Cryptology ePrint Archive: Report 2017/1190

EPIC: Efficient Private Image Classification (or: Learning from the Masters)

Eleftheria Makri and Dragos Rotaru and Nigel P. Smart and Frederik Vercauteren

Abstract: Outsourcing an image classification task raises privacy concerns, both from the image provider's perspective, who wishes to keep their images confidential, and from the classification algorithm provider's perspective, who wishes to protect the intellectual property of their classifier.

We propose EPIC, an efficient private image classification system based on support vector machine (SVM) learning, which is secure against malicious adversaries. The novelty of EPIC is that it builds upon transfer learning techniques known from the Machine Learning (ML) literature and minimizes the load on the privacy-preserving part.

Our solution is based on Secure Multiparty Computation (MPC), it is 34 times faster than Gazelle (USENIX 2018) --the state-of-the-art in private image classification-- and it improves the total communication cost by 50 times, while achieving a 7\% higher accuracy on CIFAR-10 dataset. When benchmarked for performance, while maintaining the same CIFAR-10 accuracy as Gazelle, EPIC is 700 times faster and the communication cost is reduced by 500 times.

Category / Keywords: multiparty computation, machine learning, transfer learning

Original Publication (with minor differences): CT-RSA 2019

Date: received 8 Dec 2017, last revised 2 Dec 2018

Contact author: dragos rotaru at esat kuleuven be,nigel smart@kuleuven be,frederik vercauteren@kuleuven be,eleftheria makri@esat kuleuven be

Available format(s): PDF | BibTeX Citation

Note: small changes

Version: 20181202:140816 (All versions of this report)

Short URL: ia.cr/2017/1190


[ Cryptology ePrint archive ]