南通大学学报(自然科学版)2024,Vol.23Issue(3):34-46,13.DOI:10.12194/j.ntu.20240419001
基于后门攻击的联邦学习恶意软件检测系统脆弱性分析
Vulnerability analysis of federated learning malware detection systems based on backdoor attacks
摘要
Abstract
Deep learning has become one of the core technologies for malware detection.However,it relies on centralized training,requiring regular updates to databases and retraining to cope with the continuous evolution of malware.Federated learning,an emerging distributed learning technology,addresses these issues by training classification models locally on multiple clients and sharing the learning outcomes to build a global model,thus effectively protecting data privacy and adapting to diverse malware.Despite these advantages,federated learning's distributed nature makes it vulnerable to backdoor attacks from malicious clients.This study investigates the vulnerabilities of federated learning in malware detection and analyzes potential malicious attacks such as label flipping attacks and model poisoning attacks.Based on this analysis,a novel covert federated adaptive backdoor attack(FABA)is proposed.This attack strategy exploits the characteristics of federated learning by continuously adjusting triggers du-ring client-server interactions to maximize attack effectiveness and concealment.Testing on the Virus-MNIST and Malimg datasets demonstrates that the proposed method achieves a 100%attack success rate while maintaining high levels of stealth,with almost no impact on the prediction accuracy of clean samples.Moreover,the proposed strategy retains high attack success rates and stealth even against the latest defense mechanisms.The use of tiny triggers(only 9 pixels)and a very low proportion of malicious clients(3%)highlights the potential security risks in federated learning and provides crucial insights for future defensive strategies.关键词
联邦学习/后门攻击/恶意软件检测Key words
federated learning/backdoor attack/malware detection分类
信息技术与安全科学引用本文复制引用
芦星宇,曹阳..基于后门攻击的联邦学习恶意软件检测系统脆弱性分析[J].南通大学学报(自然科学版),2024,23(3):34-46,13.基金项目
国家自然科学基金青年科学基金项目(62103103) (62103103)
江苏省自然科学基金青年科学基金项目(BK20210223) (BK20210223)
江苏省应用数学科学研究中心项目(BK20233002) (BK20233002)
