Research Area: Machine Learning
Federated learning (FL) allows a server to learn a machine learning (ML) model across multiple decentralized clients that privately store their own training data. In contrast with centralized ML approaches, FL saves computation to the server and does not require the clients to outsource their private data to the server. However, FL is not free of issues. On the one hand, the model updates sent by the clients at each training epoch might leak information on the clients’ private data. On the other hand, the model learnt by the server may be subjected to attacks by malicious clients; these security attacks might poison the model or prevent it from converging. In this paper, we first examine security and privacy attacks to FL and critically survey solutions proposed in the literature to mitigate each attack. Afterwards, we discuss the difficulty of simultaneously achieving security and privacy protection. Finally, we sketch ways to tackle this open problem and attain both security and privacy.
Keywords:
Author(s) Name: Alberto Blanco-Justicia, Josep Domingo-Ferrer , Sergio Martínez, David Sánchez , Adrian Flanagan, Kuan Eeik Tan
Journal name: Engineering Applications of Artificial Intelligence
Conferrence name:
Publisher name: Elsevier
DOI: 10.1016/j.engappai.2021.104468
Volume Information: Volume 106, November 2021, 104468
