Comments on 'Lightweight Privacy and Security Computing for Blockchained Federated Learning in IoT'

Zhiyuan Sui; Yujiao Sun; Jianming Zhu; Fu Chen

doi:10.1109/JIOT.2024.3358302

Comments on 'Lightweight Privacy and Security Computing for Blockchained Federated Learning in IoT'

Zhiyuan Sui, Yujiao Sun, Jianming Zhu, Fu Chen^*

^*Corresponding author for this work

School of Mathematics and Statistics

Central University of Finance and Economics

Research output: Contribution to journal › Article › peer-review

1 Citation (Scopus)

Abstract

Federated learning has been used to collaboratively train a decentralized model without sharing confidential model records. However, many security risks are involved in this regard, and scholars have conducted numerous studies on related topics. Fan et al. proposed a scheme to achieve model unforgeability and confidentiality in blockchained federated learning (lightweight privacy blockchained federated-learning (LPBFL) scheme) in the Internet of Things. Our research demonstrates that their scheme is insecure in terms of signature design and that their theorem is invalid. We present an effective attack on their signature algorithm and create a new signature method and a formal security model to provide security guarantee against the mentioned attack. Extensive simulations demonstrate that our signature algorithm does not harm the highly efficient LPBFL scheme.

Original language	English
Pages (from-to)	15043-15046
Number of pages	4
Journal	IEEE Internet of Things Journal
Volume	11
Issue number	8
DOIs	https://doi.org/10.1109/JIOT.2024.3358302
Publication status	Published - 15 Apr 2024

Keywords

Batch verification
Internet of Things
cryptanalysis
cybersecurity
federated learning

Access to Document

10.1109/JIOT.2024.3358302

Cite this

@article{7f55931a73a945f485bb20939b77169a,

title = "Comments on 'Lightweight Privacy and Security Computing for Blockchained Federated Learning in IoT'",

abstract = "Federated learning has been used to collaboratively train a decentralized model without sharing confidential model records. However, many security risks are involved in this regard, and scholars have conducted numerous studies on related topics. Fan et al. proposed a scheme to achieve model unforgeability and confidentiality in blockchained federated learning (lightweight privacy blockchained federated-learning (LPBFL) scheme) in the Internet of Things. Our research demonstrates that their scheme is insecure in terms of signature design and that their theorem is invalid. We present an effective attack on their signature algorithm and create a new signature method and a formal security model to provide security guarantee against the mentioned attack. Extensive simulations demonstrate that our signature algorithm does not harm the highly efficient LPBFL scheme.",

keywords = "Batch verification, Internet of Things, cryptanalysis, cybersecurity, federated learning",

author = "Zhiyuan Sui and Yujiao Sun and Jianming Zhu and Fu Chen",

note = "Publisher Copyright: {\textcopyright} 2014 IEEE.",

year = "2024",

month = apr,

day = "15",

doi = "10.1109/JIOT.2024.3358302",

language = "English",

volume = "11",

pages = "15043--15046",

journal = "IEEE Internet of Things Journal",

issn = "2327-4662",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

number = "8",

}

TY - JOUR

T1 - Comments on 'Lightweight Privacy and Security Computing for Blockchained Federated Learning in IoT'

AU - Sui, Zhiyuan

AU - Sun, Yujiao

AU - Zhu, Jianming

AU - Chen, Fu

PY - 2024/4/15

Y1 - 2024/4/15

N2 - Federated learning has been used to collaboratively train a decentralized model without sharing confidential model records. However, many security risks are involved in this regard, and scholars have conducted numerous studies on related topics. Fan et al. proposed a scheme to achieve model unforgeability and confidentiality in blockchained federated learning (lightweight privacy blockchained federated-learning (LPBFL) scheme) in the Internet of Things. Our research demonstrates that their scheme is insecure in terms of signature design and that their theorem is invalid. We present an effective attack on their signature algorithm and create a new signature method and a formal security model to provide security guarantee against the mentioned attack. Extensive simulations demonstrate that our signature algorithm does not harm the highly efficient LPBFL scheme.

AB - Federated learning has been used to collaboratively train a decentralized model without sharing confidential model records. However, many security risks are involved in this regard, and scholars have conducted numerous studies on related topics. Fan et al. proposed a scheme to achieve model unforgeability and confidentiality in blockchained federated learning (lightweight privacy blockchained federated-learning (LPBFL) scheme) in the Internet of Things. Our research demonstrates that their scheme is insecure in terms of signature design and that their theorem is invalid. We present an effective attack on their signature algorithm and create a new signature method and a formal security model to provide security guarantee against the mentioned attack. Extensive simulations demonstrate that our signature algorithm does not harm the highly efficient LPBFL scheme.

KW - Batch verification

KW - Internet of Things

KW - cryptanalysis

KW - cybersecurity

KW - federated learning

UR - http://www.scopus.com/inward/record.url?scp=85183978080&partnerID=8YFLogxK

U2 - 10.1109/JIOT.2024.3358302

DO - 10.1109/JIOT.2024.3358302

M3 - Article

AN - SCOPUS:85183978080

SN - 2327-4662

VL - 11

SP - 15043

EP - 15046

JO - IEEE Internet of Things Journal

JF - IEEE Internet of Things Journal

IS - 8

ER -

Comments on 'Lightweight Privacy and Security Computing for Blockchained Federated Learning in IoT'

Abstract

Keywords

Access to Document

Other files and links

Fingerprint

Cite this