Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning

Nourah AlOtaibi; Muhamad Felemban; Sajjad Mahmood

doi:10.1007/978-3-031-75016-8_19

Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning

Nourah AlOtaibi^*
, Muhamad Felemban
, Sajjad Mahmood

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Federated learning (FL) enhances data privacy by enabling decentralized model training without sharing local data. However, FL is vulnerable to Label-Flipping-Attacks (LFA), where malicious clients flip data labels. Traditionally, cloud-centric centralized defenses against LFA pose security and efficiency challenges. We propose a novel edge-based decentralized LFA detection method using edge servers for efficient detection. The proposed method considers the overall and class-wise accuracy in identifying suspicious clients. Initially, we adopt a strict zero-tolerance approach by excluding the entire update from detected malicious clients. We then experiment with four aggregation techniques-subtracting, masking, clipping, and reweighting–to handle the malicious parts of updates by focusing on the final layer neurons corresponding to specific classes. Experiments using three datasets demonstrate the effectiveness, robustness, and efficiency of our method, showing improved model performance and reduced latency under adversarial conditions. This approach improves the security and reliability of FL systems while maintaining data privacy.

Original language	English
Title of host publication	International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024
Editors	Héctor Quintián, Esteban Jove, Emilio Corchado, Alicia Troncoso Lora, Francisco Martínez Álvarez, Hilde Pérez García, José Luis Calvo Rolle, Francisco Javier Martínez de Pisón, Pablo García Bringas, Álvaro Herrero Cosío, Paolo Fosci
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	201-211
Number of pages	11
ISBN (Print)	9783031750151
DOIs	https://doi.org/10.1007/978-3-031-75016-8_19
State	Published - 2024
Event	17th International Conference on Computational Intelligence in Security for Information Systems, CISIS 2024 and the 15th International Conference on EUropean Transnational Education, ICEUTE 2024 - Salamanca, Spain Duration: 8 Oct 2024 → 10 Oct 2024

Publication series

Name	Lecture Notes in Networks and Systems
Volume	957 LNNS
ISSN (Print)	2367-3370
ISSN (Electronic)	2367-3389

Conference

Conference	17th International Conference on Computational Intelligence in Security for Information Systems, CISIS 2024 and the 15th International Conference on EUropean Transnational Education, ICEUTE 2024
Country/Territory	Spain
City	Salamanca
Period	8/10/24 → 10/10/24

Bibliographical note

Publisher Copyright:
© The Author(s), under exclusive license to Springer Nature Switzerland AG 2024.

Keywords

Aggregation
Edge intelligence
Federated learning
Poisoning attack
Security and privacy

ASJC Scopus subject areas

Control and Systems Engineering
Signal Processing
Computer Networks and Communications

Access to Document

10.1007/978-3-031-75016-8_19

Cite this

AlOtaibi, N., Felemban, M., & Mahmood, S. (2024). Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning. In H. Quintián, E. Jove, E. Corchado, A. Troncoso Lora, F. Martínez Álvarez, H. Pérez García, J. L. Calvo Rolle, F. J. Martínez de Pisón, P. García Bringas, Á. Herrero Cosío, & P. Fosci (Eds.), International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024 (pp. 201-211). (Lecture Notes in Networks and Systems; Vol. 957 LNNS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-75016-8_19

AlOtaibi, Nourah ; Felemban, Muhamad ; Mahmood, Sajjad. / Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning. International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024. editor / Héctor Quintián ; Esteban Jove ; Emilio Corchado ; Alicia Troncoso Lora ; Francisco Martínez Álvarez ; Hilde Pérez García ; José Luis Calvo Rolle ; Francisco Javier Martínez de Pisón ; Pablo García Bringas ; Álvaro Herrero Cosío ; Paolo Fosci. Springer Science and Business Media Deutschland GmbH, 2024. pp. 201-211 (Lecture Notes in Networks and Systems).

