Attack of the Tails: Yes, You Really Can Backdoor Federated Learning

Published in Neurips 20, 2020

Due to its decentralized nature, Federated Learning (FL) lends itself to adversarial attacks in the form of backdoors during training. The goal of a backdoor is to corrupt the performance of the trained model on specific sub-tasks (e.g., by classifying green cars as frogs)

