JSAN, Vol. 14, Pages 83: Can Differential Privacy Hinder Poisoning Attack Detection in Federated Learning?

Greenberg August 7, 2025 in News - 1 Minute

JSAN, Vol. 14, Pages 83: Can Differential Privacy Hinder Poisoning Attack Detection in Federated Learning?

Journal of Sensor and Actuator Networks doi: 10.3390/jsan14040083

Authors:
Chaitanya Aggarwal
Divya G. Nair
Jafar Aco Mohammadi
Jyothisha J. Nair
Jörg Ott

We consider the problem of data poisoning attack detection in a federated learning (FL) setup with differential privacy (DP). Local DP in FL ensures that privacy leakage caused by shared gradients is controlled by adding randomness to the process. We are interested in studying the effect of the Gaussian mechanism in the detection of different data poisoning attacks. As the additive noise from DP could hide poisonous data, the effectiveness of detection algorithms should be analyzed. We present two poisonous data detection algorithms and one malicious client identification algorithm. For the latter, we show that the effect of DP noise decreases as the size of the neural network increases. We further demonstrate this effect alongside the performance of these algorithms on three publicly available datasets.

Source link

Chaitanya Aggarwal www.mdpi.com

Greenberg

Learn More →

Related Posts

Social Sciences, Vol. 14, Pages 560: Exploring Economic and Risk Perceptions Sparking Off-Shore Irregular Migration: West African Youth on the Move

Administrative Sciences, Vol. 15, Pages 371: From Brochures to Bytes: Destination Branding through Social, Mobile, and AI&mdash;A Systematic Narrative Review with Meta-Analysis

Nutrients, Vol. 17, Pages 2996: Aspergillus oryzae Fermentation of Lophatheri Herba Elevates SCFAs and Transforms Flavonoids to Fortify the Gut Barrier via Microbiota Remodeling in Mice

Greenberg

Administrative Sciences, Vol. 15, Pages 371: From Brochures to Bytes: Destination Branding through Social, Mobile, and AI—A Systematic Narrative Review with Meta-Analysis