RSAM: Byzantine-Robust and Secure Model Aggregation in Federated Learning for Internet of Vehicles Using Private Approximate Median | IEEE Journals & Magazine | IEEE Xplore

RSAM: Byzantine-Robust and Secure Model Aggregation in Federated Learning for Internet of Vehicles Using Private Approximate Median


Abstract:

In Internet-of-Vehicles (IoVs), Federated Learning (FL) is increasingly used by smart vehicles to process various sensing data. FL is a collaborative learning approach th...Show More

Abstract:

In Internet-of-Vehicles (IoVs), Federated Learning (FL) is increasingly used by smart vehicles to process various sensing data. FL is a collaborative learning approach that enables vehicles to train a shared machine learning (ML) model by exchanging their local models instead of their sensitive training data in a distributed manner. Secure aggregation, as a privacy primitive for FL, aims to further protect the local models. However, existing secure aggregation methods for FL in IoVs mostly suffer from poor security against Byzantine attacks, e.g., malicious vehicles submit fake local models, which are common in IoVs and greatly degrade the accuracy of the final shared model without being detected. In this article, we propose a new secure and efficient aggregation approach, RSAM, for resisting Byzantine attacks FL in IoVs. RSAM first securely calculates an approximate median of local models of the distributed vehicles via the divide-and-conquer strategy as the aggregation model in each training round, providing the strong Byzantine robustness that is similar to the real median (a proven robust rank-based statistic) does, where median means the coordinate-wise median. Furthermore, RSAM is a single-server secure aggregation protocol that protects the vehicles' local models and training data against inside conspiracy attacks based on zero-sharing. Finally, RSAM is efficient for vehicles in IoVs, since RSAM transforms the sorting operation over the encrypted data to a small number of comparison operations over plain texts and vector-addition operations over ciphertexts, and the main building block relies on fast symmetric-key primitives. The correctness, Byzantine resilience, and privacy protection of RSAM are analyzed, and extensive experiments demonstrate its effectiveness.
Published in: IEEE Transactions on Vehicular Technology ( Volume: 73, Issue: 5, May 2024)
Page(s): 6714 - 6726
Date of Publication: 18 December 2023

ISSN Information:

Funding Agency:


I. Introduction

In The current era of the Internet of Vehicles (IoVs), smart vehicles have the ability to sense a massive amount of environmental data. With this advanced capacity for data processing, smart vehicles can perform Machine Learning (ML) tasks and train ML models with fusion centers, e.g., cloud and edge servers installed at the Base Stations (BSs) or Roadside Units (RSUs). Collaborative ML enables various transportation-related applications, e.g., traffic prediction, road condition analysis, and route planning [1], [2]. In traditional ML algorithms, vehicles need to share the raw data with fusion centers to perform model training, which raises concerns about privacy leakage as the raw data may be eavesdropped during transmission. Especially in IoVs, the vehicular sensitive data such as coordinates, speed and driving preference is closely related to personal safety and traffic condition.

Contact IEEE to Subscribe

References

References is not available for this document.