Skip to main content
SpringerLink
Log in

Resource-Aware DNN Partitioning for Privacy-Sensitive Edge-Cloud Systems

  • Conference paper
  • First Online:
Neural Information Processing (ICONIP 2023)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 14451))

Included in the following conference series:

  • 564 Accesses

Abstract

With recent advances in deep neural networks (DNNs), there is a significant increase in IoT applications leveraging AI with edge-cloud infrastructures. Nevertheless, deploying large DNN models on resource-constrained edge devices is still challenging due to limitations in computation, power, and application-specific privacy requirements. Existing model partitioning methods, which deploy a partial DNN on an edge device while processing the remaining portion of the DNN on the cloud, mainly emphasize communication and power efficiency. However, DNN partitioning based on the privacy requirements and resource budgets of edge devices has not been sufficiently explored in the literature. In this paper, we propose awareSL, a model partitioning framework that splits DNN models based on the computational resources available on edge devices, preserving the privacy of input samples while maintaining high accuracy. In our evaluation of multiple DNN architectures, awareSL effectively identifies the split points that adapt to resource budgets of edge devices. Meanwhile, we demonstrate the privacy-preserving capability of awareSL against existing input reconstruction attacks without sacrificing inference accuracy in image classification tasks.

Supported by National Science Foundation (NSF), Accenture, and Department of Energy (DoE) Award DE-OE0000780, Cyber Resilient Energy Delivery Consortium.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 69.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 89.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Abuadbba, S., et al.: Can we use split learning on 1D CNN models for privacy preserving training? In: Proceedings of the 15th ACM Asia Conference on Computer and Communications Security, pp. 305–318 (2020)

    Google Scholar 

  2. Banitalebi-Dehkordi, A., Vedula, N., Pei, J., Xia, F., Wang, L., Zhang, Y.: Auto-split: a general framework of collaborative edge-cloud AI. In: Proceedings of the 27th ACM SIGKDD Conference on Knowledge Discovery & Data Mining (2021)

    Google Scholar 

  3. Ding, A.: Trustworthy cyber-physical systems via physics-aware and AI-powered security. Ph.D. thesis, Rutgers The State University of New Jersey, School of Graduate Studies (2022)

    Google Scholar 

  4. Ding, A., Murthy, P., Garcia, L., Sun, P., Chan, M., Zonouz, S.: Mini-Me, you complete me! data-driven drone security via DNN-based approximate computing. In: 24th International Symposium on Research in Attacks, Intrusions and Defenses, pp. 428–441 (2021)

    Google Scholar 

  5. Gupta, O., Raskar, R.: Distributed learning of deep neural network over multiple agents. J. Netw. Comput. Appl. 116, 1–8 (2018)

    Article  Google Scholar 

  6. Hassanzadeh, A., Liberman, N.H., Ding, A., Salem, M.B.: Privacy-preserving collaborative machine learning training using distributed executable file packages in an untrusted environment, 29 December 2022. US Patent App. 17/356,447

    Google Scholar 

  7. He, Z., Zhang, T., Lee, R.B.: Model inversion attacks against collaborative inference. In: Proceedings of the 35th Annual Computer Security Applications Conference, pp. 148–162 (2019)

    Google Scholar 

  8. Juvekar, C., Vaikuntanathan, V., Chandrakasan, A.: \(\{\)GAZELLE\(\}\): a low latency framework for secure neural network inference. In: 27th USENIX Security Symposium (USENIX Security 2018), pp. 1651–1669 (2018)

    Google Scholar 

  9. Kang, Y., et al.: Neurosurgeon: collaborative intelligence between the cloud and mobile edge. ACM SIGARCH Comput. Archit. News 45(1), 615–629 (2017)

    Article  Google Scholar 

  10. Khalili, H., Chien, H.J., Hass, A., Sehatbakhsh, N.: Context-aware hybrid encoding for privacy-preserving computation in IoT devices. IEEE Internet Things J. (2023)

    Google Scholar 

  11. Mehta, R., Shorey, R.: DeepSplit: dynamic splitting of collaborative edge-cloud convolutional neural networks. In: 2020 International Conference on COMmunication Systems & NETworkS (COMSNETS), pp. 720–725. IEEE (2020)

