THE-X: Privacy-Preserving Transformer Inference with Homomorphic Encryption

Geng

et al. 2023

Tsinghua Sci. Technol.

The discovery of ferroelectricity in hafnium oxide (HfO 2 ) based thin films in 2011 renewed the interest in ferroelectrics. These new ferroelectrics possess completely different crystal morphology with conventional perovskite ferroelectrics, and present more robust ferroelectric properties upon aggressive scaling and compatibility with standard integrated circuit fabrication processes. In this article, we give a brief introduction to the conventional ferroelectric memories, then review the basic properties, recent progress, and memory applications of these HfO 2 -based ferroelectrics.

Section: Related Workmentioning

confidence: 99%

Recent Progress and Applications of HfO₂-Based Ferroelectric Memory

Geng

et al. 2023

Tsinghua Sci. Technol.

“…• Models per sensitivity: the different type of sensitive data could each be stored in a specific model and a common frontend could manage the access control to each model. • Data privacy mechanisms [352][353][354][355][356][357][358][359][360]: QA can ensure protection of private data by implementing privacypreserving techniques such as homomorphic encryption, local differential privacy, or secure multiparty computation. These techniques can be applied to the input text, token embeddings, and sequence representations in order to protect the data from malicious actors.…”

Section: Data Multi-sensitivity Usage and Protectionmentioning

confidence: 99%

Complex QA and language models hybrid architectures, Survey

Daull¹,

Bellot²,

Bruno³

et al. 2023

Preprint

This paper provides a survey of the state of the art of hybrid language models architectures and strategies for "complex" question-answering (QA, CQA, CPS). Very large language models are good at leveraging public data on standard problems but once you want to tackle more specific complex questions or problems you may need specific architecture, knowledge, skills, tasks, methods, sensitive data, performance, human approval and versatile feedback... This survey extends findings from the robust community edited research papers BIG, BLOOM and HELM which open source, benchmark and analyze limits and challenges of large language models in terms of tasks complexity and strict evaluation on accuracy (e.g. fairness, robustness, toxicity, ...). It identifies the key elements used with Large Language Models (LLM) to solve complex questions or problems. Recent projects like ChatGPT and GALACTICA have allowed non-specialists to grasp the great potential as well as the equally strong limitations of language models in complex QA. Hybridizing these models with different components could allow to overcome these different limits and go much further. We discuss some challenges associated with complex QA, including domain adaptation, decomposition and efficient multi-step QA, long form QA, non-factoid QA, safety and multi-sensitivity data protection, multimodal search, hallucinations, QA explainability and truthfulness, time dimension. Therefore we review current solutions and promising strategies, using elements such as hybrid LLM architectures, human-in-the-loop reinforcement learning, prompting adaptation, neuro-symbolic and structured knowledge grounding, program synthesis, and others. We analyze existing solutions and provide an overview of the current research and trends in the area of complex QA.

“…To alleviate the privacy problem, recent works (Hao et al 2022;Chen et al 2022) have developed two-party secure inference services for PLMs by secure Multi-Party Computation (MPC). MPC ensures the privacy of user data and model weights, and shares them secretly.…”

Section: Introductionmentioning

confidence: 99%

“…Though designed for Transformer, existing works (Hao et al 2022;Chen et al 2022;Li et al 2022) solely explore the scenario of natural language understanding (NLU) (e.g., on the GLUE (Wang et al 2019) benchmark). Unfortunately, we observe that they have no significant improvements in natural language generation (NLG) tasks (cf., Fig.…”

Section: Introductionmentioning

confidence: 99%

MERGE: Fast Private Text Generation

Liang,

Wang,

Zhang

et al. 2024

AAAI

The drastic increase in language models' parameters has led to a new trend of deploying models in cloud servers, raising growing concerns about private inference for Transformer-based models. Existing two-party privacy-preserving techniques, however, only take into account natural language understanding (NLU) scenarios. Private inference in natural language generation (NLG), crucial for applications like translation and code completion, remains underexplored. In addition, previous privacy-preserving techniques suffer from convergence issues during model training and exhibit poor inference speed when used with NLG models due to the neglect of time-consuming operations in auto-regressive generations. To address these issues, we propose a fast private text generation framework for Transformer-based language models, namely MERGE. MERGE reuses the output hidden state as the word embedding to bypass the embedding computation and reorganize the linear operations in the Transformer module to accelerate the forward procedure. Extensive experiments show that MERGE achieves a 26.5x speedup to the vanilla encrypted model under the sequence length 512, and reduces 80% communication cost, with an up to 10x speedup to state-of-the-art approximated models.