@inproceedings{c759d02d57de441e99ffb78b92fae9bb,

title = "Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning",

abstract = "Federated learning (FL) enhances data privacy by enabling decentralized model training without sharing local data. However, FL is vulnerable to Label-Flipping-Attacks (LFA), where malicious clients flip data labels. Traditionally, cloud-centric centralized defenses against LFA pose security and efficiency challenges. We propose a novel edge-based decentralized LFA detection method using edge servers for efficient detection. The proposed method considers the overall and class-wise accuracy in identifying suspicious clients. Initially, we adopt a strict zero-tolerance approach by excluding the entire update from detected malicious clients. We then experiment with four aggregation techniques-subtracting, masking, clipping, and reweighting–to handle the malicious parts of updates by focusing on the final layer neurons corresponding to specific classes. Experiments using three datasets demonstrate the effectiveness, robustness, and efficiency of our method, showing improved model performance and reduced latency under adversarial conditions. This approach improves the security and reliability of FL systems while maintaining data privacy.",

keywords = "Aggregation, Edge intelligence, Federated learning, Poisoning attack, Security and privacy",

author = "Nourah AlOtaibi and Muhamad Felemban and Sajjad Mahmood",

note = "Publisher Copyright: {\textcopyright} The Author(s), under exclusive license to Springer Nature Switzerland AG 2024.; 17th International Conference on Computational Intelligence in Security for Information Systems, CISIS 2024 and the 15th International Conference on EUropean Transnational Education, ICEUTE 2024 ; Conference date: 08-10-2024 Through 10-10-2024",

year = "2024",

doi = "10.1007/978-3-031-75016-8\_19",

language = "English",

isbn = "9783031750151",

series = "Lecture Notes in Networks and Systems",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "201--211",

editor = "H{\'e}ctor Quinti{\'a}n and Esteban Jove and Emilio Corchado and \{Troncoso Lora\}, Alicia and \{Mart{\'i}nez {\'A}lvarez\}, Francisco and \{P{\'e}rez Garc{\'i}a\}, Hilde and \{Calvo Rolle\}, \{Jos{\'e} Luis\} and \{Mart{\'i}nez de Pis{\'o}n\}, \{Francisco Javier\} and \{Garc{\'i}a Bringas\}, Pablo and \{Herrero Cos{\'i}o\}, {\'A}lvaro and Paolo Fosci",

booktitle = "International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024",

address = "Germany",

}

AlOtaibi, N, Felemban, M & Mahmood, S 2024, Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning. in H Quintián, E Jove, E Corchado, A Troncoso Lora, F Martínez Álvarez, H Pérez García, JL Calvo Rolle, FJ Martínez de Pisón, P García Bringas, Á Herrero Cosío & P Fosci (eds), International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024. Lecture Notes in Networks and Systems, vol. 957 LNNS, Springer Science and Business Media Deutschland GmbH, pp. 201-211, 17th International Conference on Computational Intelligence in Security for Information Systems, CISIS 2024 and the 15th International Conference on EUropean Transnational Education, ICEUTE 2024, Salamanca, Spain, 8/10/24. https://doi.org/10.1007/978-3-031-75016-8_19

Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning. / AlOtaibi, Nourah; Felemban, Muhamad ; Mahmood, Sajjad.
International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024. ed. / Héctor Quintián; Esteban Jove; Emilio Corchado; Alicia Troncoso Lora; Francisco Martínez Álvarez; Hilde Pérez García; José Luis Calvo Rolle; Francisco Javier Martínez de Pisón; Pablo García Bringas; Álvaro Herrero Cosío; Paolo Fosci. Springer Science and Business Media Deutschland GmbH, 2024. p. 201-211 (Lecture Notes in Networks and Systems; Vol. 957 LNNS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning

AU - AlOtaibi, Nourah

AU - Felemban, Muhamad

AU - Mahmood, Sajjad

N1 - Publisher Copyright: © The Author(s), under exclusive license to Springer Nature Switzerland AG 2024.

