Proceedings of the 21st Workshop on Privacy in the Electronic Society 2022
DOI: 10.1145/3559613.3563198
|View full text |Cite
|
Sign up to set email alerts
|

SplitGuard

Help me understand this report
View preprint versions

Search citation statements

Order By: Relevance

Paper Sections

Select...
1
1

Citation Types

0
2
0

Year Published

2023
2023
2024
2024

Publication Types

Select...
4
1
1

Relationship

0
6

Authors

Journals

citations
Cited by 12 publications
(2 citation statements)
references
References 4 publications
0
2
0
Order By: Relevance
“…The active attack is more flexible than the passive attack but is more easily detected by the client. Erdogan et al (Erdogan, Küpc ¸ü, and Cicek 2022) argue that the weight update direction of the clients in FSHA is independent of the main task. Thus, clients can submit a small amount of erroneous data during the training process to observe the variations in gradient information returned by the server, enabling them to detect any malicious behavior on the server side.…”
Section: Related Workmentioning
confidence: 99%
“…The active attack is more flexible than the passive attack but is more easily detected by the client. Erdogan et al (Erdogan, Küpc ¸ü, and Cicek 2022) argue that the weight update direction of the clients in FSHA is independent of the main task. Thus, clients can submit a small amount of erroneous data during the training process to observe the variations in gradient information returned by the server, enabling them to detect any malicious behavior on the server side.…”
Section: Related Workmentioning
confidence: 99%
“…Their approach modified model training to reduce data leakage while maintaining accuracy. SplitGuard [174], [175] detected and mitigated hijacking attacks in SL. UnSplit [176] studied data oblivious model inversion, model stealing, and label inference attacks against SL.…”
Section: ) Research On Handling Privacy Issues In Slmentioning
confidence: 99%