Survey on Attack Methods and Defense Mechanisms in Federated Learning

被引:0
作者
Zhang, Shiwen [1 ]
Chen, Shuang [1 ]
Liang, Wei [1 ]
Li, Renfa [2 ]
机构
[1] School of Computer Science and Engineering, Hunan University of Science and Technology, Hunan, Xiangtan
[2] School of Computer Science and Electronic Engineering, Hunan University, Changsha
来源
Computer Engineering and Applications | 2024年 / 60卷 / 05期
关键词
attack method; defense mechanism; federated learning; privacy protection;
D O I
10.3778/j.issn.1002-8331.2306-0243
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
The attack and defense techniques of federated learning are the core issue of federated learning system security. The attack and defense techniques of federated learning can significantly reduce the risk of being attacked and greatly enhance the security of federated learning systems. Deeply understanding the attack and defense techniques of federated learning can advance research in the field and achieve its widespread application of federated learning. Therefore, it is of great significance to study the attack and defense techniques of federated learning. Firstly, this paper briefly introduces the concept, basic workflow, types, and potential existing security issues of federated learning. Subsequently, the paper introduces the attacks that the federated learning system may encounter, and relevant research is summarized during the introduction. Then, starting from whether the federated learning system has targeted defense measures, the defense measures are divided into two categories:universal defense measures and targeted defense measures, and targeted summary are made. Finally, it reviews and analyzes the future research directions for the security of federated learning, providing reference for relevant researchers in their research work on the security of federated learning. © 2024 The Author(s).
引用
收藏
页码:1 / 16
页数:15
相关论文
共 83 条
[1]  
ZHANG S S, GAO X G, HUA W Q., Remote sensing image nformation extraction method based on clustering and artificial neural network, International Electronic Elements, 28, 15, pp. 106-109, (2020)
[2]  
MCMAHAN H B, MOORE E, RAMAGE D, Et al., Communication- efficient learning of deep networks from decentralized data, Proceeding of the 20th International Conference on Artificial Intelligence and Statistics, pp. 1273-1282, (2017)
[3]  
JAGIELSKI M, OPREA A, BIGGIO B, Et al., Manipulating machine learning: poisoning attacks and countermeasures for regression learning, Proceeding of the 39th IEEE Symposium on Security and Privacy, pp. 19-35, (2018)
[4]  
WANG Z B, SONG M K, ZHANG Z F, Et al., Beyond inferring class representatives: user-level privacy leakage from federated learning, Proceeding of the 38th Annual IEEE International Conference on Computer Communications, pp. 2512-2520, (2019)
[5]  
HITAJ B, ATENIESE G, PEREZ- CRUZ F., Deep models under the GAN: information leakage from collaborative deep learning, Proceeding of the 2017 ACM SIGSAC Conference on Computer and Communications Security, pp. 603-618, (2017)
[6]  
YANG Q, LIU Y, CHEN T J, Et al., Federated machine learning, ACM Transactions on Intelligent Systems and Technology, 10, 2, pp. 1-19, (2019)
[7]  
LI T, SAHU A K, TALWALKARA, Et al., Federated learning: challenges, methods, and future directions, IEEE Signal Processing Magazine, 37, 3, pp. 50-60, (2020)
[8]  
KAIROZ P, MCMAHAN H B, AVENT B, Advances and open problems in federated learning, in Machine Learning, 14, pp. 1-210, (2021)
[9]  
MCMAHAN H B, MOORE E, RAMAGE D, Et al., Federated learning of deep networks using model averaging, (2016)
[10]  
LIU Y X, CHEN H, LIU Y H, Et al., Privacy- preserving techniques in federated learning, Journal of Software, 33, 3, pp. 1057-1092, (2022)
123456789