Skip to main content
Research

EByFTVeS Fortifies Verifiable Secret Sharing in Privacy-Preserving Machine Learning

A novel Byzantine Fault Tolerant verifiable secret-sharing scheme thwarts adaptive model poisoning attacks, ensuring robust consistency in distributed private machine learning.
September 25, 20253 min

A futuristic white robotic arm segment features a vibrant, glowing blue energy core actively dispersing numerous crystalline blue particles against a dark, minimalist background. The modular design suggests advanced engineering and computational capabilities at its central nexus
The image showcases a complex, abstract device centered around a cluster of brilliant blue, faceted crystals. Radiating outward are sleek white and metallic structures, some sharp and others rounded, alongside a prominent cylindrical component emitting a blue glow

Briefing

Verifiable Secret Sharing (VSS) schemes in Distributed Privacy-preserving Machine Learning (DPML) face significant challenges concerning commitment consistency and high computational and communication burdens. This research addresses these issues by first identifying a novel Adaptive Share Delay Provision (ASDP) attack and its accompanying Customized Model Poisoning Attack (ACuMPA), which exploit vulnerabilities in existing Byzantine Fault Tolerant (BFT)-based VSS systems. The paper then proposes EByFTVeS, an Efficient Byzantine Fault Tolerant-based Verifiable Secret-sharing scheme, which leverages a modified Practical Byzantine Fault Tolerance (PBFT) consensus mechanism to enforce strict consistency and timing constraints on share distribution, thereby effectively countering adaptive model poisoning and enhancing the robustness of DPML architectures.

The image displays a close-up perspective of two interconnected, robust electronic components against a neutral grey background. A prominent translucent blue module, possibly a polymer, houses a brushed metallic block, while an adjacent silver-toned metallic casing features a circular recess and various indentations

Context

Before this research, established VSS-based DPML schemes struggled with two foundational problems ∞ ensuring consistency of cryptographic commitments and managing substantial computational and communication overheads. While BFT systems were introduced to guarantee consistency and improve efficiency in VSS-based secure multiparty computation, this paper reveals that these systems remained vulnerable to sophisticated model poisoning attacks. Specifically, malicious participants could strategically delay broadcasting meticulously crafted shares, leading to inconsistent shares and compromised model integrity.

The image showcases a detailed view of a sophisticated mechanical assembly, featuring metallic and vibrant blue components, partially enveloped by a white, frothy substance. This intricate machinery, with its visible gears and precise connections, suggests a high-tech operational process in action

Analysis

The core mechanism of EByFTVeS centers on a modified four-phase consensus algorithm, building upon the principles of Practical Byzantine Fault Tolerance (PBFT). This scheme introduces a “Pre-Propose” stage where participants independently initiate requests, batch them, and send initial proposals to a primary node. EByFTVeS mandates that all shares and their commitments undergo this consensus mechanism, compelling participants to submit and verify their shares before aggregation.

This process fundamentally differs from previous approaches by preventing malicious dealers from strategically delaying the broadcast of customized, poisoned shares, thereby ensuring share consistency and effectively neutralizing the Adaptive Share Delay Provision (ASDP) attack. The scheme’s design enforces that only consensus-approved shares are utilized for model aggregation, safeguarding the integrity of the distributed machine learning model.

The image showcases a futuristic, abstract machine composed of interconnected white and grey segments, accented by striking blue glowing transparent components. A central spherical module with an intense blue light forms the focal point, suggesting a powerful energy or data transfer system

Parameters

  • Core ConceptVerifiable Secret Sharing (VSS)
  • New System/Protocol ∞ EByFTVeS (Efficient Byzantine Fault Tolerant-based Verifiable Secret-sharing)
  • Key Attack Identified ∞ Adaptive Share Delay Provision (ASDP) and Customized Model Poisoning Attack (ACuMPA)
  • Underlying Consensus ∞ Modified Practical Byzantine Fault Tolerance (PBFT)
  • Application Domain ∞ Distributed Privacy-preserving Machine Learning (DPML)

The image displays a detailed close-up of a futuristic mechanical assembly, characterized by its striking silver metallic and vibrant translucent blue components. Intricate connections of smooth blue conduits and dark cables weave through the polished silver framework, highlighting a complex internal structure

Outlook

This research opens new avenues for enhancing the security and robustness of distributed privacy-preserving machine learning systems. The EByFTVeS scheme offers a foundational building block for future protocols, particularly in federated learning and other privacy-sensitive AI applications where resilience against adaptive adversaries is paramount. Future work will likely involve exploring the integration of EByFTVeS with other cryptographic primitives to further optimize efficiency and expand its applicability across diverse distributed computing environments, ensuring the integrity of shared secrets even under advanced attack vectors.

The EByFTVeS scheme significantly advances the foundational principles of verifiable secret sharing by providing a robust, theoretically sound defense against sophisticated model poisoning attacks in distributed privacy-preserving machine learning.

Signal Acquired from ∞ arxiv.org

Micro Crypto News Feeds

byzantine fault tolerance

Definition ∞ Byzantine Fault Tolerance is a property of a distributed system that allows it to continue operating correctly even when some of its components fail or act maliciously.

model poisoning

Definition ∞ Model poisoning refers to an adversarial attack technique where malicious data is injected into a machine learning model's training dataset.

consensus mechanism

Definition ∞ A 'Consensus Mechanism' is the process by which a distributed network agrees on the validity of transactions and the state of the ledger.

machine learning

Definition ∞ Machine learning is a field of artificial intelligence that enables computer systems to learn from data and improve their performance without explicit programming.

verifiable secret sharing

Definition ∞ Verifiable secret sharing is a cryptographic protocol that partitions a secret into several distinct components, or shares, allocated among multiple participants.

byzantine fault

Definition ∞ A Byzantine fault is a failure in a distributed computer system where components may exhibit arbitrary or malicious behavior.

model

Definition ∞ A model, within the digital asset domain, refers to a conceptual or computational framework used to represent, analyze, or predict aspects of blockchain systems or crypto markets.

practical byzantine

Definition ∞ Practical Byzantine Fault Tolerance (PBFT) is a consensus algorithm designed to achieve agreement among distributed nodes even when some nodes are malicious or faulty.

Tags:

Tags: