Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Skip to main content
SpringerLink
Log in

FedLS: An Anti-poisoning Attack Mechanism for Federated Network Intrusion Detection Systems Using Autoencoder-Based Latent Space Representations

  • Conference paper
  • First Online:
Information Security Practice and Experience (ISPEC 2023)

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 14341))

  • 436 Accesses

Abstract

The recent explosion in the number and advancement of cyberattacks induces the deployment of machine learning (ML)-based network intrusion detection systems (NIDS) in the network infrastructure of each corporation. However, there are plenty of difficulties for enterprise organization in training a conventional ML-based IDS, such as the data shortage, the privacy concerns about sensitive information, etc. Fortunately, federated learning (FL) has emerged as a decentralized training scheme that facilitates the collaboration of different parties in building a robust ML-based NIDS. As a result, this IDS model can learn new signatures of cyber threats from various data sources without the privacy breaches. Nonetheless, because of the server’s blindness to the local training, the FL framework has to face the risks of poisoning attacks where the compromised clients intentionally inject adversarial data into their local dataset or directly manipulate the model weights before updating to the server for aggregation. Several anti-poisoning techniques have been proposed to mitigate the impact of poisoning attacks in FL, but these approaches regularly require some prior knowledge and do not work well in the case of non-Independently and Identically Distributed (non-IID) data environments. This paper introduces a new defensive mechanism for FL-based NIDS, named FedLS, by adopting penultimate layer representations (PLR) and Autoencoder (AE)-based latent space to filter malicious updates from the aggregation phase. The experimental results on CIC-ToN-IoT and N-BaIoT datasets have demonstrated the effectiveness of our FedLS in detecting advanced poisoning methods in both IID and non-IID cases. More specifically, the Accuracy and F1-Score metrics of FL-based NIDS witness a surge to over 99% after integrating our proposed defense in the best case.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 79.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 99.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Similar content being viewed by others

References

  1. Agrawal, S., et al.: Federated learning for intrusion detection system: concepts, challenges and future directions. Comput. Commun. 195 (2022)

    Google Scholar 

  2. Aleesa, A., Zaidan, B., Zaidan, A., Sahar, N.M.: Review of intrusion detection systems based on deep learning techniques: coherent taxonomy, challenges, motivations, recommendations, substantial analysis and future directions. Neural Comput. Appl. 32, 9827–9858 (2020)

    Article  Google Scholar 

  3. Andreina, S., Marson, G.A., Möllering, H., Karame, G.: Baffle: backdoor detection via feedback-based federated learning. In: 2021 IEEE 41st International Conference on Distributed Computing Systems (ICDCS), pp. 852–863 (2021)

    Google Scholar 

  4. Arisdakessian, S., Wahab, O.A., Mourad, A., Otrok, H., Guizani, M.: A survey on IoT intrusion detection: federated learning, game theory, social psychology and explainable AI as future directions. IEEE Internet Things J. 10, 4059–4092 (2022)

    Article  Google Scholar 

  5. Awan, S., Luo, B., Li, F.: CONTRA: defending against poisoning attacks in federated learning. In: Bertino, E., Shulman, H., Waidner, M. (eds.) ESORICS 2021. LNCS, vol. 12972, pp. 455–475. Springer, Cham (2021). https://doi.org/10.1007/978-3-030-88418-5_22

    Chapter  Google Scholar 

  6. Bout, E., Loscri, V., Gallais, A.: How machine learning changes the nature of cyberattacks on IoT networks: a survey. IEEE Commun. Surv. Tutor. 24(1), 248–279 (2022)

    Article  Google Scholar 

  7. Cao, X., Fang, M., Liu, J., Gong, N.Z.: Fltrust: byzantine-robust federated learning via trust bootstrapping. arXiv preprint arXiv:2012.13995 (2020)

  8. Fang, M., Cao, X., Jia, J., Gong, N.Z.: Local model poisoning attacks to byzantine-robust federated learning (2021)

    Google Scholar 

  9. Ghimire, B., Rawat, D.B.: Recent advances on federated learning for cybersecurity and cybersecurity for federated learning for internet of things. IEEE Internet Things J. 9(11), 8229–8249 (2022)

    Article  Google Scholar 

  10. Jeong, H., Son, H., Lee, S., Hyun, J., Chung, T.M.: FedCC: robust federated learning against model poisoning attacks (2022)

    Google Scholar 

  11. Jiang, Y., Zhang, W., Chen, Y.: Data quality detection mechanism against label flipping attacks in federated learning. IEEE Trans. Inf. Forensics Secur. 18, 1625–1637 (2023)

    Article  Google Scholar 

  12. Kaloudi, N., Li, J.: The AI-based cyber threat landscape: a survey. ACM Comput. Surv. (CSUR) 53(1), 1–34 (2020)

    Article  Google Scholar 

  13. Kornblith, S., Norouzi, M., Lee, H., Hinton, G.: Similarity of neural network representations revisited (2019)

    Google Scholar 

  14. Lai, Y.C., et al.: Two-phase defense against poisoning attacks on federated learning-based intrusion detection. Comput. Secur. 129, 103205 (2023)

    Article  Google Scholar 

  15. Lavaur, L., Pahl, M.O., Busnel, Y., Autrel, F.: The evolution of federated learning-based intrusion detection and mitigation: a survey. IEEE Trans. Netw. Serv. Manag. 19(3), 2309–2332 (2022)

    Article  Google Scholar 

  16. Li, X., Qu, Z., Zhao, S., Tang, B., Lu, Z., Liu, Y.: Lomar: a local defense against poisoning attack on federated learning. IEEE Trans. Dependable Secure Comput. 20, 1 (2021)

