GAN-Based Information Leakage Attack Detection in Federated Learning

Abstract

Federated learning (FL) has been a popular distributed learning framework to reduce privacy risks by keeping private data locally. However, recent work (Hitaj 2017) has demonstrated that sharing model’s parameter updates still leaves FL vulnerable to internal attacks in its training phase. Existing works cannot detect such attacks well. To address this problem, we propose a novel and lightweight detection scheme which selects and analyzes just a few parameter updates of the last convolutional layer in the FL model. Extensive experiments demonstrate that our proposed detection scheme can accurately and efficiently detect the malicious participant in near real time for a scenario with a malicious participant.

References

Page 1

	Year	Citations
Communication-Efficient Learning of Deep Networks from Decentralized Data H. Brendan McMahan, Eider Moore, Daniel Ramage, arXiv (Cornell University) Modern Mobile DevicesDecentralized Machine LearningMachine LearningData ScienceEngineering	2016	5.2K
Federated Learning in Mobile Edge Networks: A Comprehensive Survey Wei Yang Bryan Lim, Nguyen Cong Luong, Dinh Thai Hoang, IEEE Communications Surveys & Tutorials EngineeringMachine LearningEdge DeviceFederated StructureNetwork Analysis	2020	2.3K
Privacy-Preserving Deep Learning via Additively Homomorphic Encryption Le Trieu Phong, Yoshinori Aono, Takuya Hayashi, IEEE Transactions on Information Forensics and Security Privacy ProtectionEngineeringMachine LearningInformation SecurityHardware Security	2017	1.6K
Deep Models Under the GAN Briland Hitaj, Giuseppe Ateniese, Fernando Pérez‐Cruz Artificial IntelligenceConvolutional Neural NetworkEngineeringMachine LearningData Science	2017	1.3K
A survey on security and privacy of federated learning Viraaji Mothukuri, Reza M. Parizi, Seyedamin Pouriyeh, Future Generation Computer Systems EngineeringData ScienceInformation SecurityFederated LearningFederated Structure	2020	1.2K
Targeted Backdoor Attacks on Deep Learning Systems Using Data Poisoning Xinyun Chen, Chang Liu, Bo Li, arXiv (Cornell University) EngineeringMachine LearningInformation SecurityAi SafetyInformation Forensics	2017	1K
Machine learning with adversaries: byzantine tolerant gradient descent Peva Blanchard, El Mahdi El Mhamdi, Rachid Guerraoui, Neural Information Processing Systems Cluster ComputingEngineeringMachine LearningDistributed AlgorithmsDistributed Ai System	2017	984
Beyond Inferring Class Representatives: User-Level Privacy Leakage From Federated Learning Zhibo Wang, Mengkai Song, Zhifei Zhang,	2019	790
Byzantine-Robust Distributed Learning: Towards Optimal Statistical Rates Dong Yin, Yudong Chen, Kannan Ramchandran, arXiv (Cornell University) Mathematical ProgrammingByzantine-robust Distributed LearningLarge-scale Distributed LearningMachine LearningData Science	2018	542
Towards poisoning of deep learning algorithms with back-gradient optimization Luis Muñoz-González, Battista Biggio, Ambra Demontis, UNICA IRIS Institutional Research Information System (University of Cagliari) Artificial IntelligenceEngineeringMachine LearningPoisoning PointsEvasion Technique	2017	532

Page 1