联邦加密流量分类中的细粒度防御方法

曾勇; 郭晓亚; 马佰和; 刘志宏; 马建峰

doi:10.19665/j.issn1001-2400.20230303

您当前的位置：

首页 >

文章列表页 >

联邦加密流量分类中的细粒度防御方法

网络空间安全 | 更新时间：2024-04-03

- 联邦加密流量分类中的细粒度防御方法
- Fine-grained defense methods in federated encrypted traffic classification
- 西安电子科技大学学报 2024年51卷第1期页码：157-164
- 作者机构：
  
  1. 西安电子科技大学网络与信息安全学院,陕西西安 710071
  2. 澳大利亚悉尼科技大学全球大数据技术中心,悉尼 2007
- 作者简介：
  
  [ "曾勇(1978—),男,副教授,E-mail:[email protected];" ]
  [ "郭晓亚(1996—),女,西安电子科技大学硕士研究生,E-mail:[email protected];" ]
  [ "马佰和(1994—),男,悉尼科技大学博士研究生,E-mail:[email protected];" ]
  [ "刘志宏(1968—),男,教授,E-mail:[email protected];" ]
  [ "马建峰(1963—),男,教授,E-mail:[email protected]" ]
- 基金信息：
  
  国家自然科学基金(61941105)
- DOI：10.19665/j.issn1001-2400.20230303
  中图分类号： TP393
- 纸质出版日期：2024-1-20，
  
  网络出版日期：2023-8-30，
  
  收稿日期：2022-10-21，
扫描看全文
曾勇, 郭晓亚, 马佰和, 等. 联邦加密流量分类中的细粒度防御方法[J]. 西安电子科技大学学报, 2024,51(1):157-164.

Yong ZENG, Xiaoya GUO, Baihe MA, et al. Fine-grained defense methods in federated encrypted traffic classification[J]. Journal of Xidian University, 2024,51(1):157-164.
曾勇, 郭晓亚, 马佰和, 等. 联邦加密流量分类中的细粒度防御方法[J]. 西安电子科技大学学报, 2024,51(1):157-164. DOI： 10.19665/j.issn1001-2400.20230303.

Yong ZENG, Xiaoya GUO, Baihe MA, et al. Fine-grained defense methods in federated encrypted traffic classification[J]. Journal of Xidian University, 2024,51(1):157-164. DOI： 10.19665/j.issn1001-2400.20230303.

摘要

为了避免异常流量对联邦加密流量分类模型造成危害

研究者们提出了多种鲁棒算法和防御方案。已有方法通过移除异常模型的所有流量来提高鲁棒性。但这种清除节点所有流量的方法是一种粗粒度的防御方法。粗粒度的防御会造成正常流量损失和防御过当的问题。为避免上述问题

结合协作式联邦加密流量分类框架

提出清除异常流量的一种细粒度防御方法。该方法首先通过高效划分异常节点的本地数据集来缩小异常流量的搜索范围

实现细粒度定位异常节点的流量;然后在模型聚合时通过清除异常流量来降低正常流量损失

实现细粒度防御

解决防御过当问题。实验结果表明

与已有防御方案相比

提出的细粒度防御方法可以在不影响准确率的前提下

显著提高模型检测效率。所提出的细粒度防御方法检测准确率可以达到约91.4%

且检测效率与已有方法相比提高了约32.3%。

Abstract

In recent years

various robust algorithms and defense schemes have been presented to prevent the harm caused by abnormal traffic to the federal encrypted traffic classification model.The existing defense methods

which improve the robustness of the global model by removing the traffic of abnormal models

are coarse-grained.Nevertheless

the coarse-grained methods can lead to issues of excessive defense and normal traffic loss.To solve the above problems

we propose a fine-grained defense method to avoid abnormal traffic according to the collaborative federated encrypted traffic classification framework.The proposed method narrows the range of the abnormal traffic by dividing the local data set of abnormal nodes

achieving fine-grained localization of abnormal nodes.According to the localization results of abnormal traffic

the method realizes the fine-grained defense by eliminating abnormal traffic during model aggregation

which avoids the excessive defense and normal traffic loss.Experimental results show that the proposed method can significantly improve the efficiency of model detection without affecting accuracy.Compared with the existing coarse-grained methods

the accuracy of the fine-grained defense method can reach 91.4%

and the detection efficiency is improved by 32.3%.

关键词

加密流量分类联邦学习异常检测细粒度防御

Keywords

encrypted traffic classificationfederated learningabnormal detectionfine-grained defense

references

ZHOU Y, SHI H, ZHAO Y, et al. Encrypted Network Traffic Identification Based on 2D-CNN Model[C]//2021 22nd Asia-Pacific Network Operations and Management Symposium(APNOMS). Piscataway:IEEE, 2021:238-241.

