可验证秘密共享
计算机科学
数学证明
计算机安全
认证(法律)
协议(科学)
可证明的安全性
安全性分析
理论计算机科学
计算机网络
密码学
数学
医学
病理
集合(抽象数据类型)
程序设计语言
替代医学
几何学
作者
Jiahui Wu,Weizhe Zhang
标识
DOI:10.1109/tdsc.2024.3352170
摘要
Recently, to resist privacy leakage and aggregation result forgery in federated learning (FL), Wang et al. proposed a verifiable and oblivious secure aggregation protocol for FL, called VOSA. They claimed that VOSA was aggregate unforgeable and verifiable under a malicious aggregation server and gave detailed security proof. In this article, we show that VOSA is insecure, in which local gradients/aggregation results and their corresponding authentication tags/proofs can be tampered with without being detected by the verifiers. After presenting specific attacks, we analyze the reason for this security issue and give a suggestion to prevent it.
科研通智能强力驱动
Strongly Powered by AbleSci AI