{"title":"ALGANs: Enhancing membership inference attacks in federated learning with GANs and active learning","authors":"Yuanyuan Xie, Bing Chen, Jiale Zhang, Wenjuan Li","doi":"10.1109/ISPCE-ASIA57917.2022.9971068","DOIUrl":null,"url":null,"abstract":"Federated learning has received a lot of attention in recent years due to its privacy protection features. However, federated learning is susceptible to various inference attacks. Membership inference attack aims to determine whether the target data is a member or non-member of the target federated learning model, which poses a serious threat to the privacy of the training data set. Membership inference method in federated learning is dissatisfied due to a lack of attack data. Recent work shows that generative adversarial networks(GANs) can effectively enrich attack data. However, data generated by GANs lacks labels. Previous work labels data by inputting it to the target classifier model, which may be imprecise when the target model outputs ambiguous results. In this paper, to overcome the lack of attack data and the lack of labels for GANs, we propose ALGANs. ALGANs increases data diversity using GANs while applies active learning to label data generated by GANs. Membership inference attack enhanced by ALGANs has a high attack accuracy due to applying active learning to label data and extensive experimental results prove our point. We performed experiments to show that ALGAN makes membership inference attacks more threatening in federated learning.","PeriodicalId":197173,"journal":{"name":"2022 IEEE International Symposium on Product Compliance Engineering - Asia (ISPCE-ASIA)","volume":"31 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-04","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE International Symposium on Product Compliance Engineering - Asia (ISPCE-ASIA)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISPCE-ASIA57917.2022.9971068","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 1
Abstract
Federated learning has received a lot of attention in recent years due to its privacy protection features. However, federated learning is susceptible to various inference attacks. Membership inference attack aims to determine whether the target data is a member or non-member of the target federated learning model, which poses a serious threat to the privacy of the training data set. Membership inference method in federated learning is dissatisfied due to a lack of attack data. Recent work shows that generative adversarial networks(GANs) can effectively enrich attack data. However, data generated by GANs lacks labels. Previous work labels data by inputting it to the target classifier model, which may be imprecise when the target model outputs ambiguous results. In this paper, to overcome the lack of attack data and the lack of labels for GANs, we propose ALGANs. ALGANs increases data diversity using GANs while applies active learning to label data generated by GANs. Membership inference attack enhanced by ALGANs has a high attack accuracy due to applying active learning to label data and extensive experimental results prove our point. We performed experiments to show that ALGAN makes membership inference attacks more threatening in federated learning.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
