Adversarial sample generation algorithm for vertical federated learning

被引：0

作者：

Chen X. ^{[1
,2
]}

Zan D. ^{[1
,2
]}

Wu B. ^{[1
,2
]}

Guan B. ^{[2
,3
]}

Wang Y. ^{[2
,3
]}

机构：

[1] Collaborative Innovation Center, Institute of Software, Chinese Academy of Sciences, Beijing

[2] University of Chinese Academy of Sciences, School of Computer Science and Technology, Beijing

[3] Integrated Innovation Center, Institute of Software, Chinese Academy of Sciences, Beijing

来源：

Tongxin Xuebao/Journal on Communications | 2023年 / 44卷 / 08期

基金：

中国国家自然科学基金;

关键词：

adversarial attack; adversarial sample; DCGAN; machine learning; VFL;

D O I：

10.11959/j.issn.1000-436x.2023149

中图分类号：

学科分类号：

摘要：

To adapt to the scenario characteristics of vertical federated learning (VFL) applications regarding high communication cost, fast model iteration, and decentralized data storage, a generalized adversarial sample generation algorithm named VFL-GASG was proposed. Specifically, an adversarial sample generation framework was constructed for the VFL architecture. A white-box adversarial attack in the VFL was implemented by extending the centralized machine learning adversarial sample generation algorithm with different policies such as L-BFGS, FGSM, and C&W. By introducing deep convolutional generative adversarial network (DCGAN), an adversarial sample generation algorithm named VFL-GASG was designed to address the problem of universality in the generation of adversarial perturbations. Hidden layer vectors were utilized as local prior knowledge to train the adversarial perturbation generation model, and through a series of convolution-deconvolution network layers, finely crafted adversarial perturbations were produced. Experiments show that VFL-GASG can maintain a high attack success while achieving a higher generation efficiency, robustness, and generalization ability than the baseline algorithm, and further verify the impact of relevant settings for adversarial attacks. © 2023 Editorial Board of Journal on Communications. All rights reserved.

引用

页码：1 / 13

页数：12

共 33 条

[1]

JOHN R, DAVID R, JOHN G., Data age 2025: the digitization of the world from edge to core, (2018)

[2]

VOIGT P, BUSSCHE A V D., The EU general data protection regulation (GDPR), (2017)

[3]

PIPER D L A., Data protection laws of the world: full handbook, (2017)

[4]

Data security law of the People’s Republic of China, (2021)

[5]

MCMAHAN H B, MOORE E, RAMAGE D, Et al., Communication-efficient learning of deep networks from decentralized data, (2016)

[6]

YANG Q, LIU Y, CHEN T, Et al., Federated machine learning: concept and applications, ACM Transactions on Intelligent Systems and Technology, 10, 2, pp. 1-19, (2019)

[7]

WANG G., Interpret federated learning with shapley values, (2019)

[8]

CAI F., ByteDance breaks federal learning: open source fedlearner framework, 209% increase in advertising efficiency, (2020)

[9]

GE N, LI G H, ZHANG L, Et al., Failure prediction in production line based on federated learning: an empirical study, Journal of Intelligent Manufacturing, 33, 8, pp. 2277-2294, (2022)

[10]

LIU H, ZHANG X, SHEN X, Et al., A federated learning framework for smart grids: securing power traces in collaborative learning, (2021)

← 1 2 3 4 →