AI Article Synopsis
- In federated learning (FL), participants share local updates to create a global model, but balancing accuracy with privacy and security poses challenges, as honest updates may reveal private data while malicious updates can compromise model integrity.
- To address these issues, fragmented federated learning (FFL) allows participants to exchange and mix encrypted fragments of their updates before sending them to the server, enhancing privacy.
- A reputation-based defense is employed in FFL to build trust in participant updates, enabling accurate global model reconstruction while preventing privacy attacks and maintaining overall accuracy based on tests with real data sets.
Article Abstract
In federated learning (FL), a set of participants share updates computed on their local data with an aggregator server that combines updates into a global model. However, reconciling accuracy with privacy and security is a challenge to FL. On the one hand, good updates sent by honest participants may reveal their private local information, whereas poisoned updates sent by malicious participants may compromise the model's availability and/or integrity. On the other hand, enhancing privacy via update distortion damages accuracy, whereas doing so via update aggregation damages security because it does not allow the server to filter out individual poisoned updates. To tackle the accuracy-privacy-security conflict, we propose fragmented FL (FFL), in which participants randomly exchange and mix fragments of their updates before sending them to the server. To achieve privacy, we design a lightweight protocol that allows participants to privately exchange and mix encrypted fragments of their updates so that the server can neither obtain individual updates nor link them to their originators. To achieve security, we design a reputation-based defense tailored for FFL that builds trust in participants and their mixed updates based on the quality of the fragments they exchange and the mixed updates they send. Since the exchanged fragments' parameters keep their original coordinates and attackers can be neutralized, the server can correctly reconstruct a global model from the received mixed updates without accuracy loss. Experiments on four real data sets show that FFL can prevent semi-honest servers from mounting privacy attacks, can effectively counter-poisoning attacks, and can keep the accuracy of the global model.
Download full-text PDF |
Source |
|---|---|
| http://dx.doi.org/10.1109/TNNLS.2022.3212627 | DOI Listing |
Publication Analysis
Top Keywords
Similar Publications
Mean-field approximation for networks with synchrony-driven adaptive coupling.
Chaos
January 2025
School of Mathematics and Statistics, University College Dublin, Dublin 4 D04 V1W8, Ireland.
Synaptic plasticity plays a fundamental role in neuronal dynamics, governing how connections between neurons evolve in response to experience. In this study, we extend a network model of θ-neuron oscillators to include a realistic form of adaptive plasticity. In place of the less tractable spike-timing-dependent plasticity, we employ recently validated phase-difference-dependent plasticity rules, which adjust coupling strengths based on the relative phases of θ-neuron oscillators.
View Article and Find Full Text PDFPoor Olfaction and Risk of Stroke in Older Adults: The Atherosclerosis Risk in Communities Study.
Stroke
February 2025
Department of Epidemiology and Biostatistics, College of Human Medicine, Michigan State University, East Lansing (K.W.C., C.L., Z.L., M.R., H.C.).
Background: Poor olfaction may be associated with adverse cerebrovascular events, but empirical evidence is limited. We aimed to investigate the association of olfaction with the risk of stroke in the Atherosclerosis Risk in Communities Study.
Methods: We included 5799 older adults with no history of stroke at baseline from 2011 to 2013 (75.
Adverse childhood experiences and psychological, sexual, and physical forms of intimate partner violence in Nepal.
Psychol Trauma
January 2025
Hubert Department of Global Health, Rollins School of Public Health, Emory University.
Objective: To examine the prevalence of adverse childhood experiences (ACEs) and intimate partner violence (IPV) among married couples in Nepal as well as the relationships among ACEs, IPV (psychological, sexual, physical), and psychological distress.
Method: The sample comprised the control group ( = 720) of a cluster randomized intervention trial among married women in Nepal. Interviewers assessed ACEs, IPV, quality of life, self-efficacy, and depressive symptoms among participants.
Alternative approaches for monitoring and evaluation of lymphatic filariasis following mass drug treatment with ivermectin, diethylcarbamazine and albendazole in East New Britain Province, Papua New Guinea.
PLoS Negl Trop Dis
January 2025
Department of Pathology, Center for Global Health and Disease, Case Western Reserve University, Cleveland, Ohio, United States of America.
Background: WHO recommends two annual rounds of mass drug administration (MDA) with ivermectin, diethylcarbamazine, and albendazole (IDA) for lymphatic filariasis (LF) elimination in treatment naïve areas that are not co-endemic for onchocerciasis such as Papua New Guinea (PNG). Whether two rounds of MDA are necessary or sufficient and the optimal sampling strategies and endpoints for stopping MDA remain undefined.
Methods And Findings: Two cross-sectional studies were conducted at baseline (N = 49 clusters or villages) and 12 months after mass drug administration (MDA) with IDA (N = 47 villages) to assess lymphatic filariasis (LF) by circulating filarial antigenemia (CFA) and microfilariae (Mf).
Distributed Denial of Services (DDoS) attack detection in SDN using Optimizer-equipped CNN-MLP.
PLoS One
January 2025
Faculty of Informatics and Computing, University Sultan Zainal Abidin, Besut, Terengganu, Malaysia.
Software-Defined Networks (SDN) provides more control and network operation over a network infrastructure as an emerging and revolutionary paradigm in networking. Operating the many network applications and preserving the network services and functions, the SDN controller is regarded as the operating system of the SDN-based network architecture. The SDN has several security problems because of its intricate design, even with all its amazing features.
View Article and Find Full Text PDFWant AI Summaries of new PubMed Abstracts delivered to your In-box?
Enter search terms and have AI summaries delivered each week - change queries or unsubscribe any time!