TY - JOUR
T1 - Adversarial Label-Flipping Attack and Defense for Anomaly Detection in Spatial Crowdsourcing UAV Services
AU - Akram, Junaid
AU - Anaissi, Ali
AU - Akram, Awais
AU - Rathore, Rajkumar Singh
AU - Jhaveri, Rutvij H.
N1 - Publisher Copyright:
IEEE
PY - 2024/8/23
Y1 - 2024/8/23
N2 - The rapid expansion of Graph Neural Networks (GNNs) in consumer electronics and Vehicular Edge Computing (VEC) enhanced Internet of Drone Things (IoDT) services highlights the need for strong defenses against cyber attacks. One significant but overlooked threat is adversarial label-flipping, where attackers slightly change training labels to disrupt the system. This issue is critical in spatial crowdsourcing UAV networks that use potentially insecure labels. Our study investigates these attacks on GNNs, emphasizing a serious security problem. We introduce UAVGuard, an innovative attack model that uses continuous approximations for complex objectives and a simplified GNN structure for effective gradient-based attacks. Our analysis shows that GNNs’ vulnerability mainly comes from overfitting to these manipulated labels. To counter this, we offer a defensive framework that uses a community-preserving self-supervised task as a regularization method. Tests on three real-world datasets, including various IBRL modalities, demonstrate UAVGuard’s effectiveness and our defense architecture’s resilience to label-flipping attacks. This research enhances our understanding of these threats to GNNs and provides practical defenses, improving the security of UAV services in spatial crowdsourcing within VEC-enhanced IoDT systems.
AB - The rapid expansion of Graph Neural Networks (GNNs) in consumer electronics and Vehicular Edge Computing (VEC) enhanced Internet of Drone Things (IoDT) services highlights the need for strong defenses against cyber attacks. One significant but overlooked threat is adversarial label-flipping, where attackers slightly change training labels to disrupt the system. This issue is critical in spatial crowdsourcing UAV networks that use potentially insecure labels. Our study investigates these attacks on GNNs, emphasizing a serious security problem. We introduce UAVGuard, an innovative attack model that uses continuous approximations for complex objectives and a simplified GNN structure for effective gradient-based attacks. Our analysis shows that GNNs’ vulnerability mainly comes from overfitting to these manipulated labels. To counter this, we offer a defensive framework that uses a community-preserving self-supervised task as a regularization method. Tests on three real-world datasets, including various IBRL modalities, demonstrate UAVGuard’s effectiveness and our defense architecture’s resilience to label-flipping attacks. This research enhances our understanding of these threats to GNNs and provides practical defenses, improving the security of UAV services in spatial crowdsourcing within VEC-enhanced IoDT systems.
KW - Anomaly detection
KW - Autonomous aerial vehicles
KW - Bi-Level Optimization
KW - Consumer electronics
KW - Convolution
KW - Correlation
KW - Data models
KW - Data Security
KW - Feature extraction
KW - Graph Neural Networks
KW - Label-Flipping Attacks
KW - Spatial Crowdsourcing
KW - UAV Networks
UR - http://www.scopus.com/inward/record.url?scp=85201749349&partnerID=8YFLogxK
U2 - 10.1109/TCE.2024.3448541
DO - 10.1109/TCE.2024.3448541
M3 - Article
AN - SCOPUS:85201749349
SN - 0098-3063
SP - 1
EP - 1
JO - IEEE Transactions on Consumer Electronics
JF - IEEE Transactions on Consumer Electronics
ER -