2019
UAI
UAI 2019
Fall of Empires: Breaking Byzantine-tolerant SGD by Inner Product Manipulation
Abstract
Recently, new defense techniques have been developed to tolerate Byzantine failures for distributed machine learning. The Byzantine model captures workers that behave arbitrarily, including malicious and compromised workers. In this paper, we break two prevailing Byzantine-tolerant techniques. Specifically we show that two robust aggregation methods for synchronous SGD–namely, coordinate-wise median and Krum–can be broken using new attack strategies based on inner product manipulation. We prove our results theoretically, as well as show empirical validation.
🚀
Conference Pioneer
— UAI 2019
🧭
Keyword Pioneer
— byzantine tolerance
🐣
Hot Topic Early Bird
— stochastic gradient descent
🐝
Cross-Pollinator
— Artificial Intelligence, Computer Science, Computer Vision, Data Science & Analytics, Deep Learning, Knowledge & Reasoning, Machine Learning, Mathematics & Optimization, Natural Language Processing, Reinforcement Learning, Speech & Audio
🌉
Interdisciplinary Bridge
— Deep Learning and Machine Learning
📈
Trend Setter
— Federated Learning
Authors
Topics
Machine Learning > Learning Types > Adversarial Learning
Machine Learning > Optimization & Theory > Distributed Learning
Machine Learning > Learning Types > Federated Learning
Machine Learning > Optimization & Theory > Stochastic Methods
Deep Learning > Learning Types > Adversarial Learning
Machine Learning > Learning Types > Distributed Learning