曾勇, 吴正远, 董丽华, 等. 加密流量中的恶意流量识别技术[J]. 西安电子科技大学学报, 2021, 48(3):170-187.

ZENG Yong, WU Zhengyuan, DONG Lihua, et al. Research on Malicious Traffic Identification Technology in Encrypted Traffic[J]. Journal of XIDIAN University, 2021, 48(3):170-187.

ZHU X F, SHU N, WANG H X, et al. A Distributed Traffic Classification Model Based on Federated Learning[C]//2021 7th International Conference on Big Data Computing and Communications(BigCom). Piscataway:IEEE, 2021:75-81.

YANG Z, CHEN M, WONG KK, et al. Federated Learning for 6G:Applications,Challenges,and Opportunities[J]. Engineering, 2022, 8(1):33-41.

王坤庆, 刘婧, 李晨, 等. 联邦学习安全威胁综述[J]. 信息安全研究, 2022, 8(3):223-234.

WANG Kunqing, LI Jing, LI Chen, et al. A Survey on Threats to Federated Learning[J]. Journal of Information Securyity Research, 2022, 8(3):223-234.

CHEN Y, SU L, XU J. Distributed Statistical Machine Learning in Adversarial Settings:Byzantine Gradient Descent[J]. Proc.ACM Meas.Anal.Comput.Syst., 2017, 1(2):44.1-44.25.

YIN D, CHEN Y, RAMCHANDRAN K, et al. Defending Against Saddle Point Attack in Byzantine-Robust DistributedLearning.[C]// Proceedings of the 36th International Conference on Machine Learning. San Diego: ICML, 2019:7074-7084.

NGUYEN T D, RIEGER P, YALAME H, et al. Flguard:Secure and Private Federated Learning[J/OL].[2022-01-01].https://arxiv.org/abs/2101.02281v5. https://arxiv.org/abs/2101.02281v5https://arxiv.org/abs/2101.02281v5

CAO X, JIA J, GONG N Z. ProvablySecure Federated Learning Against Malicious Clients[J]. Proceedings of the AAAI Conference on Artificial Intelligence. 2021, 35(8):6885-6893.

TSAI JJ P, YU P S. Machine Learning in Cyber Trust[M]. Berlin:Springer, 2009:17-51.

BARACALDO N, CHEN B, LUDWIG H, et al. MitigatingPoisoning Attacks on Machine Learning Models:A Data Provenance Based Approach[C]// Proceedings of the 10th ACM Workshop on Artificial Intelligence and Security. New York: ACM, 2017:103-110.

RAJPUT S, WANG H, CHARLES Z, et al. DETOX:ARedundancy-Based Framework for Faster and More Robust Gradient Aggregation[C]// Proceedings of the 33rd International Conference on Neural Information Processing Systems. New York: ACM, 2019:10320-10330.

FANG M, CAO X, JIA J, et al. LocalModel Poisoning Attacks to Byzantine-Robust Federated Learning[C]//29th USENIX Security Symposium. Berkeley: USENIX, 2020:1623-1640.

MCMAHAN H, MOORE E, RAMAGE D, et al. Communication-Efficient Learning of Deep Networks from Decentralized Data[J/OL].[2022-01-01].https://arxiv.org/abs/1602.05629v3. https://arxiv.org/abs/1602.05629v3https://arxiv.org/abs/1602.05629v3

LECUN Y, BOTTOU L, BENGIO Y, et al. Gradient-Based Learning Applied to Document Recognition[J]. Proceedings of the IEEE, 1998, 86(11):2278-2324.

RUBINSTEIN R. TheCross-Entropy Method for Combinatorial and Continuous Optimization[J]. Methodology and Computing in Applied Probability, 1999, 1(2):127-190.

MONTAVON G, ORR G B, MüLLER K R. Neural Networks:Tricks of the Trade[M].Second Edition. Berlin:Springer, 2012:421-436.

LI S, CHENG Y, LIU Y, et al. AbnormalClient Behavior Detection in Federated Learning[J/OL].[2022-01-01].https://arxiv.org/abs/1910.09933. https://arxiv.org/abs/1910.09933https://arxiv.org/abs/1910.09933

XIAO H, XIAO H, ECKERT C. Adversarial Label Flips Attack on Support Vector Machines[C]//Proceedings of the 20th European Conference on Artificial Intelligence. New York: ACM, 2012:870-875.

LASHKARI A H, KAUR G, RAHALI A. DIDarknet:A Contemporary Approach to Detect and Characterize the Darknet Traffic Using Deep Image Learning[C]//Proceedings of the 2020 10th International Conference on Communication and Network Security. New York: ACM, 2020:1-13.

更多指标>

浏览量

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

一种高效的联邦学习隐私保护方案

面向医疗数据的隐私保护联邦学习架构

反迁移学习的隐私保护联邦学习

自适应裁剪的差分隐私联邦学习框架

隐私保护的拜占庭鲁棒联邦学习算法