    Google Scholar 

  12. Mohammed, T., Joe-Wong, C., Babbar, R., Di Francesco, M.: Distributed inference acceleration with adaptive DNN partitioning and offloading. In: IEEE INFOCOM 2020-IEEE Conference on Computer Communications, pp. 854–863. IEEE (2020)

    Google Scholar 

  13. Pasquini, D., Ateniese, G., Bernaschi, M.: Unleashing the tiger: inference attacks on split learning. In: Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security, pp. 2113–2129 (2021)

    Google Scholar 

  14. Pham, N.D., Abuadbba, A., Gao, Y., Phan, T.K., Chilamkurti, N.: Binarizing split learning for data privacy enhancement and computation reduction. IEEE Trans. Inf. Forensics Secur. 18, 3088–3100 (2023)

    Article  Google Scholar 

  15. Rathee, D., et al.: CrypTFlow2: practical 2-party secure inference. In: Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security (2020)

    Google Scholar 

  16. Shao, J., Zhang, J.: Communication-computation trade-off in resource-constrained edge inference. IEEE Commun. Mag. 58(12), 20–26 (2020)

    Article  Google Scholar 

  17. Shi, C., Chen, L., Shen, C., Song, L., Xu, J.: Privacy-aware edge computing based on adaptive DNN partitioning. In: 2019 IEEE Global Communications Conference (GLOBECOM), pp. 1–6. IEEE (2019)

    Google Scholar 

  18. Székely, G.J., Rizzo, M.L., Bakirov, N.K.: Measuring and testing dependence by correlation of distances. Ann. Stat. 35(6), 2769–2794 (2007)

    Article  MathSciNet  Google Scholar 

  19. Tang, M., et al.: FADE: enabling large-scale federated adversarial training on resource-constrained edge devices. arXiv preprint arXiv:2209.03839 (2022)

  20. Vepakomma, P., Gupta, O., Dubey, A., Raskar, R.: Reducing leakage in distributed deep learning for sensitive health data. arXiv preprint arXiv:1812.00564 (2019)

  21. Vepakomma, P., Gupta, O., Swedish, T., Raskar, R.: Split learning for health: distributed deep learning without sharing raw patient data. arXiv preprint arXiv:1812.00564 (2018)

  22. Yang, Z., Zhang, J., Chang, E.C., Liang, Z.: Neural network inversion in adversarial setting via background knowledge alignment. In: Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security (2019)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Security R&D, Accenture Labs, Accenture, Washington, DC, USA

    Aolin Ding & Amin Hass

  2. Rutgers University, New Brunswick, NJ, USA

    Matthew Chan

  3. University of California, Los Angeles (UCLA), Los Angeles, CA, USA

    Nader Sehatbakhsh

  4. Georgia Institute of Technology, Atlanta, GA, USA

    Saman Zonouz

Authors
  1. Aolin Ding
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Amin Hass
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Matthew Chan
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Nader Sehatbakhsh
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Saman Zonouz
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Saman Zonouz .

Editor information

Editors and Affiliations

  1. Central South University, Changsha, China

    Biao Luo

  2. Chinese Academy of Sciences, Beijing, China

    Long Cheng

  3. Zhejiang University, Hangzhou, China

    Zheng-Guang Wu

  4. Guangdong University of Technology, Guangzhou, China

    Hongyi Li

  5. UNSW Sydney, Sydney, NSW, Australia

    Chaojie Li

Rights and permissions

Reprints and permissions

Copyright information

© 2024 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Ding, A., Hass, A., Chan, M., Sehatbakhsh, N., Zonouz, S. (2024). Resource-Aware DNN Partitioning for Privacy-Sensitive Edge-Cloud Systems. In: Luo, B., Cheng, L., Wu, ZG., Li, H., Li, C. (eds) Neural Information Processing. ICONIP 2023. Lecture Notes in Computer Science, vol 14451. Springer, Singapore. https://doi.org/10.1007/978-981-99-8073-4_15

Download citation

  • DOI: https://doi.org/10.1007/978-981-99-8073-4_15

  • Published:

  • Publisher Name: Springer, Singapore

  • Print ISBN: 978-981-99-8072-7

  • Online ISBN: 978-981-99-8073-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation