Towards Robust Federated Learning via Logits Calibration on Non-IID Data

Yu Qiao; Apurba Adhikary; Chaoning Zhang; Choong Seon Hong

doi:10.1109/NOMS59830.2024.10575333

Towards Robust Federated Learning via Logits Calibration on Non-IID Data

Yu Qiao, Apurba Adhikary, Chaoning Zhang, Choong Seon Hong

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

1 Citation (Scopus)

Abstract

Federated learning (FL) is a privacy-preserving distributed management framework based on collaborative model training of distributed devices in edge networks. However, recent studies have shown that FL is vulnerable to adversarial examples (AEs), leading to a significant drop in its performance. Meanwhile, the non-independent and identically distributed (non-IID) challenge of data distribution between edge devices can further degrade the performance of models. Consequently, both AEs and non-IID pose challenges to deploying robust learning models at the edge. In this work, we adopt the adversarial training (AT) framework to improve the robustness of FL models against adversarial example (AE) attacks, which can be termed as federated adversarial training (FAT). Moreover, we address the non-IID challenge by implementing a simple yet effective logits calibration strategy under the FAT framework, which can enhance the robustness of models when subjected to adversarial attacks. Specifically, we employ a direct strategy to adjust the logits output by assigning higher weights to classes with small samples during training. This approach effectively tackles the class imbalance in the training data, with the goal of mitigating biases between local and global models. Experimental results on three dataset benchmarks, MNIST, Fashion-MNIST, and CIFAR-10 show that our strategy achieves competitive results in natural and robust accuracy compared to several baselines.

Original language	English
Title of host publication	Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024
Editors	James Won-Ki Hong, Seung-Joon Seok, Yuji Nomura, You-Chiun Wang, Baek-Young Choi, Myung-Sup Kim, Roberto Riggio, Meng-Hsun Tsai, Carlos Raniery Paula dos Santos
Publisher	Institute of Electrical and Electronics Engineers Inc.
ISBN (Electronic)	9798350327939
DOIs	https://doi.org/10.1109/NOMS59830.2024.10575333
Publication status	Published - 2024
Event	2024 IEEE/IFIP Network Operations and Management Symposium, NOMS 2024 - Seoul, Korea, Republic of Duration: 6 May 2024 → 10 May 2024

Publication series

Name	Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024

Conference

Conference	2024 IEEE/IFIP Network Operations and Management Symposium, NOMS 2024
Country/Territory	Korea, Republic of
City	Seoul
Period	6/05/24 → 10/05/24

Bibliographical note

Publisher Copyright:
© 2024 IEEE.

Keywords

Federated learning
adversarial examples
adversarial training
edge network management
logits calibration
non-IID

Access to Document

10.1109/NOMS59830.2024.10575333

Cite this

Qiao, Y., Adhikary, A., Zhang, C., & Hong, C. S. (2024). Towards Robust Federated Learning via Logits Calibration on Non-IID Data. In J. W.-K. Hong, S.-J. Seok, Y. Nomura, Y.-C. Wang, B.-Y. Choi, M.-S. Kim, R. Riggio, M.-H. Tsai, & C. R. P. dos Santos (Eds.), Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024 (Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/NOMS59830.2024.10575333

Qiao, Yu ; Adhikary, Apurba ; Zhang, Chaoning et al. / Towards Robust Federated Learning via Logits Calibration on Non-IID Data. Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024. editor / James Won-Ki Hong ; Seung-Joon Seok ; Yuji Nomura ; You-Chiun Wang ; Baek-Young Choi ; Myung-Sup Kim ; Roberto Riggio ; Meng-Hsun Tsai ; Carlos Raniery Paula dos Santos. Institute of Electrical and Electronics Engineers Inc., 2024. (Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024).

@inproceedings{160f430df12247b3a6a46f18de1dc688,

title = "Towards Robust Federated Learning via Logits Calibration on Non-IID Data",

abstract = "Federated learning (FL) is a privacy-preserving distributed management framework based on collaborative model training of distributed devices in edge networks. However, recent studies have shown that FL is vulnerable to adversarial examples (AEs), leading to a significant drop in its performance. Meanwhile, the non-independent and identically distributed (non-IID) challenge of data distribution between edge devices can further degrade the performance of models. Consequently, both AEs and non-IID pose challenges to deploying robust learning models at the edge. In this work, we adopt the adversarial training (AT) framework to improve the robustness of FL models against adversarial example (AE) attacks, which can be termed as federated adversarial training (FAT). Moreover, we address the non-IID challenge by implementing a simple yet effective logits calibration strategy under the FAT framework, which can enhance the robustness of models when subjected to adversarial attacks. Specifically, we employ a direct strategy to adjust the logits output by assigning higher weights to classes with small samples during training. This approach effectively tackles the class imbalance in the training data, with the goal of mitigating biases between local and global models. Experimental results on three dataset benchmarks, MNIST, Fashion-MNIST, and CIFAR-10 show that our strategy achieves competitive results in natural and robust accuracy compared to several baselines.",

keywords = "Federated learning, adversarial examples, adversarial training, edge network management, logits calibration, non-IID",

author = "Yu Qiao and Apurba Adhikary and Chaoning Zhang and Hong, {Choong Seon}",

note = "Publisher Copyright: {\textcopyright} 2024 IEEE.; 2024 IEEE/IFIP Network Operations and Management Symposium, NOMS 2024 ; Conference date: 06-05-2024 Through 10-05-2024",

