Consider the following scenario: two hospitals, each having sensitive patient data, must compute statistical information about their joint data. Privacy regulations forbid them from sharing data in the clear with any entity. So, can they compute this information while keeping their private data encrypted (or “hidden”) from each other?
Cryptography and specifically, the primitive Secure Multi-Party Computation (MPC), provides an answer to this seemingly impossible task using sophisticated mathematical protocols. However, two big challenges remain:
- Until recently, these cryptographic protocols have only been efficiently executable for simpler functions such as aggregations, linear regressions and so on; while, ideally one would like to execute more complex AI algorithms that could allow the hospitals to learn and predict diseases or health abnormalities.
- Secondly, to execute these protocols, one must express the computation at the low-level of circuits comprising of AND and OR gates, which is both highly cumbersome and inefficient.
The EzPC (or Easy Secure Multi-Party Computation) project at MSR India addresses both these issues:
- We have developed a system, CrypTFlow (opens in new tab), that takes as input TensorFlow (or ONNX) inference code and automatically compiles it into an efficient secure computation protocol for the same code.
- To serve as a backend to our compiler, we have developed new secure multi-party computation protocols for computing various neural network training and prediction algorithms that have orders of magnitude improvement in performance over prior state-of-the-art.
To learn more about how developers can build scalable and efficient MPC protocols for secure inference tasks with absolutely no cryptography expertise using the CrypTFlow system, visit this blog post. For more information, contact the team at ezpc@microsoft.com