AAIA: an efficient aggregation scheme against inverting attack for federated learning - Details

Author：

Indexed by：

EI Scopus SCIE

Abstract：

Federated　learning　is　emerged　as　an　attractive　paradigm　regarding　the　data　privacy　problem,　clients　train　the　deep　neural　network　on　their　local　datasets,　there　is　no　need　to　upload　their　local　data　to　a　center　server,　and　gradients　are　shared　instead.　However,　recent　studies　show　that　adversaries　can　reconstruct　the　training　images　at　high　resolution　from　the　gradients,　such　a　break　of　data　privacy　is　possible　even　in　trained　deep　networks.　To　protect　data　privacy,　a　secure　aggregation　scheme　against　inverting　attack　is　proposed　for　federated　learning.　The　gradients　are　encrypted　before　sharing,　and　an　adversary　is　unable　to　launch　various　attacks　based　on　gradients.　To　improve　the　efficiency　of　data　aggregation　schemes,　a　new　way　of　building　shared　keys　is　proposed,　and　a　client　build　shared　keys　with　2a　other　clients,　but　not　all　the　clients　in　the　system.　Besides,　the　gradient　inversion　attacks　are　also　tested,　and　a　gradient　inversion　attack　is　proposed,　which　enable　the　adversary　to　reconstruct　the　training　data　based　on　gradient.　The　simulation　results　show　the　proposed　scheme　can　protect　an　honest　but　curious　parameter　server　from　reconstructing　the　training　data.

Keyword：

Data privacy Deep learning Data security Federated learning

Author Community：

[ 1 ] [Yang, Zhen]Beijing Univ Technol, Coll Comp Sci, Beijing key Lab trusted Comp, Data Min & Secur Lab DMSLab, 100 Pingleyuan, Beijing, Peoples R China
[ 2 ] [Yang, Shisong]Beijing Univ Technol, Coll Comp Sci, Beijing key Lab trusted Comp, Data Min & Secur Lab DMSLab, 100 Pingleyuan, Beijing, Peoples R China
[ 3 ] [Huang, Yunbo]Beijing Univ Technol, Coll Comp Sci, Beijing key Lab trusted Comp, Data Min & Secur Lab DMSLab, 100 Pingleyuan, Beijing, Peoples R China
[ 4 ] [Chen, Yuwen]Beijing Univ Technol, Coll Comp Sci, Beijing key Lab trusted Comp, Data Min & Secur Lab DMSLab, 100 Pingleyuan, Beijing, Peoples R China
[ 5 ] [Martinez, Jose-Fernan]Univ Politecn Madrid UPM, Escuela Tecn Super Ingn & Sistemas Telecomunicac, Dept Ingn Telemat & Elect DTE, C-Nikola Tesla S-N, Madrid 28031, Spain
[ 6 ] [Lopez, Lourdes]Univ Politecn Madrid UPM, Escuela Tecn Super Ingn & Sistemas Telecomunicac, Dept Ingn Telemat & Elect DTE, C-Nikola Tesla S-N, Madrid 28031, Spain

Reprint Author's Address：

[Chen, Yuwen]Beijing Univ Technol, Coll Comp Sci, Beijing key Lab trusted Comp, Data Min & Secur Lab DMSLab, 100 Pingleyuan, Beijing, Peoples R China;;

Email：

yuwen.chen@bjut.edu.cn

Show more details

Related Keywords：

Poisoning attack in federated learning using generative adversarial nets
2019，18th IEEE International Conference on Trust, Security and Privacy in Computing and Communications/13th IEEE International Conference on Big Data Science and Engineering, TrustCom/BigDataSE 2019
Multi-task network anomaly detection using federated learning
2019，10th International Symposium on Information and Communication Technology, SoICT 2019
Communication-Efficient Federated Learning for Digital Twin Edge Networks in Industrial IoT
2021，IEEE Transactions on Industrial Informatics
Communication-Efficient Federated Learning and Permissioned Blockchain for Digital Twin Edge Networks
2021，IEEE Internet of Things Journal

Source ：

INTERNATIONAL JOURNAL OF INFORMATION SECURITY

ISSN： 1615-5262

Year： 2023

Issue： 4

Volume： 22

Page： 919-930

ESI Discipline： COMPUTER SCIENCE;

ESI HC Threshold：19

Cited Count：

WoS CC Cited Count：

SCOPUS Cited Count： 2

ESI Highly Cited Papers on the List： 0 Unfold All

WanFang Cited Count：

Chinese Cited Count：

30 Days PV： 0

Affiliated Colleges：

Get Fulltext

DOI Library Discovery Baidu Scholar Search Web of Science

Type
Departments

All Years Choose Year From to