LEGATO: A LayerwisE Gradient AggregaTiOn Algorithm for Mitigating Byzantine Attacks in Federated Learning

Kamala Varma, Yi Zhou, Nathalie Baracaldo, Ali Anwar

Research output: Chapter in Book/Report/Conference proceedingConference contribution

13 Scopus citations

Abstract

Federated learning has arisen as a mechanism to allow multiple participants to collaboratively train a model without sharing their data. In these settings, participants (workers) may not trust each other fully; for instance, a set of competitors may collaboratively train a machine learning model to detect fraud. The workers provide local gradients that a central server uses to update a global model. This global model can be corrupted when Byzantine workers send malicious gradients, which necessitates robust methods for aggregating gradients that mitigate the adverse effects of Byzantine inputs. Existing robust aggregation algorithms are often computationally expensive and only effective under strict assumptions. In this paper, we introduce LayerwisE Gradient AggregatTiOn (LEGATO), an aggregation algorithm that is, by contrast, scalable and generalizable. Informed by a study of layer-specific responses of gradients to Byzantine attacks, LEGATO employs a dynamic gradient reweighing scheme that is novel in its treatment of gradients based on layer-specific robustness. We show that LEGATO is more computationally efficient than multiple state-of-The-Art techniques and more generally robust across a variety of attack settings in practice. We also demonstrate LEGATO's benefits for gradient descent convergence in the absence of an attack.

Original languageEnglish (US)
Title of host publicationProceedings - 2021 IEEE 14th International Conference on Cloud Computing, CLOUD 2021
EditorsClaudio Agostino Ardagna, Carl K. Chang, Ernesto Daminai, Rajiv Ranjan, Zhongjie Wang, Robert Ward, Jia Zhang, Wensheng Zhang
PublisherIEEE Computer Society
Pages272-277
Number of pages6
ISBN (Electronic)9781665400602
DOIs
StatePublished - Sep 2021
Externally publishedYes
Event14th IEEE International Conference on Cloud Computing, CLOUD 2021 - Virtual, Online, United States
Duration: Sep 5 2021Sep 11 2021

Publication series

NameIEEE International Conference on Cloud Computing, CLOUD
Volume2021-September
ISSN (Print)2159-6182
ISSN (Electronic)2159-6190

Conference

Conference14th IEEE International Conference on Cloud Computing, CLOUD 2021
Country/TerritoryUnited States
CityVirtual, Online
Period9/5/219/11/21

Bibliographical note

Publisher Copyright:
© 2021 IEEE.

Keywords

  • Byzantine attacks
  • deep learning
  • federated learning
  • robust aggregation

Fingerprint

Dive into the research topics of 'LEGATO: A LayerwisE Gradient AggregaTiOn Algorithm for Mitigating Byzantine Attacks in Federated Learning'. Together they form a unique fingerprint.

Cite this