<!DOCTYPE article PUBLIC "-//NLM//DTD JATS (Z39.96) Journal Archiving and Interchange DTD v1.0 20120330//EN" "JATS-archivearticle1.dtd">
<article xmlns:xlink="http://www.w3.org/1999/xlink">
  <front>
    <journal-meta>
      <journal-title-group>
        <journal-title>Computer &amp; Electronics Security Application Rendezvous, Nov.</journal-title>
      </journal-title-group>
    </journal-meta>
    <article-meta>
      <title-group>
        <article-title>Federated Learning as enabler for Collaborative Security between not Fully-Trusting Distributed Parties</article-title>
      </title-group>
      <contrib-group>
        <contrib contrib-type="author">
          <string-name>Léo Lavaur</string-name>
        </contrib>
        <contrib contrib-type="author">
          <string-name>Benjamin Costé</string-name>
        </contrib>
        <contrib contrib-type="author">
          <string-name>Marc-Oliver Pahl</string-name>
        </contrib>
        <contrib contrib-type="author">
          <string-name>Yann Busnel</string-name>
        </contrib>
        <contrib contrib-type="author">
          <string-name>Fabien Autrel</string-name>
        </contrib>
        <contrib contrib-type="author">
          <string-name>IMT-Atlantique</string-name>
        </contrib>
        <contrib contrib-type="author">
          <string-name>IRISA</string-name>
        </contrib>
      </contrib-group>
      <pub-date>
        <year>2022</year>
      </pub-date>
      <volume>1</volume>
      <fpage>5</fpage>
      <lpage>16</lpage>
      <abstract>
        <p>Literature shows that trust typically relies on knowledge about the communication partner. Federated learning is an approach for collaboratively improving machine learning models. It allows collaborators to share Machine Learning models without revealing secrets, as only the abstract models and not the data used for their creation is shared. Federated learning thereby provides a mechanism to create trust without revealing secrets, such as specificities of local industrial systems. A fundamental challenge, however, is determining how much trust is justified for each contributor to collaboratively optimize the joint models. By assigning equal trust to each contribution, divergence of a model from its optimum can easily happen-caused by errors, bad observations, or cyberattacks. Trust also depends on how much an aggregated model contributes to the objectives of a party. For example, a model trained for an OT system is typically useless for monitoring IT systems. This paper shows first directions how heterogeneous distributed data sources could be integrated using federated learning methods. With an extended abstract, it shows current research directions and open issues from a cyber-analyst's perspective.</p>
      </abstract>
      <kwd-group>
        <kwd>eol&gt;Federated learning</kwd>
        <kwd>cybersecurity</kwd>
        <kwd>intrusion detection</kwd>
        <kwd>distributed trust</kwd>
      </kwd-group>
    </article-meta>
  </front>
  <body>
    <sec id="sec-1">
      <title>1. Introduction</title>
      <p>A common cybersecurity goal is thwarting attackers through detection of their actions,
understanding of their methodologies, and increasing the resilience before their next attempts.
However, the considerable variety, thus complexity, of the tools and techniques used by
attackers drown their traces in the high volume of legitimate network trafic and endpoints logs.
