Federal learning backdoor attack defense method based on DAGMM

A federated and backdoor technology, applied in the field of DAGMM-based federated learning backdoor attack defense, can solve problems such as non-guarantee, and achieve the effect of improving efficiency and robustness

Active Publication Date: 2021-09-17
ZHEJIANG UNIV OF TECH
View PDF8 Cites 9 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

However, this way of pruning relies on a reliable source of "cle

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Federal learning backdoor attack defense method based on DAGMM
  • Federal learning backdoor attack defense method based on DAGMM
  • Federal learning backdoor attack defense method based on DAGMM

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0048]The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

[0049] refer to Figure 1-3 , a DAGMM-based federated learning backdoor attack defense method, the steps are as follows:

[0050] (1) The client accepts the global model, trains and uploads the local model and the corresponding neuron activation. The training objective of federated learning boils down to a finite optimization:

[0051]

[0052] where N represents that there are N parties processing N local models w respectively, and each party is based on ...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a federal learning backdoor attack defense method based on DAGMM, and the method comprises the following steps: (1) a client receives a global model, and trains and uploads a local model and a corresponding neuron activation condition; (2) the server receives the update and calculates the loss of the corresponding client by using the DAGMM; and (3) defense is performed based on multi-round reconstruction errors. According to the invention, the model can be effectively protected from backdoor attack.

Description

technical field [0001] The invention relates to the technical field of backdoor attack defense, in particular to a DAGMM-based federated learning backdoor attack defense method. Background technique [0002] Federated learning has been proposed to facilitate joint model training utilizing data from multiple clients, where the training process is coordinated by a central server. During the whole process, the client's data is kept locally, and only the model parameters are communicated between clients through the parameter server. [0003] A typical training iteration works as follows: First, the central server sends each client the latest global model. Each client then locally updates the model with local data and reports the updated model to the parameter server. Finally, the server performs model aggregation on all submitted local updates to form a new global model that performs better than models trained with data from any single client. [0004] Compared to the alterna...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
IPC IPC(8): H04L29/06H04L12/24G06N20/20
CPCH04L63/1416H04L63/1466H04L63/20H04L41/142G06N20/20
Inventor 陈晋音刘涛张龙源李荣昌
Owner ZHEJIANG UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap