STIQ: Safeguarding Training and Inferencing of Quantum Neural Networks from Untrusted Cloud

AmazUtah_NLP at SemEval-2024 Task 9: A MultiChoice Question Answering System for Commonsense Defying Reasoning


View a PDF of the paper titled STIQ: Safeguarding Training and Inferencing of Quantum Neural Networks from Untrusted Cloud, by Satwik Kundu and Swaroop Ghosh

View PDF
HTML (experimental)

Abstract:The high expenses imposed by current quantum cloud providers, coupled with the escalating need for quantum resources, may incentivize the emergence of cheaper cloud-based quantum services from potentially untrusted providers. Deploying or hosting quantum models, such as Quantum Neural Networks (QNNs), on these untrusted platforms introduces a myriad of security concerns, with the most critical one being model theft. This vulnerability stems from the cloud provider’s full access to these circuits during training and/or inference. In this work, we introduce STIQ, a novel ensemble-based strategy designed to safeguard QNNs against such cloud-based adversaries. Our method innovatively trains two distinct QNNs concurrently, hosting them on same or different platforms, in a manner that each network yields obfuscated outputs rendering the individual QNNs ineffective for adversaries operating within cloud environments. However, when these outputs are combined locally (using an aggregate function), they reveal the correct result. Through extensive experiments across various QNNs and datasets, our technique has proven to effectively masks the accuracy and losses of the individually hosted models by upto $76%$, albeit at the expense of $leq 2times$ increase in the total computational overhead. This trade-off, however, is a small price to pay for the enhanced security and integrity of QNNs in a cloud-based environment prone to untrusted adversaries. We also demonstrated STIQ’s practical application by evaluating it on multiple real quantum hardwares, showing that STIQ achieves up to $approx 70%$ obfuscation, with combined performance similar to an unobfuscated model.

Submission history

From: Satwik Kundu [view email]
[v1]
Wed, 29 May 2024 04:09:46 UTC (500 KB)
[v2]
Tue, 12 Nov 2024 22:35:28 UTC (591 KB)



Source link
lol

By stp2y

Leave a Reply

Your email address will not be published. Required fields are marked *

No widgets found. Go to Widget page and add the widget in Offcanvas Sidebar Widget Area.