One way used by defenders (often called “Blue teams”) to act against threat actors is sharing
knowledge about their abuses. However, knowledge gathered during security monitoring or
incident response is often coupled with private data which cannot be shared for confidentiality
reasons (GDPR, NDA, etc.).</p>
      <p>Machine Learning (ML) approaches can help here, as they result in abstract models that are
typically not reversible to their input data [1]. A fundamental problem for observation-based
security is the amount of data needed for having a trustable and reliable impression. Typically,
more data allows for better behavior characterization, thus improving either anomaly detection,
or event classification. Collecting data requires either a long observation time or many data
sources, as comprehensiveness is dificult to reach.</p>
      <p>Federated Learning (FL) has been introduced to enable the sharing of local models and to
federate them towards better joint models. Each participant computes on its own an ML-model
using its own data. The resulting model is aggregated with the ones of other participants,
typically by a trusted party, then the new model is shared between each of them.</p>
      <p>Consequently, all parties benefit from each other while no one have access to their private
data and algorithms. Sharing models however still faces issues as models can be modified with
backdoors [2], poisoned with adversarial approaches [3] or simply sufers from bad quality
training dataset.</p>
      <p>This paper discusses FL sharing approaches through aggregation issues. Section 2 introduces
the concept of Machine Learning (ML) based intrusion detection, and Federated Learning (FL)
as a collaboration enabler. In Section 3, we summarize the literature around federated intrusion
detection, with an extended abstract of a survey. Section 4 outlines an experimental use-case
for Federated Intrusion Detection System (FIDS) application. Section 5 discusses open issues
and the envisioned solutions. Section 6 concludes our proposition.</p>
    </sec>
    <sec id="sec-2">
      <title>2. Background: ML for collaboratively defend cyberattacks</title>
      <p>One prominent application of FL in the cybersecurity field is for security monitoring and
collaborative intrusion detection. This section defines the basis for the remainder of the paper.</p>
      <p>Security monitoring systems frequently use signature-based Intrusion Detection Systems
(IDSs) to detect known attacks to safeguard companies [4]. However, this strategy sufers
from serious limitations against zero-day and one-day attacks, as well as Advanced Persistent
Threats (APTs), such as Stuxnet [5]. Furthermore, the IoT’s heterogeneity and irregular trafic
cause IDSs to be less efective or inadequate [ 6]. As a result, researchers began to look into
anomaly detection as a way to improve detection systems.</p>
      <p>Here, multiple approaches coexist, depending on objectives and available data. On the one
hand, anomaly-based detection systems compare monitored events to a baseline profile trained
on nominal trafic to assess whether they are malicious or not [ 7]. On the other hand,
patternbased classification, aims at extracting patterns from known attacks that have been
previously labelled as such, and then characterize input data according to the extracted patterns.
Therefore, anomaly-based approaches are particularly relevant to detect unknown behaviors,
whereas supervised ones are more equipped for threat characterization.</p>
      <p>The source of data will also influence the available features for detection. For example,
endpoint-oriented sensors such as Sysmon monitor processes, use of windows’ registry key
or system calls while network-oriented sensors provides a lot of information about protocols,
packet length, or IP addresses. Preprocessing can be used to extract additional features from the
raw data, to provide more information. The literature distinguishes three key non-exclusive
approaches: feature extraction, feature embedding, and feature selection [8].</p>
      <p>In the context of knowledge sharing, the choice of the input feature is critical to transfer
knowledge between participants. For instance, IP addresses are specific to the local layout of
the network, and might have another meaning in another environment, if they even exist. On
the other hand, given one class of devices, inter-arrival time (IAT) should not vary much
between networks, thus making potentially making it a good choice for transferring knowledge.</p>
      <p>With a designated set of features and an input dataset, one can establish a model of the data.
A model is an abstraction that can be used afterward for other tasks, such as characterization.
Algorithmically speaking, a model is a set of mathematical parameters that are inferred from
input data by an algorithm. It can be the statistical parameters of a distribution function, the
condition nodes in a decision tree, or the weights and biases of a neural network. The ability
of a model to be shared partly depends on how easily these parameters can be aggregated.</p>
      <p>
        Over the years, ML have been applied to intrusion detection with substantial results. Three
approaches coexist:
(
        <xref ref-type="bibr" rid="ref1">1</xref>
        ) Anomaly detection becomes a binary classification problem with supervised learning.
      </p>
      <p>
        For efective training, a balanced labeled dataset is required. However, because local
training data is infrequently labeled and models can be afected by unbalanced class
distribution, supervised learning is more dificult to apply in real-world scenarios [ 9].
(2) For unlabeled data, unsupervised learning is more appropriate. In the case of IDS, we
assume that (i) benign trafic is substantially more common in the testing set than
anomalies [10]; and (ii) abnormal packets are statistically diferent from normal packets.
(
        <xref ref-type="bibr" rid="ref3">3</xref>
        ) Semi-supervised learning is a hybrid method that labels only a portion of the training
data. It can be used to bootstrap a detection model with a publicly labeled dataset before
training it on locally collected data afterward.
      </p>
      <p>However, ML algorithms also require a lot of training data to avoid learning biased model,
from the lack of exhaustively or from an overrepresentation of a class in the training set.</p>
      <p>To cope with the limitations of ML, especially when training data is locally collected,
collaborative IDSs have emerged in the literature. However, they are almost always built in a
centralized manner, which induces its own set of issues: (i) centralizing a system typically
introduce a single point-of-failure (SPoF) [11]; (ii) centralized IDSs imply sending local data for
training or detection, increasing the risk of information disclosure [12]; (iii) communicating
data over networks also increase bandwidth consumption and latency, which are critical for
intrusion detection [13].</p>
      <p>Introduced in 2016 by Google [14], FL promises to cope with these issues. In FL, model
learning is distributed among the participants of the federation. Therefore, local data stay in
the participant’s system, and collaboration is achieved by sharing and aggregating the
generated models. Aggregation can be done by a server [6], [15]–[17], but it might lead to concerns
with trust and privacy. Due to challenges in terms of traceability, integrity, privacy, and trust,
recent research has favored the usage of trusted distributed ledgers [18], [19], multi-party
computation (MPC) [20], and privacy-preserving mechanisms like Diferential Privacy (DP) [ 21].</p>
    </sec>
    <sec id="sec-3">
      <title>3. The example of collaborative intrusion detection</title>
      <p>Since its introduction, FL has been applied to multiple domains, such as intrusion detection,
whose presence is increasing in the literature. In this context, FL allows local detection of
attacks—thus ofering low latency and bandwidth—while jointly enriching participant’s models
and preserving data privacy.</p>
      <p>
        This section is an extended abstract of the study published in IEEE Transactions on Network
and Service Management (TNSM) [8]. Contributions of the study are as follows: (
        <xref ref-type="bibr" rid="ref1">1</xref>
        ) it examines
the application of FL to the detection and mitigation of attacks; (2) it proposes a reference
architecture that generalizes the selected work and can serve as a starting point for the design of
future FIDSs; (
        <xref ref-type="bibr" rid="ref3">3</xref>
        ) it establishes a taxonomy of FIDSs, which provides a framework for comparing
the selected works in this study; and (4) it highlights open questions regarding FIDSs and
identifies associated research directions. The findings presented in this study can easily be
extrapolated to other cybersecurity applications of FL, such as automated forensic analysis, or
malware detection and classification.
      </p>
      <p>Section 3.1 presents the results of the study and the established taxonomy, whereas
Section 3.2 reviews identified research directions.</p>
      <sec id="sec-3-1">
        <title>3.1. Literature review</title>
        <p>The study performs two analyses of the literature. The quantitative analysis is based on
objective metrics that can be extracted from the literature, such as publication date and venue.
Figures 1a and 1b show the evolution of the literature on FL and IDS over time, both being
building blocks of FIDSs.</p>
        <p>2000
2005
2015</p>
        <p>2020</p>
        <p>The qualitative analysis is based on the comparison of existing approaches, using the
proposed taxonomy. They can be grouped into four categories: data, local operation, federation,
and aggregation. A fith meta-category is dedicated to the implementation and evaluation of
the approach.</p>
        <p>The taxonomy (Figure 2) provides twelve characteristics on which all approaches can be
compared:
1. Data source and type: what data is collected and how; heavily depends on the use case.
2. Preprocessing: strategies for data curation, such as normalization and feature selection.
3. ML location: where the ML model is trained and executed.
4. Local algorithms: how the ML model is trained, and its impact on performance.
5. Defense capabilities: the ability of the approach to mitigate attacks.
6. Federation strategy: how the federation is organized; e.g. client selection, architecture.
7. Communication: how data (i.e. models) is exchanged between participants, including
protection mechanisms.
8. FL type: type of FL strategy, depending on the objectives and available data.
9. Aggregation strategy: how models are aggregated, especially with heterogeneous clients.
10. Model target: i.e. the balance between specialization and generalization.
11. Analyzed dataset: the dataset used to evaluate the approach; often Information
Technology (IT)-focused, and not always available.
12. Costs and metrics: how the approach is evaluated, depending on the use case and
objectives.</p>
        <p>The structure provided by the taxonomy also allows comparing the selected works. Table 1
summaries the results of the comparison. It shows that most approaches focus on IT network
trafic, using a gateway to collect data and host both learning and detection processes. Most
also use Deep Learnings (DLs) to perform supervised learning and classify trafic. A majority
use unmodified FedAvg for the aggregation, which is the initial FL algorithm that was proposed
by Google [14].</p>
      </sec>
      <sec id="sec-3-2">
        <title>3.2. Open issues and research directions</title>
        <p>As the FL topic gets more mature, research tends to focus on secondary aspects, such as security
and privacy, or on the application of FL to other use cases. This subsection summaries the open
issues and research directions; more details are available in [8].</p>
        <p>(i) Performance — Like any detection system, FIDSs are looking for an absolute
performance: a system with a perfect classification score, producing no false positives or
negatives. To this end, several avenues have been identified in the literature, such as the use
of Generative Adversarial Networkss (GANs) or the improvement of feature selection as
input to the model. Moreover, the link between the performance of the system and its
hyper- and meta-parameters is not yet established.</p>
        <p>Taxonomy of FIDS</p>
        <p>Federation
Data
Local operation
Experimentation
Aggregation
9. Aggregation strategy
1. Data source and type
2. Preprocessing
3. ML location
4. Local algorithms
5. Defense capabilities
6. Federation strategy
7. Communication
8. FL type
10. Model target
11. Analyzed dataset
12. Costs and metrics</p>
        <p>Distribution
Source
Dimensionality reduction
Feature extraction
Feature selection
On server
Dedicated device
On gateway
On device
Unsupervised ML
(ii) Adaptability and scalability — Distributed systems such as FL are often used to cope
with resource limitations, especially in terms of computation and bandwidth. However,
as pointed out by several selected works, FL faces limitations when dealing with
numerous clients. Therefore, further research is needed on FIDSs client selection: dynamic
fusion based on score or time, reputation, number of detected attacks, etc.
(iii) Knowledge transfer — Current solutions focus on federating training and detection for
devices and resources that belong in the same domain. Therefore, open issues include the</p>
        <p>technologies such as Software-defined networking (SDN) ofer rapid resiliency
capabilities; and recent work studies the efectiveness of such defense mechanisms. New
emerging applications such as self-defense and self-healing systems could benefit from FIDSs
and other FL-based technologies.
(vi) Model convergence — Models can difer from one client to another, especially in
heterogeneous contexts like intrusion detection. Consequently, model convergence is made
more dificult. Current research focus on optimizing parameters by considering
aggregation as an optimization problem. For instance, Charles et al. [42] use meta-learning to
infer the right parameters, thus optimizing the aggregation afterward. Weighting
mechanisms are also present in the literature to improve the convergence [43].
(vii) Dataset representativity — Existing public datasets are not representative of FIDSs
potential deployment environments. Indeed, they are often datasets produced for
traditional machine learning algorithms but split for federated purposes, like NSL-KDD [44],
UNSW-NB15 [45], or CIC-IDS2017 [46]. However, this approach introduces biases, as
features or times series are all related to the same original event. Similar approaches
using adversarial examples for malware analysis which modify features instead of original
binaries faces the inverse feature-mapping problem [47], [48].</p>
        <p>Some of these issues depend on works from other related fields, such as ML for performance
or FL for scalability. However, specificities of the FIDSs use case require more concrete research
questions. Especially, the topics of security, trust, and resilience, are critical for a collaborative
security use case.</p>
      </sec>
    </sec>
    <sec id="sec-4">
      <title>4. Ensuring trust and personalization in FL-based intrusion detection</title>
      <p>As introduced in Section 2, FL can be used in multiple cybersecurity settings and use cases,
from distributed statistic inference [49] to authentication [50]. Even in the more specific
context of intrusion detection (i.e. FIDS), numerous use cases are studied, e.g. IT networks [29],
Industrial Internet of Things (IIoT) [15], or smart healthcare [51]. This variety in use cases
comes with various data types, architectures, and constraints. Making knowledge transferable
among heterogeneous use cases and data is a long-term goal for FIDSs (see Section 3.2).</p>
      <p>However, heterogeneity is currently a major challenge for FL [52]. Therefore, we focus on a
specific use case, namely FIDS in IT networks. We study the impact of heterogeneity on FL in
this setting, and research solutions to mitigate it.</p>
      <sec id="sec-4-1">
        <title>4.1. Use case definition</title>
        <p>We consider a typical use case inspired from the industry, where actors invested in
collaboration are organizations aiming at improving their local detection. We assume that each
organization has interests in sharing information, but has highly sensitive data that cannot be shared.
