Towards Poisoning of Federated Support Vector Machines with Data Poisoning Attacks

Israt Jahan Mouri; Muhammad Ridowan; Muhammad Adnan

doi:10.5220/0011825800003488

Towards Poisoning of Federated Support Vector Machines with Data Poisoning Attacks

Israt Jahan Mouri, Muhammad Ridowan, Muhammad Adnan

2023

Abstract

Federated Support Vector Machine (F-SVM) is a technology that enables distributed edge devices to collectively learn a common SVM model without sharing data samples. Instead, edge devices submit local updates to the global machine, which are then aggregated and sent back to edge devices. Due to the distributed nature of federated learning, edge devices are vulnerable to poisoning attacks, especially during training. Attackers in adversarial edge devices can poison the dataset to hamper the global machine’s accuracy. This study investigates the impact of data poisoning attacks on federated SVM classifiers. In particular, we adopt two widespread data poisoning attacks for SVM named label flipping and optimal poisoning attacks for F-SVM and evaluate their impact on the MNIST and CIFAR10 datasets. We measure the impact of these poisoning attacks on the precision of global training. Results show that 33% of adversarial edge devices can reduce accuracy up to 30%. Furthermore, we also investigate some basic defense strategies against poisoning attacks on federated SVM.

Download

Paper Citation

in Harvard Style

Jahan Mouri I., Ridowan M. and Adnan M. (2023). Towards Poisoning of Federated Support Vector Machines with Data Poisoning Attacks. In Proceedings of the 13th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER, ISBN 978-989-758-650-7, SciTePress, pages 24-33. DOI: 10.5220/0011825800003488

in Bibtex Style

@conference{closer23,
author={Israt Jahan Mouri and Muhammad Ridowan and Muhammad Adnan},
title={Towards Poisoning of Federated Support Vector Machines with Data Poisoning Attacks},
booktitle={Proceedings of the 13th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,},
year={2023},
pages={24-33},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011825800003488},
isbn={978-989-758-650-7},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 13th International Conference on Cloud Computing and Services Science - Volume 1: CLOSER,
TI - Towards Poisoning of Federated Support Vector Machines with Data Poisoning Attacks
SN - 978-989-758-650-7
AU - Jahan Mouri I.
AU - Ridowan M.
AU - Adnan M.
PY - 2023
SP - 24
EP - 33
DO - 10.5220/0011825800003488
PB - SciTePress