Saved in:
Bibliographic Details
Main Authors: Wen, Yanhua, Ai, Lu, Liu, Gang, Li, Chuang, Wei, Jianhao
Format: Preprint
Published: 2025
Subjects:
Online Access:https://arxiv.org/abs/2505.12851
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866908370240274432
author Wen, Yanhua
Ai, Lu
Liu, Gang
Li, Chuang
Wei, Jianhao
author_facet Wen, Yanhua
Ai, Lu
Liu, Gang
Li, Chuang
Wei, Jianhao
contents Byzantine attacks during model aggregation in Federated Learning (FL) threaten training integrity by manipulating malicious clients' updates. Existing methods struggle with limited robustness under high malicious client ratios and sensitivity to non-i.i.d. data, leading to degraded accuracy. To address this, we propose FLTG, a novel aggregation algorithm integrating angle-based defense and dynamic reference selection. FLTG first filters clients via ReLU-clipped cosine similarity, leveraging a server-side clean dataset to exclude misaligned updates. It then dynamically selects a reference client based on the prior global model to mitigate non-i.i.d. bias, assigns aggregation weights inversely proportional to angular deviations, and normalizes update magnitudes to suppress malicious scaling. Evaluations across datasets of varying complexity under five classic attacks demonstrate FLTG's superiority over state-of-the-art methods under extreme bias scenarios and sustains robustness with a higher proportion(over 50%) of malicious clients.
format Preprint
id arxiv_https___arxiv_org_abs_2505_12851
institution arXiv
publishDate 2025
record_format arxiv
spellingShingle FLTG: Byzantine-Robust Federated Learning via Angle-Based Defense and Non-IID-Aware Weighting
Wen, Yanhua
Ai, Lu
Liu, Gang
Li, Chuang
Wei, Jianhao
Cryptography and Security
Artificial Intelligence
Byzantine attacks during model aggregation in Federated Learning (FL) threaten training integrity by manipulating malicious clients' updates. Existing methods struggle with limited robustness under high malicious client ratios and sensitivity to non-i.i.d. data, leading to degraded accuracy. To address this, we propose FLTG, a novel aggregation algorithm integrating angle-based defense and dynamic reference selection. FLTG first filters clients via ReLU-clipped cosine similarity, leveraging a server-side clean dataset to exclude misaligned updates. It then dynamically selects a reference client based on the prior global model to mitigate non-i.i.d. bias, assigns aggregation weights inversely proportional to angular deviations, and normalizes update magnitudes to suppress malicious scaling. Evaluations across datasets of varying complexity under five classic attacks demonstrate FLTG's superiority over state-of-the-art methods under extreme bias scenarios and sustains robustness with a higher proportion(over 50%) of malicious clients.
title FLTG: Byzantine-Robust Federated Learning via Angle-Based Defense and Non-IID-Aware Weighting
topic Cryptography and Security
Artificial Intelligence
url https://arxiv.org/abs/2505.12851