For example, Security Operation Centers (SOCs) perform security monitoring through the
processing of customer data (which can contain personal identifiable information) that cannot be
shared. On the opposite, with the rise of cyber-criminal services [53], attackers tend to lead
similar attacks against diferent information systems. Two SOCs in such situation would share
their Indicators of Compromise (IoCs) or corresponding ML-models to detect all attacks after
the first that succeed. In this context, FL can be used to train a FIDS model on a distributed
dataset, while preserving the privacy of each organization. For instance, existing structures
such as Information Sharing and Analysis Centers (ISACs) or inter-SOCs could benefit from
such a system, which enables collaboration while protecting company secrets.</p>
        <p>
          This setting is called cross-silo [52], as opposed to cross-device. It is worth noting that FIDSs
do not exclude cross-device settings, for instance in endpoint detection [5]. However,
crosssilo is more relevant for our use case, as it is more relatable for the industry, and it is easier to
implement in a testing infrastructure. In cross-silo, fewer clients (
          <xref ref-type="bibr" rid="ref16 ref39 ref42 ref44">10–1000</xref>
          ) operate with more
data each, as well as more powerful computation capabilities. Participants are also deemed
more reliable in terms of availability, as the local learning process is performed on a dedicated
device. Hence, it is not dependent on whether the hosting device (e.g. an employee computer) is
turned on or of. Finally, organizations often operate with higher-stake privacy requirements,
as they process data from their customers, their employees, and themselves.
        </p>
        <p>We firstly also focus on horizontal federated learning (HFL), where participants have the
same features, but diferent samples. In HFL, participants have similar objectives ( i.e. ML tasks)
and want to improve their models, but cannot build a centralized dataset due to privacy or legal
concerns. This is the most common setting in FIDSs, as it serves the goal of improving behavior
characterization, and having access to knowledge that cannot be inferred with only local data.
We also start with unsupervised learning algorithms, as the presence of labels not guaranteed
in real-world settings.</p>
        <p>Figure 3 depicts an example topology, inspired by IT networks from the industry. We assume
that each organization has a dedicated IT network, that might vary in terms of architecture,
probe location, or services (see Section 4.2).</p>
      </sec>
      <sec id="sec-4-2">
        <title>4.2. Experiment presentation</title>
        <p>
          The chosen use case inherently highlights two of the seven open issues identified in the
literature: heterogeneity and trust. Furthermore, as mentioned in Section 3.2, the lack of a dataset
that is representative of this use case undermines existing works on the topic. Therefore, we
ifrst focus on two complementary tasks: (
          <xref ref-type="bibr" rid="ref1">1</xref>
          ) the creation of a representative, distributed dataset;
and (2) the development of solutions to mitigate heterogeneity and provide trust between
distributed participants.
        </p>
        <p>To cope with the lack of appropriated dataset in the literature, we propose to build a new
dataset generation platform with federation and distributed systems in mind. The platform
relies on virtualization topologies to generate normal trafic [ 54], and defined attack scenarios to
evaluate the detection performance. These topologies will be notably used to generate benign
trafic and train local unsupervised learning algorithms—literature typically use autoencoders
for this task [28], [38], [55]. The trafic generated at this step must be representative of a real
IT-focused network with users, internal resources (such as file sharing and web applications),
administration and supervision services, and access to the Internet.</p>
        <p>We then aim to evaluate existing approaches on this more realistic and demanding use case.</p>
        <p>We expect most of them to yield less promising results, even when they claim to be able to
deal with heterogeneity. On the other hand, FL literature abounds of works on heterogeneous
data, and aggregation algorithms, such as FedProx [56] or Fed+ [57], might provide good
results. In this case, proving empirically that such approaches are able to cope with the realistic
heterogeneity of our use case remains a major contribution.</p>
        <p>At the same time, we develop a new FL approach that deal with heterogeneity and trust.
Section 5 presents strategies envisioned to achieve this goal. When considered as a collaboration
system, FL is highly connected to research on trust and reputation systems. Hence, we plan
to leverage existing works on the topic, such as [58], to provide a reputation-aware FL system.
This approach will be evaluated on the new dataset, and compared to existing strategies.</p>
        <sec id="sec-4-2-1">
          <title>4.2.1. Parameters</title>
          <p>To measure the ways in which heterogeneity can manifest itself, we define varying parameters
that are used to generate the topologies. This can be used to generate a worst-case scenario,
where all the parameters are set diferently in each topology.</p>
          <p>In regard to the use case presented in Section 4.1, we consider the following parameters:
(i) architecture — the network architecture of the topology defines how services are
interconnected, how the trafic is captured, and where data collection is performed. For
example, a topology with a single main gateway which captures trafic, and several services
on the same network, will produce a diferent dataset when compared with a star-shaped
topology with multiple subnets. Appropriated metrics are required to characterize the
impact of these diferences, e.g. size (number of hosts, of subnets), mean number of hops
between a service and the last gateway, and so on.
