Autoencoder for Detecting Malicious Updates in Differentially Private Federated Learning

Lucia Alonso, Mina Alishahi

Research output: Chapter in Book/Report/Conference proceedingConference Article in proceedingAcademicpeer-review

Abstract

Differentially Private Federated Learning (DP-FL) is a novel machine learning paradigm that integrates federated learning with the principles of differential privacy. In DP-FL, a global model is trained across decentralized devices or servers, each holding local data samples, without the need to exchange raw data. This approach ensures data privacy by adding noise to the model updates before aggregation, thus preventing any individual contributor’s data from being compromised. However, ensuring the integrity of the model updates from these contributors is paramount. This research explores the application of autoencoders as a means to detect anomalous or fraudulent updates from contributors in DP-FL. By leveraging the reconstruction errors generated by autoencoders, this study assesses their effectiveness in identifying anomalies while also discussing potential limitations of this approach.

Original languageEnglish
Title of host publicationProceedings of the 21st International Conference on Security and Cryptography, SECRYPT 2024
EditorsSabrina De Capitani Di Vimercati, Pierangela Samarati
PublisherSCITEPRESS-Science and Technology Publications, Lda.
Pages467-474
Number of pages8
ISBN (Electronic)9789897587092
DOIs
Publication statusPublished - 2024
Event21st International Conference on Security and Cryptography, SECRYPT 2024 - Dijon, France
Duration: 8 Jul 202410 Jul 2024
Conference number: 21

Publication series

SeriesProceedings of the International Conference on Security and Cryptography
ISSN2184-7711

Conference

Conference21st International Conference on Security and Cryptography, SECRYPT 2024
Abbreviated titleSECRYPT 2024
Country/TerritoryFrance
CityDijon
Period8/07/2410/07/24

Keywords

  • Anomaly Detection
  • Autoencoder
  • Differential Privacy
  • Federated Learning

Fingerprint

Dive into the research topics of 'Autoencoder for Detecting Malicious Updates in Differentially Private Federated Learning'. Together they form a unique fingerprint.

Cite this