Free-rider Attacks on Model Aggregation in Federated Learning
Apr 14, 2021
Sprecher:innen
Yann Fraboni
Sprecher:in · 0 Follower:innen
Richard Vidal
Sprecher:in · 0 Follower:innen
Marco Lorenzi
Sprecher:in · 0 Follower:innen
Über
Free-rider attacks against federated learning consist in dissimulating participation to the federated learning process with the goal of obtaining the final aggregated model without actually contributing with any data. This kind of attacks are critical in sensitive applications of federated learning when data is scarce and the model has high commercial value. We introduce here the first theoretical and experimental analysis of free-rider attacks on federated learning schemes based on iterative parameters aggregation, such as FedAvg or FedProx, and provide formal guarantees for these attacks to converge to the aggregated models of the fair participants. We first show that a straightforward implementation of this attack can be simply achieved by not updating the local parameters during the iterative federated optimization. As this attack can be detected by adopting simple countermeasures at the server level, we subsequently study more complex disguising schemes based on stochastic updates of the free-rider parameters. We demonstrate the proposed strategies on a number of experimental scenarios, in both iid and non-iid settings. We conclude by providing recommendations to avoid free-rider attacks in real world applications of federated learning, especially in sensitive domains where security of data and models is critical.Free-rider attacks against federated learning consist in dissimulating participation to the federated learning process with the goal of obtaining the final aggregated model without actually contributing with any data. This kind of attacks are critical in sensitive applications of federated learning when data is scarce and the model has high commercial value. We introduce here the first theoretical and experimental analysis of free-rider attacks on federated learning schemes based on iterative pa…
Organisator
AISTATS 2021
Konto · 63 Follower:innen
Kategorien
Informatik und IT
Kategorie · 14,8k Präsentationen
Über AISTATS 2021
The 24th International Conference on Artificial Intelligence and Statistics was held virtually from Tuesday, 13 April 2021 to Thursday, 15 April 2021.
Gefällt euch das Format? Vertraut auf SlidesLive, um euer nächstes Event festzuhalten!
Professionelle Aufzeichnung und Livestreaming – weltweit.
Freigeben
Empfohlene Videos
Präsentationen, deren Thema, Kategorie oder Sprecher:in ähnlich sind
Oral: Sketch based Memory for Neural Networks
Später ansehen
Ewigspeicher-Fortschrittswert: 0 = 0.0%
Dirichlet Pruning for Convolutional Neural Networks
Später ansehen
Ewigspeicher-Fortschrittswert: 0 = 0.0%
Oral: A Variational Information Bottleneck Approach to Multi-Omics Data Integration
Später ansehen
Changhee Lee, …
Ewigspeicher-Fortschrittswert: 0 = 0.0%
Oral: Towards a Theoretical Understanding of the Robustness of Variational Autoencoders
Später ansehen
Ewigspeicher-Fortschrittswert: 0 = 0.0%
Improving Adversarial Robustness via Unlabeled Out-of-Domain Data
Später ansehen
Zhun Deng, …
Ewigspeicher-Fortschrittswert: 0 = 0.0%
Q-learning with Logarithmic Regret
Später ansehen
Saba Ahmadi, …
Ewigspeicher-Fortschrittswert: 0 = 0.0%