Ming Xu scite author profile

Federated learning is a novel distributed learning framework, which enables thousands of participants to collaboratively construct a deep learning model. In order to protect confidentiality of the training data, the shared information between server and participants are only limited to model parameters. However, this setting is vulnerable to model poisoning attack, since the participants have permission to modify the model parameters. In this paper, we perform systematic investigation for such threats in federated learning and propose a novel optimization-based model poisoning attack. Different from existing methods, we primarily focus on the effectiveness, persistence and stealth of attacks. Numerical experiments demonstrate that the proposed method can not only achieve high attack success rate, but it is also stealthy enough to bypass two existing defense methods.

show abstract

Robust Multi-Classifier for Camera Model Identification Based on Convolution Neural Network

Hong-wei

Qiao

et al. 2018

IEEE Access

View full text Add to dashboard Cite

Predicting next location using a variable order Markov model

Yang

et al. 2014

View full text Add to dashboard Cite

A similarity metric method of obfuscated malware using function-call graph

Xu¹,

Wu²,

Qi³

et al. 2013

J Comput Virol Hack Tech

View full text Add to dashboard Cite

Robust Steganography by Modifying Sign of DCT Coefficients

et al. 2019

View full text Add to dashboard Cite

Modern adaptive image steganography with minimizing a distortion function has high performance of undetectability. However, when an image with hidden information is attacked by JPEG compression, its robustness cannot be guaranteed, that remarkably limits its extension from the lab to the real world. In this paper, a novel image steganographic algorithm is proposed that is robust to JPEG compression. First, by using the sign of DCT coefficients, that remains unchangeable before and after JPEG compression, we select the candidate coefficients for resisting JPEG compression. Second, the designed distortion function assigns cost for each candidate DCT coefficient. Finally, relying on both error correction code and Syndrome-Trellis Codes, an encoded message is embedded into the cover image with minimum embedding distortion. Compared with prior arts, extensive experimental results highlight both undetectability and robustness of our proposed algorithm. INDEX TERMS Robust steganography, distortion function, JPEG compression, sign of DCT coefficients.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Ming Xu

Deep Model Poisoning Attack on Federated Learning

Robust Multi-Classifier for Camera Model Identification Based on Convolution Neural Network

Predicting next location using a variable order Markov model

A similarity metric method of obfuscated malware using function-call graph

Robust Steganography by Modifying Sign of DCT Coefficients

Contact Info

Product

Resources

About