Feng Chenyuan, Feng Daquan, Huang Guanxin, Liu Zuozhu, Wang Zhenzhong, Xia Xiang-Gen
IEEE Trans Neural Netw Learn Syst. 2025 May;36(5):8896-8910. doi: 10.1109/TNNLS.2024.3411402. Epub 2025 May 2.
Recommendation system (RS) is an important information filtering tool in nowadays digital era. With the growing concern on privacy, deploying RSs in a federated learning (FL) manner emerges as a promising solution, which can train a high-quality model on the premise that the server does not directly access sensitive user data. Nevertheless, some malicious clients can deduce user data by analyzing the uploaded model parameters. Even worse, some Byzantine clients can also send contaminated data to the server, causing blockage or failure of model convergence. In addition, most existing researches on federated recommendation algorithms only focus on unimodality learning, ignoring the assistance of multiple modality data to promote recommendation accuracy. Therefore, this article designs an FL-based privacy-preserving multimodal RS framework. To distinguish various modality data, an attention mechanism is introduced, wherein different weight ratios are assigned to various modal features. To further strengthen the privacy, local differential privacy (LDP) and personalized FL strategies are designed to identify malicious clients and bolster the resilience against Byzantine attacks. Finally, two multimodal datasets are established to verify the effectiveness of the proposed algorithm. The superiority of our proposed techniques is confirmed by the simulation results.
推荐系统(RS)是当今数字时代重要的信息过滤工具。随着对隐私的日益关注,以联邦学习(FL)方式部署推荐系统成为一种很有前景的解决方案,它可以在服务器不直接访问敏感用户数据的前提下训练高质量模型。然而,一些恶意客户端可以通过分析上传的模型参数来推断用户数据。更糟糕的是,一些拜占庭客户端还会向服务器发送受污染的数据,导致模型收敛受阻或失败。此外,大多数现有的联邦推荐算法研究仅专注于单模态学习,忽略了多模态数据对提高推荐准确性的辅助作用。因此,本文设计了一个基于联邦学习的隐私保护多模态推荐系统框架。为了区分各种模态数据,引入了注意力机制,为各种模态特征分配不同的权重比。为了进一步加强隐私保护,设计了局部差分隐私(LDP)和个性化联邦学习策略,以识别恶意客户端并增强抵御拜占庭攻击的能力。最后,建立了两个多模态数据集来验证所提算法的有效性。仿真结果证实了我们所提技术的优越性。
