Mostrar el registro sencillo del ítem
Dynamic Defense Against Byzantine Poisoning Attacks in Federated Learning
| dc.contributor.author | Rodríguez Barroso, Nuria | |
| dc.contributor.author | Martínez Cámara, Eugenio | |
| dc.contributor.author | Luzón García, María Victoria | |
| dc.contributor.author | Herrera Triguero, Francisco | |
| dc.date.accessioned | 2022-07-07T11:05:58Z | |
| dc.date.available | 2022-07-07T11:05:58Z | |
| dc.date.issued | 2022-02-24 | |
| dc.identifier.citation | Published version: Nuria Rodríguez-Barroso... [et al.]. Dynamic defense against byzantine poisoning attacks in federated learning, Future Generation Computer Systems, Volume 133, 2022, Pages 1-9, ISSN 0167-739X, [https://doi.org/10.1016/j.future.2022.03.003] | es_ES |
| dc.identifier.uri | http://hdl.handle.net/10481/75870 | |
| dc.description.abstract | Federated learning, as a distributed learning that conducts the training on the local devices without accessing to the training data, is vulnerable to Byzatine poisoning adversarial attacks. We argue that the federated learning model has to avoid those kind of adversarial attacks through filtering out the adversarial clients by means of the federated aggregation operator. We propose a dynamic federated aggregation operator that dynamically discards those adversarial clients and allows to prevent the corruption of the global learning model. We assess it as a defense against adversarial attacks deploying a deep learning classification model in a federated learning setting on the Fed-EMNIST Digits, Fashion MNIST and CIFAR-10 image datasets. The results show that the dynamic selection of the clients to aggregate enhances the performance of the global learning model and discards the adversarial and poor (with low quality models) clients. | es_ES |
| dc.description.sponsorship | R&D&I grants - MCIN/AEI, Spain PID-2020-119478GB-I00 PID2020-116118GA-I00 EQC2018-005-084-P | es_ES |
| dc.description.sponsorship | ERDF A way of making Europe | es_ES |
| dc.description.sponsorship | MCIN/AEI FPU18/04475 IJC2018-036092-I | es_ES |
| dc.language.iso | eng | es_ES |
| dc.publisher | Elsevier | es_ES |
| dc.rights | Atribución 4.0 Internacional | * |
| dc.rights.uri | http://creativecommons.org/licenses/by/4.0/ | * |
| dc.subject | Federated learning | es_ES |
| dc.subject | Deep learning | es_ES |
| dc.subject | Adversarial attacks | es_ES |
| dc.subject | Byzantine attacks | es_ES |
| dc.subject | Dynamic aggregation operator | es_ES |
| dc.title | Dynamic Defense Against Byzantine Poisoning Attacks in Federated Learning | es_ES |
| dc.type | info:eu-repo/semantics/article | es_ES |
| dc.rights.accessRights | info:eu-repo/semantics/openAccess | es_ES |
| dc.identifier.doi | 10.1016/j.future.2022.03.003 | |
| dc.type.hasVersion | info:eu-repo/semantics/submittedVersion | es_ES |
Ficheros en el ítem
![[PDF]](/themes/Mirage2/images/thumbnails/mimes/pdf.png "pdf")
Este ítem aparece en la(s) siguiente(s) colección(ones)
Excepto si se señala otra cosa, la licencia del ítem se describe como Atribución 4.0 Internacional