PY - 2024

Y1 - 2024

N2 - Federated learning (FL) enhances data privacy by enabling decentralized model training without sharing local data. However, FL is vulnerable to Label-Flipping-Attacks (LFA), where malicious clients flip data labels. Traditionally, cloud-centric centralized defenses against LFA pose security and efficiency challenges. We propose a novel edge-based decentralized LFA detection method using edge servers for efficient detection. The proposed method considers the overall and class-wise accuracy in identifying suspicious clients. Initially, we adopt a strict zero-tolerance approach by excluding the entire update from detected malicious clients. We then experiment with four aggregation techniques-subtracting, masking, clipping, and reweighting–to handle the malicious parts of updates by focusing on the final layer neurons corresponding to specific classes. Experiments using three datasets demonstrate the effectiveness, robustness, and efficiency of our method, showing improved model performance and reduced latency under adversarial conditions. This approach improves the security and reliability of FL systems while maintaining data privacy.

AB - Federated learning (FL) enhances data privacy by enabling decentralized model training without sharing local data. However, FL is vulnerable to Label-Flipping-Attacks (LFA), where malicious clients flip data labels. Traditionally, cloud-centric centralized defenses against LFA pose security and efficiency challenges. We propose a novel edge-based decentralized LFA detection method using edge servers for efficient detection. The proposed method considers the overall and class-wise accuracy in identifying suspicious clients. Initially, we adopt a strict zero-tolerance approach by excluding the entire update from detected malicious clients. We then experiment with four aggregation techniques-subtracting, masking, clipping, and reweighting–to handle the malicious parts of updates by focusing on the final layer neurons corresponding to specific classes. Experiments using three datasets demonstrate the effectiveness, robustness, and efficiency of our method, showing improved model performance and reduced latency under adversarial conditions. This approach improves the security and reliability of FL systems while maintaining data privacy.

KW - Aggregation

KW - Edge intelligence

KW - Federated learning

KW - Poisoning attack

KW - Security and privacy

UR - https://www.scopus.com/pages/publications/85210144601

U2 - 10.1007/978-3-031-75016-8_19

DO - 10.1007/978-3-031-75016-8_19

M3 - Conference contribution

AN - SCOPUS:85210144601

SN - 9783031750151

T3 - Lecture Notes in Networks and Systems

SP - 201

EP - 211

BT - International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024

A2 - Quintián, Héctor

A2 - Jove, Esteban

A2 - Corchado, Emilio

A2 - Troncoso Lora, Alicia

A2 - Martínez Álvarez, Francisco

A2 - Pérez García, Hilde

A2 - Calvo Rolle, José Luis

A2 - Martínez de Pisón, Francisco Javier

A2 - García Bringas, Pablo

A2 - Herrero Cosío, Álvaro

A2 - Fosci, Paolo

PB - Springer Science and Business Media Deutschland GmbH

T2 - 17th International Conference on Computational Intelligence in Security for Information Systems, CISIS 2024 and the 15th International Conference on EUropean Transnational Education, ICEUTE 2024

Y2 - 8 October 2024 through 10 October 2024

ER -

AlOtaibi N, Felemban M , Mahmood S. Decentralized Edge-Based Detection of Label Flipping Attacks in Federated Learning. In Quintián H, Jove E, Corchado E, Troncoso Lora A, Martínez Álvarez F, Pérez García H, Calvo Rolle JL, Martínez de Pisón FJ, García Bringas P, Herrero Cosío Á, Fosci P, editors, International Joint Conferences - 17th International Conference on Computational Intelligence in Security for Information Systems CISIS 2024 and 15th International Conference on European Transnational Education ICEUTE 2024. Springer Science and Business Media Deutschland GmbH. 2024. p. 201-211. (Lecture Notes in Networks and Systems). doi: 10.1007/978-3-031-75016-8_19