Efficient passive membership inference attack in federated learning

Zari, Oualid; Xu, Cheng; Neglia, Giovanni

doi:10.48550/arxiv.2111.00430

Cited by 5 publications

(7 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Nasr et al [34] designed a white-box membership inference attack against centralized and FL by exploiting the vulnerability of stochastic gradient descent algorithm. Zari et al [57] also demonstrated the passive membership inference attack in FL. Chen et al [8] provided a generic membership inference attack to attack the deep generative models and judged whether the image belongs to the victim's training set by devising a calibration technique.…”

Section: B Membership Inference Attackmentioning

confidence: 96%

See 1 more Smart Citation

PPA: Preference Profiling Attack Against Federated Learning

Zhou¹,

Gao²,

Fu³

et al. 2023

Proceedings 2023 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

Section: B Membership Inference Attackmentioning

confidence: 96%

“…In FL, there have been great efforts to explore its privacy leakage through various inference attacks, including membership inference [34], [57], property inference [32] and GAN [19], [50]. These inference attacks can obtain a variety of user privacy information from the local model.…”

Section: E Privacy Inference Attacks On Flmentioning

confidence: 99%

PPA: Preference Profiling Attack Against Federated Learning

Zhou¹,

Gao²,

Fu³

et al. 2023

Proceedings 2023 Network and Distributed System Security Symposium

View full text Add to dashboard Cite

“…Attacker's Capabilities: Attackers in FL-aided energy networks possess different abilities that can be broadly divided into two types: passive and active [81]. Passive attacks are when the attacker just watches the communication between the clients and the server without messing with it.…”

Section: B Adversarial Attacks In Fl Aided Networkmentioning

confidence: 99%

Enhanced Adversarial Attack Resilience in Energy Networks through Energy and Privacy Aware Federated Learning

Manzoor,

Arshad,

Assaleh

et al. 2024

Preprint

View full text Add to dashboard Cite

The integration of artificial intelligence (AI) into energy networks significantly advanced short-term forecasting, particularly in smart meter applications. However, as distributed energy resources proliferated and energy systems grew in complexity, traditional centralized approaches to data analysis became insufficient in addressing privacy-preserving challenges. Federated learning (FL) emerged as a promising solution, leveraging distributed data sources while safeguarding user privacy. Nonetheless, FL encountered inherent vulnerabilities to adversarial attacks during model training, undermining its reliability and effectiveness. Existing techniques to eliminate these attacks often required additional frameworks for detection, imposing an added burden on devices. To address this issue, we proposed a novel method called federated random layer aggregation (FedRLA). It aggregated only one randomly chosen neural network layer on the server in a privacy-aware manner, leaving the remaining layers unchanged. FedRLA exhibited superior resilience against adversarial attacks by confining attackers to a single neural network layer. Our simulations, focusing on household energy consumption, demonstrated that FedRLA achieved 3.56 times less data transmission compared to FedAvg during global model training. This enhanced efficiency translated to improved energy usage and resource conservation. Furthermore, FedRLA performed better in the presence of differential privacy under attack and no attack conditions.

show abstract

“…In FL, there have been great efforts to explore its privacy leakage through various inference attacks, including membership inference [32,54], property inference [30] and GAN [18,47]. These inference attacks can obtain a variety of user privacy information from the upload model.…”

Section: Privacy Inference Attacks On Flmentioning

confidence: 99%

PPA: Preference Profiling Attack Against Federated Learning

Zhou¹,

Gao²,

Fu³

et al. 2022

Preprint

View full text Add to dashboard Cite

Federated learning (FL) trains a global model across a number of decentralized participants, each with a local dataset. Compared to traditional centralized learning, FL does not require direct local datasets access and thus mitigates data security and privacy concerns. However, data privacy concerns for FL still exist due to inference attacks, including known membership inference, property inference, and data inversion.

show abstract

Efficient passive membership inference attack in federated learning

Cited by 5 publications

References 10 publications

PPA: Preference Profiling Attack Against Federated Learning

PPA: Preference Profiling Attack Against Federated Learning

Enhanced Adversarial Attack Resilience in Energy Networks through Energy and Privacy Aware Federated Learning

PPA: Preference Profiling Attack Against Federated Learning

Contact Info

Product

Resources

About