Explore a critical evaluation of poisoning attacks on federated learning in this 20-minute IEEE conference talk. Delve into traditional machine learning, cross-device FL, and various poisoning attack strategies. Examine key questions, prior work, and three main dimensions of attacks. Analyze global model parameters, model poisoning, and practical threat models. Gain insights into untargeted attacks, data poisoning, and key results across different federated learning scenarios. Evaluate the robustness of federated learning systems and understand the implications for both cross-silo and cross-device implementations.
Back to the Drawing Board - A Critical Evaluation of Poisoning Attacks on Federated Learning
Overview
Syllabus
Introduction
Traditional Machine Learning
CrossDevice FL
Poisoning Attacks
Literature
Key Question
Outline
Prior Work
Three Main Dimensions
Global Model Parameters
Model Poisoning
Takeaways
Impractical Threat Models
Most Severe Threat Model
Untargeted Attacks
Practical Threat Models
Intuition
Data Poisoning
Key Results
Nonrobust Federated Learning
Cross Silo Federated Learning
CrossDevice Federated Learning
Robustness of Federated Learning
Taught by
IEEE Symposium on Security and Privacy
Tags
Related Courses
-
Securing Big Data in the Age of Artificial Intelligence
-
Manipulating Machine Learning - Poisoning Attacks and Countermeasures for Regression Learning
-
LOKI: Large-Scale Data Reconstruction Attack Against Federated Learning Through Model Manipulation - 2024
-
Federated Learning with Formal User-Level Differential Privacy Guarantees
-
Exploiting Unintended Feature Leakage in Collaborative Learning - Congzheng Song
-
Protecting the Protector - Hardening Machine Learning Defenses Against Adversarial Attacks
