English

Linear Scalarization for Byzantine-robust learning on non-IID data

Machine Learning 2022-10-18 v1

Abstract

In this work we study the problem of Byzantine-robust learning when data among clients is heterogeneous. We focus on poisoning attacks targeting the convergence of SGD. Although this problem has received great attention; the main Byzantine defenses rely on the IID assumption causing them to fail when data distribution is non-IID even with no attack. We propose the use of Linear Scalarization (LS) as an enhancing method to enable current defenses to circumvent Byzantine attacks in the non-IID setting. The LS method is based on the incorporation of a trade-off vector that penalizes the suspected malicious clients. Empirical analysis corroborates that the proposed LS variants are viable in the IID setting. For mild to strong non-IID data splits, LS is either comparable or outperforming current approaches under state-of-the-art Byzantine attack scenarios.

Keywords

Cite

@article{arxiv.2210.08287,
  title  = {Linear Scalarization for Byzantine-robust learning on non-IID data},
  author = {Latifa Errami and El Houcine Bergou},
  journal= {arXiv preprint arXiv:2210.08287},
  year   = {2022}
}
R2 v1 2026-06-28T03:42:53.851Z