arXiv Open Access 2025

Sybil-based Virtual Data Poisoning Attacks in Federated Learning

Changxun Zhu Qilong Wu Lingjuan Lyu Shibei Xue

Lihat Sumber

Abstrak

Federated learning is vulnerable to poisoning attacks by malicious adversaries. Existing methods often involve high costs to achieve effective attacks. To address this challenge, we propose a sybil-based virtual data poisoning attack, where a malicious client generates sybil nodes to amplify the poisoning model's impact. To reduce neural network computational complexity, we develop a virtual data generation method based on gradient matching. We also design three schemes for target model acquisition, applicable to online local, online global, and offline scenarios. In simulation, our method outperforms other attack algorithms since our method can obtain a global target model under non-independent uniformly distributed data.

Topik & Kata Kunci

cs.CR cs.LG

Penulis (4)

Changxun Zhu

Qilong Wu

Lingjuan Lyu

Shibei Xue

Format Sitasi

APA MLA BibTeX

Zhu, C., Wu, Q., Lyu, L., Xue, S. (2025). Sybil-based Virtual Data Poisoning Attacks in Federated Learning. https://arxiv.org/abs/2505.09983

Akses Cepat

Lihat di Sumber

Informasi Jurnal

Tahun Terbit: 2025
Bahasa: en
Sumber Database: arXiv
Akses: Open Access ✓