attack Against Graph Neural Networks

no code implementations • 21 Aug 2021 • Jiaming Mu, Binghui Wang, Qi Li, Kun Sun, Mingwei Xu, Zhuotao Liu

We also evaluate the effectiveness of our attack under two defenses: one is well-designed adversarial graph detector and the other is that the target GNN model itself is equipped with a defense to prevent adversarial graph generation.

Adversarial Attack Graph Classification +2

Data Poisoning Attacks to Deep Learning Based Recommender Systems

no code implementations • 7 Jan 2021 • Hai Huang, Jiaming Mu, Neil Zhenqiang Gong, Qi Li, Bin Liu, Mingwei Xu

Specifically, we formulate our attack as an optimization problem, such that the injected ratings would maximize the number of normal users to whom the target items are recommended.

Data Poisoning Recommendation Systems

Interpreting Deep Learning-Based Networking Systems

2 code implementations • 9 Oct 2019 • Zili Meng, Minhu Wang, Jiasong Bai, Mingwei Xu, Hongzi Mao, Hongxin Hu

While many deep learning (DL)-based networking systems have demonstrated superior performance, the underlying Deep Neural Networks (DNNs) remain blackboxes and stay uninterpretable for network operators.