Research

EByFTVeS Fortifies Verifiable Secret Sharing in Privacy-Preserving Machine Learning

A novel Byzantine Fault Tolerant verifiable secret-sharing scheme thwarts adaptive model poisoning attacks, ensuring robust consistency in distributed private machine learning.
September 25, 20253 min

A detailed close-up presents a textured, deep blue organic lattice structure partially obscuring polished metallic components. Visible through the openings are sleek silver bars and dark, circular mechanisms, suggesting a sophisticated internal engine
The image displays a high-fidelity rendering of a transparent device, revealing complex internal blue components and a prominent brushed metal surface. The device's outer shell is clear, showcasing the intricate design of its inner workings

Briefing

Verifiable Secret Sharing (VSS) schemes in Distributed Privacy-preserving Machine Learning (DPML) face significant challenges concerning commitment consistency and high computational and communication burdens. This research addresses these issues by first identifying a novel Adaptive Share Delay Provision (ASDP) attack and its accompanying Customized Model Poisoning Attack (ACuMPA), which exploit vulnerabilities in existing Byzantine Fault Tolerant (BFT)-based VSS systems. The paper then proposes EByFTVeS, an Efficient Byzantine Fault Tolerant-based Verifiable Secret-sharing scheme, which leverages a modified Practical Byzantine Fault Tolerance (PBFT) consensus mechanism to enforce strict consistency and timing constraints on share distribution, thereby effectively countering adaptive model poisoning and enhancing the robustness of DPML architectures.

A sleek, symmetrical silver metallic structure, featuring a vibrant blue, multi-faceted central core, is enveloped by dynamic, translucent blue liquid or energy. The composition creates a sense of powerful, high-tech operation amidst a fluid environment

Context

Before this research, established VSS-based DPML schemes struggled with two foundational problems → ensuring consistency of cryptographic commitments and managing substantial computational and communication overheads. While BFT systems were introduced to guarantee consistency and improve efficiency in VSS-based secure multiparty computation, this paper reveals that these systems remained vulnerable to sophisticated model poisoning attacks. Specifically, malicious participants could strategically delay broadcasting meticulously crafted shares, leading to inconsistent shares and compromised model integrity.

A futuristic white robotic arm segment features a vibrant, glowing blue energy core actively dispersing numerous crystalline blue particles against a dark, minimalist background. The modular design suggests advanced engineering and computational capabilities at its central nexus

Analysis

The core mechanism of EByFTVeS centers on a modified four-phase consensus algorithm, building upon the principles of Practical Byzantine Fault Tolerance (PBFT). This scheme introduces a “Pre-Propose” stage where participants independently initiate requests, batch them, and send initial proposals to a primary node. EByFTVeS mandates that all shares and their commitments undergo this consensus mechanism, compelling participants to submit and verify their shares before aggregation.

This process fundamentally differs from previous approaches by preventing malicious dealers from strategically delaying the broadcast of customized, poisoned shares, thereby ensuring share consistency and effectively neutralizing the Adaptive Share Delay Provision (ASDP) attack. The scheme’s design enforces that only consensus-approved shares are utilized for model aggregation, safeguarding the integrity of the distributed machine learning model.

A metallic, cubic device with transparent blue accents and a white spherical component is partially submerged in a reflective, rippled liquid, while a vibrant blue, textured, frosty substance envelops one side. The object appears to be a sophisticated hardware wallet, designed for ultimate digital asset custody through advanced cold storage mechanisms

Parameters

  • Core ConceptVerifiable Secret Sharing (VSS)
  • New System/Protocol → EByFTVeS (Efficient Byzantine Fault Tolerant-based Verifiable Secret-sharing)
  • Key Attack Identified → Adaptive Share Delay Provision (ASDP) and Customized Model Poisoning Attack (ACuMPA)
  • Underlying Consensus → Modified Practical Byzantine Fault Tolerance (PBFT)
  • Application Domain → Distributed Privacy-preserving Machine Learning (DPML)

A smooth, deep blue, semi-translucent abstract object is depicted, featuring multiple large, organic openings that reveal a darker blue internal structure. A metallic, silver-toned component with visible fasteners is integrated into the lower left section of the object

Outlook

This research opens new avenues for enhancing the security and robustness of distributed privacy-preserving machine learning systems. The EByFTVeS scheme offers a foundational building block for future protocols, particularly in federated learning and other privacy-sensitive AI applications where resilience against adaptive adversaries is paramount. Future work will likely involve exploring the integration of EByFTVeS with other cryptographic primitives to further optimize efficiency and expand its applicability across diverse distributed computing environments, ensuring the integrity of shared secrets even under advanced attack vectors.

The EByFTVeS scheme significantly advances the foundational principles of verifiable secret sharing by providing a robust, theoretically sound defense against sophisticated model poisoning attacks in distributed privacy-preserving machine learning.

Signal Acquired from → arxiv.org

Micro Crypto News Feeds

byzantine fault tolerance

Definition ∞ Byzantine Fault Tolerance is a property of a distributed system that allows it to continue operating correctly even when some of its components fail or act maliciously.

model poisoning

Definition ∞ Model poisoning refers to an adversarial attack technique where malicious data is injected into a machine learning model's training dataset.

consensus mechanism

Definition ∞ A 'Consensus Mechanism' is the process by which a distributed network agrees on the validity of transactions and the state of the ledger.

machine learning

Definition ∞ Machine learning is a field of artificial intelligence that enables computer systems to learn from data and improve their performance without explicit programming.

verifiable secret sharing

Definition ∞ Verifiable secret sharing is a cryptographic protocol that partitions a secret into several distinct components, or shares, allocated among multiple participants.

byzantine fault

Definition ∞ A Byzantine fault is a failure in a distributed computer system where components may exhibit arbitrary or malicious behavior.

model

Definition ∞ A model, within the digital asset domain, refers to a conceptual or computational framework used to represent, analyze, or predict aspects of blockchain systems or crypto markets.

practical byzantine

Definition ∞ Practical Byzantine Fault Tolerance (PBFT) is a consensus algorithm designed to achieve agreement among distributed nodes even when some nodes are malicious or faulty.

Tags:

Tags: