Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement secure boost scheme phase 2 - enable secure xgboost via processor interface #10124

Open
wants to merge 56 commits into
base: vertical-federated-learning
Choose a base branch
from
Open

Implement secure boost scheme phase 2 - enable secure xgboost via processor interface #10124

wants to merge 56 commits into from

Conversation

ZiyueXu77
Copy link

Add extensions to the vertical pipeline implemented in phase 1 to call Processor interface at proper locations to enable secure features:

  • Before broadcasting g/h pairs, call interface to prepare buffer
  • Communicate GHistIndexMatrix and RowSetCollection to interface for local gRPC handler in response to AllGather call

ZiyueXu77 and others added 20 commits January 31, 2024 10:48
@ZiyueXu77
Add additional data split mode to cover the secure vertical pipeline
8570ba5
@ZiyueXu77
Add IsSecure info and update corresponding functions
2d00db6
@ZiyueXu77
Modify evaluate_splits to block non-label owners to perform hist comp…
ab17f5a 
…ute under secure scenario
@ZiyueXu77
Continue using Allgather for best split sync for secure vertical, equ…
fb1787c 
…valent to broadcast
@ZiyueXu77
Modify histogram sync scheme for secure vertical case, can identify g…
7a2a2b8 
…lobal best split, but need to further apply split correctly
@ZiyueXu77
Sync cut informaiton across clients, full pipeline works for testing …
3ca3142 
…case
@ZiyueXu77
Code cleanup, phase 1 of alternative vertical pipeline finished
22dd522
@ZiyueXu77
Code clean
52e8951
@ZiyueXu77
change kColS to kColSecure to avoid confusion with kCols
e9eef15
@ZiyueXu77
Replace allreduce with allgather, functional but inefficient version
91c8a2f
@ZiyueXu77
Update AllGather behavior from individual pair to bulk by adopting ne…
8340c26 
…w histogram transmission data structure of a flat vector
@ZiyueXu77
comment out the record printing
42a9df1
@ZiyueXu77
fix pointer bug for histsync with allgather
41e5abb
@ZiyueXu77
Merge branch 'dmlc:master' into SecureBoostP2
ea5dc98
@ZiyueXu77
Merge branch 'dmlc:master' into SecureBoostP2
5d542f8
@ZiyueXu77
identify the HE adding locations
d91be10
@ZiyueXu77
revise and simplify template code
dd60317
@ZiyueXu77
revise and simplify template code
8da824c
@ZiyueXu77
prepare aggregator for gh broadcast
fb9f4fa
@ZiyueXu77
prepare histogram for histindex and row index for allgather
e77f8c6
@ZiyueXu77 ZiyueXu77 mentioned this pull request Mar 15, 2024
Open
@ZiyueXu77 ZiyueXu77 mentioned this pull request Apr 8, 2024
Open
ZiyueXu77
ZiyueXu77 commented Apr 11, 2024
View reviewed changes
src/learner.cc Outdated Show resolved Hide resolved
ZiyueXu77

This comment was marked as resolved.

Sign in to view

@nvidianz nvidianz mentioned this pull request Apr 19, 2024
Closed
@ZiyueXu77
Copy link
Author

Hi @trivialfis, this PR is ready for review, we have some remaining failed checks due to two issues:
3 windows checks: Cannot open include file: 'dlfcn.h' -> @nvidianz is looking into this
2 mac_os: Error: The version '3.8' with architecture 'arm64' was not found for macOS 14.4.1. -> this seems to be a recent issue impacting everyone.

@trivialfis trivialfis mentioned this pull request Apr 24, 2024
Merged
shaojian-ant
shaojian-ant reviewed Apr 28, 2024
View reviewed changes
src/processing/processor.h

/*! \brief An processor interface to handle tasks that require external library through plugins */
class Processor {
public:
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Here is my understanding about these interfaces. Please confirm if it's correct:
ProcessGHPairs: active party encrypts g&h pairs
HandleGHPairs: passive parties save encrypted g&h pairs in local
ProcessAggregation: passive parties each cacluate it's histogram based on encrypted g&h pairs, the output is ciphertext
HandleAggregation: active party decrypts the allgathered historgram ciphertexts
ProcessHistograms: active party encrypted allgathered & decrypted histograms?
HandleHistograms: active parth decrypts the allgathered historgram ciphertexts?

I have two more questions:

  1. Where are ProcessHistograms and HandleHistograms needed in secure xgboost?
  2. Passive parties need a public key to perform HE addition calculations. The public key is generated by the active party. So I think there should be two more interfaces like ProcessPublicKey and HandlePublicKey.

Copy link
Author

@ZiyueXu77 ZiyueXu77 Apr 29, 2024
edited

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi @shaojian-ant , thanks for the question!
"ProcessHistograms" and "HandleHistograms" are for the upcoming secure horizontal scheme, I will remove these two from this PR to avoid confusion.
Under secure federated mode (see RFC #9987), the HE is supposed to be performed outside xgboost via the interface, hence the key management, etc. will not be part of xgboost lib (and hence in xgboost we only have a "mock" interface inplementation to illustrate the functionality)

@ZiyueXu77 ZiyueXu77 mentioned this pull request Apr 29, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@shaojian-ant shaojian-ant shaojian-ant left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@ZiyueXu77 @shaojian-ant @nvidianz