As the use of sensitive personal data in machine learning models becomes increasingly prevalent, ensuring data privacy and security is paramount. PFEE-ZAMA addresses these concerns by leveraging advanced techniques such as Privacy-Preserving Machine Learning (PPML) and Fully Homomorphic Encryption (FHE). This project enables secure predictions without compromising the confidentiality of user data.
PFEE-ZAMA is a capstone project (Projet de Fin d'Études Encadré) developed in collaboration with Zama, a leader in homomorphic encryption. The primary objective is to explore and implement Privacy-Preserving Machine Learning (PPML) and Fully Homomorphic Encryption (FHE) using Concrete ML, an open-source library developed by Zama. The project focuses on creating a machine learning model capable of making secure predictions while ensuring data privacy.
- Secure Predictions: Develop a machine learning model that can make predictions on encrypted data without decrypting it.
- Data Privacy: Ensure that all user data remains confidential throughout the prediction process.
- Scalability: Create a client-server architecture that can handle multiple prediction requests efficiently.
- Ease of Use: Provide a user-friendly interface and deployment process using Makefile for streamlined operations.
- PPML (Privacy-Preserving Machine Learning): Techniques that allow machine learning models to be trained and used without exposing sensitive data.
- FHE (Fully Homomorphic Encryption): A form of encryption that enables computations on encrypted data without needing to decrypt it first.
- Concrete ML: An open-source library developed by Zama, integrating FHE with machine learning for privacy-preserving predictions.
- FastAPI: A modern, fast (high-performance) web framework for building APIs with Python.
- Uvicorn: A lightning-fast ASGI server implementation, using
uvloopandhttptools. - Sphinx: A tool that makes it easy to create intelligent and beautiful documentation.
- Understanding and Implementing PPML and FHE: Conducted an in-depth study of PPML and FHE principles and their practical implementation.
- Model Development: Created and trained a machine learning model using Concrete ML to perform secure predictions.
- Data Privacy: Ensured that all data used in the predictions remained encrypted, maintaining user confidentiality and data integrity.
- Client-Server Architecture: Developed a scalable client-server system to handle encrypted prediction requests.
- Documentation: Provided comprehensive documentation using Sphinx for ease of understanding and deployment.
Before deploying PFEE-ZAMA, ensure that you have the following installed on your system:
- Python: Version 3.10.12
- pip: Python package installer
- Make: Build automation tool
- Git: Version control system
-
Clone the Repository
git clone https://github.com/yourusername/pfee-zama.git cd pfee-zama -
Install Dependencies
Use the provided Makefile to install all necessary dependencies.
make setup
This command will install all packages listed in
requirements.txtusingpip.
Before running the server and client, train the machine learning model using the following command:
make trainThis will execute the models/FHEModel.py script, which:
- Loads and preprocesses the dataset.
- Trains a Random Forest classifier using Concrete ML.
- Compiles the model for homomorphic encryption.
- Saves the encrypted model and necessary files for deployment.
PFEE-ZAMA follows a client-server architecture where the server handles encrypted prediction requests, and the client manages user interactions and data encryption.
-
Run the Server
make run_server
This command starts the FastAPI server on
http://0.0.0.0:8000, ready to receive encrypted prediction requests. -
Run the Client
In a new terminal window, execute:
make run_client
This starts the FastAPI client on
http://127.0.0.1:8001. The client will send encrypted evaluation keys to the server upon startup.
When a user makes a prediction via the API client, the following workflow occurs:
-
User Input: The user provides input data through the client’s API endpoint (
/predict). -
Data Preprocessing: The client application scales the input data using a pre-trained scaler (
scaler.pkl). -
Data Encryption: The scaled data is encrypted using Concrete ML's FHE capabilities. The encryption process ensures that the data remains confidential during computation.
-
Sending Encrypted Data: The encrypted data is sent to the server’s
/predictendpoint via a POST request. -
Server Processing: The server receives the encrypted data and uses the encrypted model to perform the prediction directly on the encrypted input without decrypting it.
-
Encrypted Prediction: The server returns the encrypted prediction result to the client.
-
Decryption: The client decrypts the received prediction to obtain the final result.
-
Result Delivery: The client returns the decrypted prediction to the user.
This workflow ensures that at no point is the sensitive user data exposed in an unencrypted form, maintaining data privacy and security throughout the process.
The Makefile simplifies common tasks such as setting up the environment, training the model, running the server and client, and testing. Below are the available commands:
-
Setup Dependencies
make setup
Installs all required Python packages listed in
requirements.txt. -
Train the Model
make train
Executes the training script to develop and compile the FHE-enabled machine learning model.
-
Run the Server
make run_server
Starts the FastAPI server on
http://0.0.0.0:8000. -
Run the Client
make run_client
Starts the FastAPI client on
http://127.0.0.1:8001. -
Run Tests
make testExecutes the test suite located in
./tests/test_api.pyto ensure the API is functioning correctly.
To make predictions using the client API, follow these steps:
-
Ensure Server and Client are Running
Make sure both the server and client are up and running using the Makefile commands mentioned above.
-
Send a Prediction Request
You can use tools like
curl,HTTPie, or Postman to send a POST request to the client’s/predictendpoint. Below is an example usingcurl:curl -X POST "http://127.0.0.1:8001/predict" \ -H "Content-Type: application/json" \ -d '{ "distance_from_home": 10.5, "distance_from_last_transaction": 5.2, "ratio_to_median_purchase_price": 1.3, "repeat_retailer": 1, "used_chip": 0, "used_pin_number": 1, "online_order": 0 }'
-
Receive the Prediction
The client will process the input, encrypt it, send it to the server, and return the decrypted prediction. The response will look like:
{ "prediction": 0 }Here,
0could represent a non-fraudulent transaction, and1could represent a fraudulent one, depending on your model's encoding.
PFEE-ZAMA utilizes GitHub Actions for continuous integration to ensure code quality and maintainability.
The CI workflow is defined in .github/workflows/ci.yml. It includes steps for:
- Checking Out the Repository
- Setting Up Python Environment
- Installing Dependencies
- Running Tests
- Validating Commit Messages
Commit messages must adhere to the following format to maintain consistency and clarity:
feat: Feature descriptionfix: Description of the fixdocs: Description of documentationstyle: Description of style changesrefactor: Description of refactoringtest: Description of testschore: Description of maintenance tasks
A commit message validation hook is included and executed during the CI process to enforce these conventions.
Dependencies are managed via requirements.txt. To install them manually, use:
pip install -r requirements.txtThe project uses the Credit Card Fraud Detection dataset from Kaggle. The dataset contains transactions made by credit cards in September 2013 by European cardholders. It presents transactions that occurred in two days, where we have 492 frauds out of 284,807 transactions.
This setup ensures that you can deploy the PFEE-ZAMA system efficiently and start making secure predictions with ease.
For more detailed documentation, refer to the PFEE-ZAMA Documentation.