Privacy-preserving and backdoors defending: towards federated learning in medical settings

Abstract

In medical settings, data can be collected from heterogeneous sources, such as X-ray machines, blood exams, wearables, and Internet of Things devices. Artificial Intelligence (AI) strategies, such as Deep Learning (DL), can combine these data to discover patterns and anomalies. DL is specialized in classifying medical images to assist physicians in diagnosis. Even though AI can enhance the capacity of computational systems to solve complex problems, it can present security and privacy issues. Privacy concerns have gained attention in the last few years due to privacy regulations and security awareness against backdoor attacks that corrupt models. Federated Learning (FL) is a strategy that raises the privacy of the DL models because they train the models without sharing the sensitive dataset between the clients. However, FL can suffer from backdoor attacks and most robust privacy attacks, such as Membership Interference Attacks. We intend to develop new techniques to improve the privacy of the systems and strategies to defend against backdoors. The internship will be conducted at the University of Florida (UF), USA, supervised by Prof. Dr. Sumi Helal. The objectives of this project cover the interests of both the FAPESP thematic project ``Mining, Index and Visualizing Big Data in Clinical Decision Support Systems" -- (MIVisBD) and research carried out at UF by Prof. Helal.