Detection and Mitigation of Label-Flipping Attacks in Federated Learning Systems with KPCA and K-Means

Detection and Mitigation of Label-Flipping Attacks in Federated Learning Systems with KPCA and K-Means

Federated learning is a popular machine-learning technique that is often preferred due to its efficiency and data privacy. However, federated-learning systems face a serious threat of data poisoning that can cause the systems and predictions to fail if not treated in time. This study extends another...

Full description

Saved in:
Bibliographic Details
Published in:2021 8th International Conference on Dependable Systems and Their Applications (DSA) pp. 551 - 559
Main Authors: Li, Dongcheng, Wong, W. Eric, Wang, Wei, Yao, Yao, Chau, Matthew
Format: Conference Proceeding
Language:English
Published: IEEE 01-08-2021
Subjects:
Clustering algorithms
Collaborative work
data poisoning
Data privacy
Faces
federated learning
KPCA
label flipping
Machine learning
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Federated learning is a popular machine-learning technique that is often preferred due to its efficiency and data privacy. However, federated-learning systems face a serious threat of data poisoning that can cause the systems and predictions to fail if not treated in time. This study extends another study of data-poisoning attacks in federated-learning systems conducted by Tolpegin et al. We first investigate the effectiveness of the defense strategy suggested in Tolpegin's study. Then we propose an improved defense strategy that emphasizes employing KPCA and K-mean clustering. It is demonstrated in this paper that our defense strategy, when combined with improved dimensionality-reduction algorithms, produces better results in defending against data-poisoning attacks in federated-learning systems.
ISSN:2767-6684
DOI:10.1109/DSA52907.2021.00081