• Corpus ID: 231698402

Federated Intrusion Detection for IoT with Heterogeneous Cohort Privacy

  title={Federated Intrusion Detection for IoT with Heterogeneous Cohort Privacy},
  author={Ajesh Koyatan Chathoth and Abhyuday N. Jagannatha and Stephen Lee},
Internet of Things (IoT) devices are becoming increasingly popular and are influencing many application domains such as healthcare and transportation. These devices are used for real-world applications such as sensor monitoring, real-time control. In this work, we look at differentially private (DP) neural network (NN) based network intrusion detection systems (NIDS) to detect intrusion attacks on networks of such IoT devices. Existing NN training solutions in this domain either ignore privacy… 

Figures and Tables from this paper

Towards Privacy-preserving Framework for Non-Intrusive Load Monitoring
This paper explores the use of differentially private federated learning (DPFL) and studies its effectiveness in mitigating privacy risk for energy-efficiency applications, and develops an open-source framework that streamlines NILM models' training in a privacy-preserving federated manner.
Projected Federated Averaging with Heterogeneous Differential Privacy
This paper proposes PFA, which extracts the top singular subspace of the model updates submitted by "public" clients and utilizes them to project the model Updates of "private" clients before aggregating them, and proposes communication-efficient PFA+, which allows " private" clients to upload projected model updates instead of original ones.
A Review on Plastic Artificial Neural Networks: Exploring the Intersection between Neural Architecture Search and Continual Learning
This study is the first extensive review on the intersection between AutoML and CL, outlining research directions for the different methods that can facilitate full automation and lifelong plasticity in ANNs.


DÏoT: A Federated Self-learning Anomaly Detection System for IoT
DÏoT is highly effective and fast at detecting devices compromised by, for instance, the infamous Mirai malware and is the first system to employ a federated learning approach to anomaly-detection-based intrusion detection.
Federated Learning for Internet of Things: Recent Advances, Taxonomy, and Open Challenges
The recent advances of federated learning towards enabling Federated learning-powered IoT applications are presented and a set of metrics such as sparsification, robustness, quantization, scalability, security, and privacy, is delineated in order to rigorously evaluate the recent advances.
Federated Learning with Non-IID Data
This work presents a strategy to improve training on non-IID data by creating a small subset of data which is globally shared between all the edge devices, and shows that accuracy can be increased by 30% for the CIFAR-10 dataset with only 5% globally shared data.
DP-FL: a novel differentially private federated learning framework for the unbalanced data
Experimental results on several real-world datasets demonstrate that the DF-FL framework can protect data privacy with higher accuracy than existing works.
Toward Generating a New Intrusion Detection Dataset and Intrusion Traffic Characterization
A reliable dataset is produced that contains benign and seven common attack network flows, which meets real world criteria and is publicly avaliable and evaluates the performance of a comprehensive set of network traffic features and machine learning algorithms to indicate the best set of features for detecting the certain attack categories.
Analyzing and Detecting Emerging Internet of Things Malware: A Graph-Based Approach
This paper builds a detection mechanism of IoT malware utilizing control flow graphs (CFGs), and shows that IoT malware samples have a large number of edges despite a smaller number of nodes, which demonstrate a richer flow structure and higher complexity.
Outside the Closed World: On Using Machine Learning for Network Intrusion Detection
The main claim is that the task of finding attacks is fundamentally different from these other applications, making it significantly harder for the intrusion detection community to employ machine learning effectively.
Kitsune: An Ensemble of Autoencoders for Online Network Intrusion Detection
Kitsune is presented: a plug and play NIDS which can learn to detect attacks on the local network, without supervision, and in an efficient online manner, and demonstrates that Kitsune can be a practical and economic NIDS.
Differentially Private Federated Learning: A Client Level Perspective
The aim is to hide clients' contributions during training, balancing the trade-off between privacy loss and model performance, and empirical studies suggest that given a sufficiently large number of participating clients, this procedure can maintain client-level differential privacy at only a minor cost in model performance.