Defense Strategies Toward Model Poisoning Attacks in Federated Learning: A Survey

February 13, 2022 · The Cartographer · 🏛 IEEE Wireless Communications and Networking Conference

"No code URL or promise found in abstract"
"Title-pattern auto-detect: Defense Strategies Toward Model Poisoning Attacks in Federated Learning: A Survey"

Evidence collected by the PWNC Scanner

Authors Zhilin Wang, Qiao Kang, Xinyi Zhang, Qin Hu arXiv ID 2202.06414 Category cs.CR: Cryptography & Security Cross-listed cs.DC Citations 26 Venue IEEE Wireless Communications and Networking Conference Last Checked 2 days ago

Abstract

Advances in distributed machine learning can empower future communications and networking. The emergence of federated learning (FL) has provided an efficient framework for distributed machine learning, which, however, still faces many security challenges. Among them, model poisoning attacks have a significant impact on the security and performance of FL. Given that there have been many studies focusing on defending against model poisoning attacks, it is necessary to survey the existing work and provide insights to inspire future research. In this paper, we first classify defense mechanisms for model poisoning attacks into two categories: evaluation methods for local model updates and aggregation methods for the global model. Then, we analyze some of the existing defense strategies in detail. We also discuss some potential challenges and future research directions. To the best of our knowledge, we are the first to survey defense methods for model poisoning attacks in FL.