Random Walk Learning and the Pac-Man Attack
Abstract
Random walk (RW)-based algorithms have long been popular in distributed systems due to low overheads and scalability, with recent growing applications in decentralized learning. However, their reliance on local interactions makes them inherently vulnerable to malicious behavior. In this work, we investigate an adversarial threat that we term the ``Pac-Man'' attack, in which a malicious node probabilistically terminates any RW that visits it. This stealthy behavior gradually eliminates active RWs from the network, effectively halting the learning process without triggering failure alarms. To counter this threat, we propose the Average Crossing (AC) algorithm--a fully decentralized mechanism for duplicating RWs to prevent RW extinction in the presence of Pac-Man. Our theoretical analysis establishes that (i) the RW population remains almost surely bounded under AC and (ii) RW-based stochastic gradient descent remains convergent under AC, even in the presence of Pac-Man, with a quantifiable deviation from the true optimum. Our extensive empirical results on both synthetic and real-world datasets corroborate our theoretical findings. Furthermore, they uncover a phase transition in the extinction probability as a function of the duplication threshold. We offer theoretical insights by analyzing a simplified variant of the AC, which sheds light on the observed phase transition.
Cite
@article{arxiv.2508.05663,
title = {Random Walk Learning and the Pac-Man Attack},
author = {Xingran Chen and Parimal Parag and Rohit Bhagat and Zonghong Liu and Salim El Rouayheb},
journal= {arXiv preprint arXiv:2508.05663},
year = {2026}
}
Comments
The updated manuscript represents an incomplete version of the work. A substantially updated version will be prepared before further dissemination