Abstract
Adopting Federated Learning (FL) in Intrusion Detection Systems (IDS) for IoT enhances privacy by decentralizing model training. However, FL is still vulnerable to adversarial threats, particularly Label-Flipping Attacks (LFA) that manipulate local training data to degrade model performance. This paper introduces the Adaptive Gradient-Guided Label Flipping Attack (Adapt-LFA), which strategically flips training labels using gradient-based optimization to maximize classification errors while minimizing detection risks. Evaluations on the CSE-CICIDS2018 and CICIoV2024 datasets show that Adapt-LFA reduces accuracy by 10% in Recurrent Neural Networks (RNN) and 13% in Convolutional Neural Networks (CNN), outperforming baseline LFA in disrupting FL-based IDS. These results highlight the effectiveness of the attack in degrading IDS performance within FL-based IoT environments.
| Original language | English |
|---|---|
| Title of host publication | 2025 IEEE International Conference on Cyber Security and Resilience (CSR) |
| Publisher | Institute of Electrical and Electronics Engineers Inc. |
| Pages | 407-412 |
| Number of pages | 6 |
| ISBN (Electronic) | 9798331535919 |
| ISBN (Print) | 9798331535926 |
| DOIs | |
| Publication status | Published - 26 Aug 2025 |
| Event | 2025 IEEE International Conference on Cyber Security and Resilience - Chania, Crete, Greece Duration: 4 Aug 2025 → 6 Aug 2025 https://www.ieee-csr.org/#technical-program-committee |
Conference
| Conference | 2025 IEEE International Conference on Cyber Security and Resilience |
|---|---|
| Country/Territory | Greece |
| City | Crete |
| Period | 4/08/25 → 6/08/25 |
| Internet address |
Keywords
- Federated Learning
- Intrusion Detection Systems
- Adversarial Attack
- Label Flipping Attack