pith. machine review for the scientific record. sign in

arxiv: 1903.03936 · v1 · submitted 2019-03-10 · 💻 cs.LG · cs.CR· cs.DC· stat.ML

Recognition: unknown

Fall of Empires: Breaking Byzantine-tolerant SGD by Inner Product Manipulation

Cong Xie , Sanmi Koyejo , Indranil Gupta
Authors on Pith no claims yet
classification 💻 cs.LG cs.CRcs.DCstat.ML
keywords byzantinebyzantine-tolerantinnermanipulationproducttechniquesworkersaggregation
0
0 comments X
read the original abstract

Recently, new defense techniques have been developed to tolerate Byzantine failures for distributed machine learning. The Byzantine model captures workers that behave arbitrarily, including malicious and compromised workers. In this paper, we break two prevailing Byzantine-tolerant techniques. Specifically we show robust aggregation methods for synchronous SGD -- coordinate-wise median and Krum -- can be broken using new attack strategies based on inner product manipulation. We prove our results theoretically, as well as show empirical validation.

This paper has not been read by Pith yet.

discussion (0)

Sign in with ORCID, Apple, or X to comment. Anyone can read and Pith papers without signing in.

Forward citations

Cited by 1 Pith paper

Reviewed papers in the Pith corpus that reference this work. Sorted by Pith novelty score.

  1. Convergence of Byzantine-Resilient Gradient Tracking via Probabilistic Edge Dropout

    cs.LG 2026-04 unverdicted novelty 7.0

    GT-PD achieves linear convergence to a variance-determined neighborhood in Byzantine settings by clipping messages and using dual-metric probabilistic dropout to preserve doubly stochastic mixing; GT-PD-L adds leaky i...