    Google Scholar 

  17. Liu, P., Xu, X., Wang, W.: Threats, attacks and defenses to federated learning: issues, taxonomy and perspectives. Cybersecurity 5, 1–19 (2022)

    Article  Google Scholar 

  18. Lo, S.K., Lu, Q., Wang, C., Paik, H.Y., Zhu, L.: A systematic literature review on federated machine learning: from a software engineering perspective. ACM Comput. Surv. (CSUR) 54(5), 1–39 (2021)

    Article  Google Scholar 

  19. Mishra, P., Varadharajan, V., Tupakula, U., Pilli, E.S.: A detailed investigation and analysis of using machine learning techniques for intrusion detection. IEEE Commun. Surv. Tutor. 21(1), 686–728 (2019)

    Article  Google Scholar 

  20. Mothukuri, V., Parizi, R.M., Pouriyeh, S., Huang, Y., Dehghantanha, A., Srivastava, G.: A survey on security and privacy of federated learning. Futur. Gener. Comput. Syst. 115, 619–640 (2021)

    Article  Google Scholar 

  21. Son, H.M., Kim, M.H., Chung, T.M.: Compare where it matters: using layer-wise regularization to improve federated learning on heterogeneous data (2021)

    Google Scholar 

  22. Vy, N.C., Quyen, N.H., Duy, P.T., Pham, V.-H.: Federated learning-based intrusion detection in the context of IIoT networks: poisoning attack and defense. In: Yang, M., Chen, C., Liu, Y. (eds.) NSS 2021. LNCS, vol. 13041, pp. 131–147. Springer, Cham (2021). https://doi.org/10.1007/978-3-030-92708-0_8

    Chapter  Google Scholar 

  23. Wang, N., Xiao, Y., Chen, Y., Hu, Y., Lou, W., Hou, Y.T.: Flare: defending federated learning against model poisoning attacks via latent space representations. In: ACM ASIACCS 2022, pp. 946–958 (2022)

    Google Scholar 

  24. Zhang, C., Xie, Y., Bai, H., Yu, B., Li, W., Gao, Y.: A survey on federated learning. Knowl.-Based Syst. 216, 106775 (2021)

    Article  Google Scholar 

  25. Zhang, C., Jia, D., Wang, L., Wang, W., Liu, F., Yang, A.: Comparative research on network intrusion detection methods based on machine learning. Comput. Secur. 121, 102861 (2022)

    Article  Google Scholar 

  26. Zhang, J., Chen, B., Cheng, X., Binh, H.T.T., Yu, S.: PoisonGAN: generative poisoning attacks against federated learning in edge computing systems. IEEE Internet Things J. 8(5), 3310–3322 (2021)

    Article  Google Scholar 

  27. Zhang, J., Chen, J., Wu, D., Chen, B., Yu, S.: Poisoning attack in federated learning using generative adversarial nets. In: 2019 18th IEEE International Conference On Trust, Security And Privacy In Computing And Communications/13th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE), pp. 374–380 (2019)

    Google Scholar 

  28. Zhang, Z., Cao, X., Jia, J., Gong, N.Z.: Fldetector: defending federated learning against model poisoning attacks via detecting malicious clients. Assoc. Comput. Mach. 2545–2555 (2022)

    Google Scholar 

  29. Zhang, Z., Zhang, Y., Guo, D., Yao, L., Li, Z.: Secfednids: robust defense for poisoning attack against federated learning-based network intrusion detection system. Futur. Gener. Comput. Syst. 134, 154–169 (2022)

    Article  Google Scholar 

  30. Zhou, X., Xu, M., Wu, Y., Zheng, N.: Deep model poisoning attack on federated learning. Futur. Internet 13(3), 73 (2021)

    Article  Google Scholar 

Download references

Acknowledgement

This research is funded by the University of Information Technology - Vietnam National University Ho Chi Minh City under grant number D1-2023-16.

Author information

Authors and Affiliations

  1. Information Security Laboratory, University of Information Technology, Ho Chi Minh city, Vietnam

    Tran Duc Luong, Vuong Minh Tien, Phan The Duy & Van-Hau Pham

  2. Vietnam National University, Ho Chi Minh city, Vietnam

    Tran Duc Luong, Vuong Minh Tien, Phan The Duy & Van-Hau Pham

Authors
  1. Tran Duc Luong
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Vuong Minh Tien
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Phan The Duy
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Van-Hau Pham
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Van-Hau Pham .

Editor information

Editors and Affiliations

  1. Technical University of Denmark, Kongens Lyngby, Denmark

    Weizhi Meng

  2. Xidian University, Xi'an, China

    Zheng Yan

  3. University of Milan, Milan, Italy

    Vincenzo Piuri

Rights and permissions

Reprints and permissions

Copyright information

© 2023 The Author(s), under exclusive license to Springer Nature Singapore Pte Ltd.

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Luong, T.D., Tien, V.M., Duy, P.T., Pham, VH. (2023). FedLS: An Anti-poisoning Attack Mechanism for Federated Network Intrusion Detection Systems Using Autoencoder-Based Latent Space Representations. In: Meng, W., Yan, Z., Piuri, V. (eds) Information Security Practice and Experience. ISPEC 2023. Lecture Notes in Computer Science, vol 14341. Springer, Singapore. https://doi.org/10.1007/978-981-99-7032-2_2

Download citation

  • DOI: https://doi.org/10.1007/978-981-99-7032-2_2

  • Published:

  • Publisher Name: Springer, Singapore

  • Print ISBN: 978-981-99-7031-5

  • Online ISBN: 978-981-99-7032-2

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation