Free-rider Attacks on Model Aggregation in Federated Learning

06/21/2020
by   Yann Fraboni, et al.
0

Free-rider attacks on federated learning consist in dissimulating participation to the federated learning process with the goal of obtaining the final aggregated model without actually contributing with any data. We introduce here the first theoretical and experimental analysis of free-rider attacks on federated learning schemes based on iterative parameters aggregation, such as FedAvg or FedProx, and provide formal guarantees for these attacks to converge to the aggregated models of the fair participants. We first show that a straightforward implementation of this attack can be simply achieved by not updating the local parameters during the iterative federated optimization. As this attack can be detected by adopting simple countermeasures at the server level, we subsequently study more complex disguising schemes based on stochastic updates of the free-rider parameters. We demonstrate the proposed strategies on a number of experimental scenarios, in both iid and non-iid settings. We conclude by providing recommendations to avoid free-rider attacks in real world applications of federated learning, especially in sensitive domains where security of data and models is critical.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
12/24/2019

Attack-Resistant Federated Learning with Residual-based Reweighting

Federated learning has a variety of applications in multiple domains by ...
research
11/10/2022

Secure Aggregation Is Not All You Need: Mitigating Privacy Attacks with Noise Tolerance in Federated Learning

Federated learning is a collaborative method that aims to preserve data ...
research
11/29/2018

Analyzing Federated Learning through an Adversarial Lens

Federated learning distributes model training among a multitude of agent...
research
06/22/2022

How to Combine Variational Bayesian Networks in Federated Learning

Federated Learning enables multiple data centers to train a central mode...
research
07/07/2021

RoFL: Attestable Robustness for Secure Federated Learning

Federated Learning is an emerging decentralized machine learning paradig...
research
10/13/2022

Dim-Krum: Backdoor-Resistant Federated Learning for NLP with Dimension-wise Krum-Based Aggregation

Despite the potential of federated learning, it is known to be vulnerabl...
research
10/25/2021

Robbing the Fed: Directly Obtaining Private Data in Federated Learning with Modified Models

Federated learning has quickly gained popularity with its promises of in...

Please sign up or login with your details

Forgot password? Click here to reset