Proceedings of the 2021 ACM Workshop on Information Hiding and Multimedia Security 2021
DOI: 10.1145/3437880.3460403
|View full text |Cite
|
Sign up to set email alerts
|

FederatedReverse: A Detection and Defense Method Against Backdoor Attacks in Federated Learning

Abstract: Federated Learning (FL) has garnered widespread adoption across various domains such as finance, healthcare, and cybersecurity. Nonetheless, FL remains under significant threat from backdoor attacks, wherein malicious actors insert triggers into trained models, enabling them to perform certain tasks while still meeting FL's primary objectives. In response, robust aggregation methods have been proposed, which can be divided into three types: ex-ante, ex-durante, and ex-post methods. Given the complementary natu… Show more

Help me understand this report

Search citation statements

Order By: Relevance

Paper Sections

Select...
2
1

Citation Types

0
7
0

Year Published

2022
2022
2024
2024

Publication Types

Select...
4
4
1

Relationship

0
9

Authors

Journals

citations
Cited by 17 publications
(8 citation statements)
references
References 43 publications
0
7
0
Order By: Relevance
“…In FL settings, a number of strategies have been explored to defend against specific types of attacks or failures, including backdoor attacks [42], [43], free-rider attacks [44], [45], and gradient inversion attacks [46], [47]. On a more general level, Byzantine-robust FL solutions aim to mitigate the effect of arbitrary updates uploaded by malicious clients, instead of focusing on specific types of attacks [7].…”
Section: Byzantine-robust Flmentioning
confidence: 99%
“…In FL settings, a number of strategies have been explored to defend against specific types of attacks or failures, including backdoor attacks [42], [43], free-rider attacks [44], [45], and gradient inversion attacks [46], [47]. On a more general level, Byzantine-robust FL solutions aim to mitigate the effect of arbitrary updates uploaded by malicious clients, instead of focusing on specific types of attacks [7].…”
Section: Byzantine-robust Flmentioning
confidence: 99%
“…The model’s performance is recovered through knowledge distillation. Zhao et al [ 36 ] Proposed how to realize the detection and defense of backdoor attacks of Federated learning from the perspective of combining participants and servers of Federated learning.…”
Section: Related Workmentioning
confidence: 99%
“…In FL settings, a number of strategies have been explored to defend against specific types of attacks or failures, including backdoor attacks [47], [50], free-rider attacks [51], [52], and gradient inversion attacks [53], [54]. On a more general level, Byzantine-robust FL solutions aim to mitigate the effect of arbitrary updates uploaded by malicious clients, instead of focusing on specific types of attacks [7].…”
Section: Byzantine-robust Flmentioning
confidence: 99%