新研究探讨联邦学习的漏洞及后门攻击的防御方法

作者 PulseAugur 编辑部 · [2 个来源] · 2026-05-05 04:00

研究人员开发了新的方法来对抗联邦学习中的复杂后门攻击。一种名为DeTrigger的方法利用梯度分析来检测和移除恶意触发器，同时对模型准确性的影响最小，检测速度比传统方法快251倍。与此同时，另一项研究引入了一个分布式多目标后门攻击（DMBA）框架，使攻击者能够控制具有不同触发器的多个客户端，所有植入的后门攻击成功率均超过80%。 AI

影响新研究突出了联邦学习的漏洞，并提出了针对复杂攻击的高级防御机制。

排序理由两篇arXiv论文提出了在联邦学习中防御和执行后门攻击的新方法。

在 arXiv cs.CV 阅读 →

AI 生成摘要 · Google Gemini · 来自 2 个来源。我们如何撰写摘要 →

报道来源 [2]

arXiv cs.LG TIER_1 English(EN) · Kichang Lee, Yujin Shin, Jonghyuk Yun, Songkuk Kim, Jun Han, JeongGil Ko · 2026-05-08 04:00

DeTrigger: A Gradient-Centric Approach to Backdoor Attack Mitigation in Federated Learning

arXiv:2411.12220v3 Announce Type: replace Abstract: Federated Learning (FL) enables collaborative model training across distributed devices while preserving local data privacy, making it ideal for mobile and embedded systems. However, the decentralized nature of FL also opens vul…
arXiv cs.CV TIER_1 English(EN) · Tao Liu, Dapeng Man, Jiguang Lv, Chen Xu, Weiye Xi, Huanran Wang, Yuhang Zhang, Tianming Zhao, Wu Yang · 2026-05-05 04:00

Act in Collusion: Distributed Multi-Target Backdoor Attacks in Federated Learning

arXiv:2411.03926v3 Announce Type: replace Abstract: Federated learning (FL) is widely used in Internet-of-Things (IoT) systems, but its distributed training process also exposes it to backdoor attacks. Existing studies mainly consider single-target or centralized multi-target set…

报道来源 [2]

DeTrigger: A Gradient-Centric Approach to Backdoor Attack Mitigation in Federated Learning

Act in Collusion: Distributed Multi-Target Backdoor Attacks in Federated Learning

相关实体

相关话题