TY - JOUR
T1 - Multitentacle Federated Learning Over Software-Defined Industrial Internet of Things Against Adaptive Poisoning Attacks
AU - Li, Gaolei
AU - Wu, Jun
AU - Li, Shenghong
AU - Yang, Wu
AU - Li, Changlian
N1 - Funding Information:
This work was supported in part by the National Natural Science Foundation of China under Grant U21B2019, Grant 61972255, and Grant U20B2048, in part by the Shanghai Sailing Program under Grant 21YF1421700, and in part by the Defence Industrial Technology Development Program under Grant 2020604B004
Publisher Copyright:
© 2005-2012 IEEE.
PY - 2023/2/1
Y1 - 2023/2/1
N2 - Software-defined industrial Internet of things (SD-IIoT) exploits federated learning to process the sensitive data at edges, while adaptive poisoning attacks threat the security of SD-IIoT. To address this problem, this article proposes a multi-tentacle federated learning (MTFL) framework, which is essential to guarantee the trustness of training data in SD-IIoT. In MTFL, participants with similar learning tasks are assigned to the same tentacle group. To identify adaptive poisoning attacks, a tentacle distribution-based efficient poisoning attack detection (TD-EPAD) algorithm is presented. And also, to minimize the impact of adaptive poisoning data, a stochastic tentacle data exchanging (STDE) protocol is also proposed. Simultaneously, to protect the tentacle's privacy in STDE, all exchanged data will be processed by differential privacy technology. A MTFL prototype system is implemented, which provides extensive ablation experiments and comparison experiments, demonstrating that the accuracy of the global model under attack scenario can be improved with 40%.
AB - Software-defined industrial Internet of things (SD-IIoT) exploits federated learning to process the sensitive data at edges, while adaptive poisoning attacks threat the security of SD-IIoT. To address this problem, this article proposes a multi-tentacle federated learning (MTFL) framework, which is essential to guarantee the trustness of training data in SD-IIoT. In MTFL, participants with similar learning tasks are assigned to the same tentacle group. To identify adaptive poisoning attacks, a tentacle distribution-based efficient poisoning attack detection (TD-EPAD) algorithm is presented. And also, to minimize the impact of adaptive poisoning data, a stochastic tentacle data exchanging (STDE) protocol is also proposed. Simultaneously, to protect the tentacle's privacy in STDE, all exchanged data will be processed by differential privacy technology. A MTFL prototype system is implemented, which provides extensive ablation experiments and comparison experiments, demonstrating that the accuracy of the global model under attack scenario can be improved with 40%.
KW - Differential privacy (DP)
KW - multitentacle federated learning (MTFL)
KW - poisoning attacks
KW - software-defined industrial Internet of Things (SD-IIoT)
UR - http://www.scopus.com/inward/record.url?scp=85132541557&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85132541557&partnerID=8YFLogxK
U2 - 10.1109/TII.2022.3173996
DO - 10.1109/TII.2022.3173996
M3 - Article
AN - SCOPUS:85132541557
SN - 1551-3203
VL - 19
SP - 1260
EP - 1269
JO - IEEE Transactions on Industrial Informatics
JF - IEEE Transactions on Industrial Informatics
IS - 2
M1 - 09772337
ER -