year = "2024",

doi = "10.1109/NOMS59830.2024.10575333",

language = "English",

series = "Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

editor = "Hong, {James Won-Ki} and Seung-Joon Seok and Yuji Nomura and You-Chiun Wang and Baek-Young Choi and Myung-Sup Kim and Roberto Riggio and Meng-Hsun Tsai and {dos Santos}, {Carlos Raniery Paula}",

booktitle = "Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024",

address = "United States",

}

Qiao, Y, Adhikary, A, Zhang, C & Hong, CS 2024, Towards Robust Federated Learning via Logits Calibration on Non-IID Data. in JW-K Hong, S-J Seok, Y Nomura, Y-C Wang, B-Y Choi, M-S Kim, R Riggio, M-H Tsai & CRP dos Santos (eds), Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024. Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024, Institute of Electrical and Electronics Engineers Inc., 2024 IEEE/IFIP Network Operations and Management Symposium, NOMS 2024, Seoul, Korea, Republic of, 6/05/24. https://doi.org/10.1109/NOMS59830.2024.10575333

Towards Robust Federated Learning via Logits Calibration on Non-IID Data. / Qiao, Yu; Adhikary, Apurba; Zhang, Chaoning et al.
Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024. ed. / James Won-Ki Hong; Seung-Joon Seok; Yuji Nomura; You-Chiun Wang; Baek-Young Choi; Myung-Sup Kim; Roberto Riggio; Meng-Hsun Tsai; Carlos Raniery Paula dos Santos. Institute of Electrical and Electronics Engineers Inc., 2024. (Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Towards Robust Federated Learning via Logits Calibration on Non-IID Data

AU - Qiao, Yu

AU - Adhikary, Apurba

AU - Zhang, Chaoning

AU - Hong, Choong Seon

PY - 2024

Y1 - 2024

N2 - Federated learning (FL) is a privacy-preserving distributed management framework based on collaborative model training of distributed devices in edge networks. However, recent studies have shown that FL is vulnerable to adversarial examples (AEs), leading to a significant drop in its performance. Meanwhile, the non-independent and identically distributed (non-IID) challenge of data distribution between edge devices can further degrade the performance of models. Consequently, both AEs and non-IID pose challenges to deploying robust learning models at the edge. In this work, we adopt the adversarial training (AT) framework to improve the robustness of FL models against adversarial example (AE) attacks, which can be termed as federated adversarial training (FAT). Moreover, we address the non-IID challenge by implementing a simple yet effective logits calibration strategy under the FAT framework, which can enhance the robustness of models when subjected to adversarial attacks. Specifically, we employ a direct strategy to adjust the logits output by assigning higher weights to classes with small samples during training. This approach effectively tackles the class imbalance in the training data, with the goal of mitigating biases between local and global models. Experimental results on three dataset benchmarks, MNIST, Fashion-MNIST, and CIFAR-10 show that our strategy achieves competitive results in natural and robust accuracy compared to several baselines.

AB - Federated learning (FL) is a privacy-preserving distributed management framework based on collaborative model training of distributed devices in edge networks. However, recent studies have shown that FL is vulnerable to adversarial examples (AEs), leading to a significant drop in its performance. Meanwhile, the non-independent and identically distributed (non-IID) challenge of data distribution between edge devices can further degrade the performance of models. Consequently, both AEs and non-IID pose challenges to deploying robust learning models at the edge. In this work, we adopt the adversarial training (AT) framework to improve the robustness of FL models against adversarial example (AE) attacks, which can be termed as federated adversarial training (FAT). Moreover, we address the non-IID challenge by implementing a simple yet effective logits calibration strategy under the FAT framework, which can enhance the robustness of models when subjected to adversarial attacks. Specifically, we employ a direct strategy to adjust the logits output by assigning higher weights to classes with small samples during training. This approach effectively tackles the class imbalance in the training data, with the goal of mitigating biases between local and global models. Experimental results on three dataset benchmarks, MNIST, Fashion-MNIST, and CIFAR-10 show that our strategy achieves competitive results in natural and robust accuracy compared to several baselines.

KW - Federated learning

KW - adversarial examples

KW - adversarial training

KW - edge network management

KW - logits calibration

KW - non-IID

UR - http://www.scopus.com/inward/record.url?scp=85198363740&partnerID=8YFLogxK

U2 - 10.1109/NOMS59830.2024.10575333

DO - 10.1109/NOMS59830.2024.10575333

M3 - Conference contribution

AN - SCOPUS:85198363740

T3 - Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024

BT - Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024

A2 - Hong, James Won-Ki

A2 - Seok, Seung-Joon

A2 - Nomura, Yuji

A2 - Wang, You-Chiun

A2 - Choi, Baek-Young

A2 - Kim, Myung-Sup

A2 - Riggio, Roberto

A2 - Tsai, Meng-Hsun

A2 - dos Santos, Carlos Raniery Paula

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 2024 IEEE/IFIP Network Operations and Management Symposium, NOMS 2024

Y2 - 6 May 2024 through 10 May 2024

ER -

Qiao Y, Adhikary A, Zhang C, Hong CS. Towards Robust Federated Learning via Logits Calibration on Non-IID Data. In Hong JWK, Seok SJ, Nomura Y, Wang YC, Choi BY, Kim MS, Riggio R, Tsai MH, dos Santos CRP, editors, Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024. Institute of Electrical and Electronics Engineers Inc. 2024. (Proceedings of IEEE/IFIP Network Operations and Management Symposium 2024, NOMS 2024). doi: 10.1109/NOMS59830.2024.10575333

Towards Robust Federated Learning via Logits Calibration on Non-IID Data

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this