Gupta, B B, Gupta, Prajjwal, Yadav, Krishna, Alazab, Mamoun and Gadekallu, Thippa Reddy (2023) A Novel Data Poisoning Attack in Federated Learning based on Inverted Loss Function. Computers & Security, 130. p. 103270. ISSN 0167-4048
pii/S0167404823001803 - Published Version
Download (2kB)
Abstract
Data poisoning attack is one of the common attacks that decreases the performance of a model in edge machine learning. The mechanism used in most of the existing data poisoning attacks diverges the gradients to a minimal extent which prevents models from achieving minima. In our approach, we have come with a new data poisoning attack that inverts the loss function of a benign model. The inverted loss function is then used to create malicious gradients at every SGD iteration, which is almost opposite to that of minima. Such gradients are then used to generate poisoned labels and inject those labels into the dataset. We have tested our attack in three different datasets, i.e. MNIST, Fashion-MNIST, and CIFAR-10, along with some preexisting data poisoning attacks. We have measured the performance of a global model in terms of accuracy drop in federated machine learning settings. The observed result suggests that our attack can be 1.6 times stronger than the targeted attack and 3.2 times stronger than a random poisoning attack in certain cases.
Affiliation: | Skyline University College |
---|---|
SUC Author(s): | Gupta, B B |
All Author(s): | Gupta, B B, Gupta, Prajjwal, Yadav, Krishna, Alazab, Mamoun and Gadekallu, Thippa Reddy |
Item Type: | Article |
Subjects: | B Information Technology > BR Deep Learning B Information Technology > BW Computer Networks |
Divisions: | Skyline University College > School of IT |
Depositing User: | Mr Mosys Team |
Date Deposited: | 25 Dec 2023 13:32 |
Last Modified: | 25 Dec 2023 13:32 |
URI: | https://research.skylineuniversity.ac.ae/id/eprint/740 |
Publisher URL: | https://doi.org/10.1016/j.cose.2023.103270 |
Publisher OA policy: | https://v2.sherpa.ac.uk/id/publication/27894?templ... |
Related URLs: |
|
Actions (login required)
Statistics for this ePrint Item |