Low Complexity Byzantine-Resilient Federated Learning

A. Gouissem; S. Hassanein; K. Abualsaud; E. Yaacoub; M. Mabrok; M. Abdallah; T. Khattab; M. Guizani

doi:10.1109/TIFS.2024.3482727

Low Complexity Byzantine-Resilient Federated Learning

A. Gouissem^*
, S. Hassanein
, K. Abualsaud
, E. Yaacoub
, M. Mabrok
, M. Abdallah
, T. Khattab
, M. Guizani

^*Corresponding author for this work

CSE Information & Computing Technology

University of Doha for Science and Technology
Qatar University
College of Arts and Sciences
Mohamed Bin Zayed University of Artificial Intelligence

Research output: Contribution to journal › Article › peer-review

2 Citations (Scopus)

Abstract

Federated learning (FL) has gained attention for enabling efficient distributed learning while maintaining data privacy. However, the data privacy constraint reduces the transparency in the agents' model update making the learning process vulnerable to Byzantine attacks. In this paper, a mathematical proof is provided to show that when the traditional model-combining scheme is used, the model will eventually diverge to non-useful solutions in the presence of Byzantine agents independently from their number or their contributions. A low complexity norm-control based aggregation approach is also proposed and shown to converge to the optimal and sub-optimal solutions in the absence or presence of Byzantine nodes, respectively. Monte-Carlo simulations are also conducted to verify and validate the mathematical derivations and the efficiency of the proposed approach in protecting the FL model.

Original language	English
Pages (from-to)	2051-2066
Number of pages	16
Journal	IEEE Transactions on Information Forensics and Security
Volume	20
DOIs	https://doi.org/10.1109/TIFS.2024.3482727
Publication status	Published - 28 Nov 2024

Keywords

Byzantine attacks
Federated learning
convergence analysis
distributed learning
e-health

Access to Document

10.1109/TIFS.2024.3482727

Cite this

@article{393e637575ef47edbde65e30fd3044d1,

title = "Low Complexity Byzantine-Resilient Federated Learning",

abstract = "Federated learning (FL) has gained attention for enabling efficient distributed learning while maintaining data privacy. However, the data privacy constraint reduces the transparency in the agents' model update making the learning process vulnerable to Byzantine attacks. In this paper, a mathematical proof is provided to show that when the traditional model-combining scheme is used, the model will eventually diverge to non-useful solutions in the presence of Byzantine agents independently from their number or their contributions. A low complexity norm-control based aggregation approach is also proposed and shown to converge to the optimal and sub-optimal solutions in the absence or presence of Byzantine nodes, respectively. Monte-Carlo simulations are also conducted to verify and validate the mathematical derivations and the efficiency of the proposed approach in protecting the FL model.",

keywords = "Byzantine attacks, Federated learning, convergence analysis, distributed learning, e-health",

author = "A. Gouissem and S. Hassanein and K. Abualsaud and E. Yaacoub and M. Mabrok and M. Abdallah and T. Khattab and M. Guizani",

note = "Publisher Copyright: {\textcopyright} 2005-2012 IEEE.",

year = "2024",

month = nov,

day = "28",

doi = "10.1109/TIFS.2024.3482727",

language = "English",

volume = "20",

pages = "2051--2066",

journal = "IEEE Transactions on Information Forensics and Security",

issn = "1556-6013",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

}

TY - JOUR

T1 - Low Complexity Byzantine-Resilient Federated Learning

AU - Gouissem, A.

AU - Hassanein, S.

AU - Abualsaud, K.

AU - Yaacoub, E.

AU - Mabrok, M.

AU - Abdallah, M.

AU - Khattab, T.

AU - Guizani, M.

PY - 2024/11/28

Y1 - 2024/11/28

N2 - Federated learning (FL) has gained attention for enabling efficient distributed learning while maintaining data privacy. However, the data privacy constraint reduces the transparency in the agents' model update making the learning process vulnerable to Byzantine attacks. In this paper, a mathematical proof is provided to show that when the traditional model-combining scheme is used, the model will eventually diverge to non-useful solutions in the presence of Byzantine agents independently from their number or their contributions. A low complexity norm-control based aggregation approach is also proposed and shown to converge to the optimal and sub-optimal solutions in the absence or presence of Byzantine nodes, respectively. Monte-Carlo simulations are also conducted to verify and validate the mathematical derivations and the efficiency of the proposed approach in protecting the FL model.

AB - Federated learning (FL) has gained attention for enabling efficient distributed learning while maintaining data privacy. However, the data privacy constraint reduces the transparency in the agents' model update making the learning process vulnerable to Byzantine attacks. In this paper, a mathematical proof is provided to show that when the traditional model-combining scheme is used, the model will eventually diverge to non-useful solutions in the presence of Byzantine agents independently from their number or their contributions. A low complexity norm-control based aggregation approach is also proposed and shown to converge to the optimal and sub-optimal solutions in the absence or presence of Byzantine nodes, respectively. Monte-Carlo simulations are also conducted to verify and validate the mathematical derivations and the efficiency of the proposed approach in protecting the FL model.

KW - Byzantine attacks

KW - Federated learning

KW - convergence analysis

KW - distributed learning

KW - e-health

UR - https://www.scopus.com/pages/publications/85210943407

U2 - 10.1109/TIFS.2024.3482727

DO - 10.1109/TIFS.2024.3482727

M3 - Article

AN - SCOPUS:85210943407

SN - 1556-6013

VL - 20

SP - 2051

EP - 2066

JO - IEEE Transactions on Information Forensics and Security

JF - IEEE Transactions on Information Forensics and Security

ER -

Low Complexity Byzantine-Resilient Federated Learning

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this