TIMPANY-deTectIon of Model Poisoning Attacks usiNg accuracY
- Authors
- Sameen, Maria; Hwang, Seong Oun
- Issue Date
- Oct-2021
- Publisher
- Institute of Electrical and Electronics Engineers Inc.
- Keywords
- Accuracy; Analytical models; Collaborative work; Computational modeling; Data models; Detection framework; Federated Learning; Industrial Internet of Things; Industrial IoTs; Model poisoning attack; Security; Servers
- Citation
- IEEE Access, v.9, pp.139415 - 139425
- Journal Title
- IEEE Access
- Volume
- 9
- Start Page
- 139415
- End Page
- 139425
- URI
- https://scholarworks.bwise.kr/gachon/handle/2020.sw.gachon/82557
- DOI
- 10.1109/ACCESS.2021.3118926
- ISSN
- 2169-3536
- Abstract
- Nowadays, Federated Learning has widely been adopted for data security in the Industrial IoTs. With Federated Learning, local Industrial IoTs devices download the current machine learning model and update it on their own local Industrial IoTs devices. Then, local Industrial IoTs devices transmit these locally trained models back to the Industrial Server. The Industrial Server aggregates all the locally trained models into a single consolidated and enhanced global model. On one side, Federated Learning secures the data; on the other side, Federated Learning itself is vulnerable to one subtle yet severe attack: the model poisoning attack. Model poisoning attack is difficult to detect, especially in Industrial IoTs applications, for two reasons: a) neither the Industrial Server nor the local Industrial IoTs devices in Federated Learning is capable of identifying poisoned local models, and b) every iteration of Federated Learning consists of many Industrial IoTs devices, and therefore, verification of every single device is computationally expensive. Thus, this study proposes an effective and efficient framework for deTectIon of Model Poisoning Attacks usiNg AccuracY (TIMPANY). TIMPANY is the first detection framework for the model poisoning attack that utilizes accuracy as a detection measure. We performed theoretical analysis of TIMPANY with other detection solutions (for model poisoning attack) concerning communication and computational efficiency, security, and detection accuracy. Our thorough theoretical comparative analysis showed that TIMPANY efficiently addresses these open research challenges that previous studies failed to address. In our thorough experimental analysis, error analysis from the first iteration shows that TIMPANY results in 0% error, leading to a True Positive Rate and accuracy of 100% with 0% False Positive Rate. Thus, TIMPANY outperformed some of the existing detection solutions for model poisoning attacks against Federated Learning. We conclude that TIMPANY is effective and efficient against model poisoning attacks in Federated Learning, even for resource-constrained Industrial IoTs devices widely used in various industrial applications. Author
- Files in This Item
- There are no files associated with this item.
- Appears in
Collections - IT융합대학 > 컴퓨터공학과 > 1. Journal Articles
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.