(ii) services — diferent services can rely on diferent protocols, and therefore generate
different kind of data, with diferent behaviors. For example, a service using TCP will
induce connection establishment, and therefore a lot of trafic back-and-forth, whereas
something based on UDP will produce a more continuous stream of data. Therefore,
diferent services (and protocols) might have diferent normal behaviors, causing
heterogeneity among participants. The list of considered services must be adapted depending
on the considered attack scenarios.
(iii) maturity — security practices vary between organizations, depending on their threat
model, previous expertise, and budget. For example, a company might have a dedicated
security team, and therefore be able to implement a more mature security policy, whereas
a small company might not have the resources to do so. This parameter is important to
consider, as it can impact the quality of the dataset, e.g. by having unseen attacks in the
training data, supposed to be benign trafic.
(iv) probe location — while we assume that all participants extract the same features (due
to HFL settings, see Section 4.1), the location of the probes can vary. In the same
architecture, one collection point at the gateway, or distributed probes in each subnet, will
produce diferent datasets.</p>
          <p>WAN / Internet
user-pc
.2.3</p>
          <p>Furthermore, some services are required to build working topologies, such as NTP, DHCP, or
DNS. We use a typical SME topology as a starting point for the experiments, which is presented
in Figure 3. This topology is composed of a dozen of machines, divided between employee
workstations, servers, etc. Variations of this topology will be also generated, and will be used
as other participants.</p>
        </sec>
        <sec id="sec-4-2-2">
          <title>4.2.2. Evaluation</title>
          <p>To evaluate approaches on any dateset, we measure their ability to detect relevant attack
scenarios. Typical attacks targeting such infrastructures are automated, like ransomware and botnets.
A lone attacker doing recognition and enumeration in the network is also to be considered, but
more advanced attacks such as APTs are out of the scope of this use case.</p>
          <p>To make a rigorous evaluation, we rely on the state of the art to select attacks, such as the
MITRE ATT&amp;CK framework [59], or the most used attacks in dataset literature. The list of
attacks that are considered on a given topology is deeply correlated to the services available
in this topology. For instance, cache poisoning requires cache-based service in the topology,
such as a DNS relay-server. On the other hand, organizations establish threat models
depending on the services they host or use. Considered attacks may include: Distributed Denial of
Service (DDoS) on the internet-facing web services, host and port scan,or web vulnerability
exploitation (injections, ...).</p>
          <p>Experiments are conducted on a private infrastructure. The test bed consist of three servers,
two for the virtualization, and one for computation that will be dedicated to executing the
required ML algorithms. While in real-world settings, the computation is performed on the
participants’ devices, we ofload the computation to a dedicated server. This allows us to
focus on the aggregation and trust aspects of the problem, and to avoid the complexity of the
distributed computation. To enable sound experiments [60], we plan to provide access to all
produced artifacts, including the dataset, the code, and the topology specifications, as well as
to the testbed itself.</p>
        </sec>
      </sec>
    </sec>
    <sec id="sec-5">
      <title>5. Discussion</title>
      <p>As the literature shows, FIDSs falter at aggregating heterogeneous models. Therefore, the
experiments detailed in section 4 provide means to measure and quantify the issue. While
literature on FL contains works on dealing with heterogeneous clients, this is still an issue in
the context of intrusion detection. Hence, we expect state-of-the-art approaches to perform
rather poorly, when compared to the results obtained on a homogeneous dataset. We consider
several approaches to cope with these issues.</p>
      <p>First, metric-based model weighting could be used to give less importance to models that
deviate too much from the others. Zhang et al. [18] use a centroid-distance weighting algorithm
that cope with the heterogeneity in IIoT. More generally, weighting algorithms can help to
merge only relevant models, depending on a set of defined metrics. Other metrics could be used
to further tune the model aggregation, like a numerical estimation of how much information
the model can bring.</p>
      <p>Another related topic is the measurement of the training data’s quality. In fact, as the learned
model is an abstraction of the data upon which it was trained, low-quality data would lead to a
low-quality model. Bringing a low-quality model in a federation could undermine every one’s
security. However, we must define what makes training data of quality, and how this quality
can be measured. Furthermore, weighting models according to their quality means the system
needs to be able to compare them, thus having access to the other’s data.</p>
      <p>Moreover, existing works on federated learning rely on participant clustering [58], [61] to
improve model specialization. Often, these approaches aim at either reducing heterogeneity
between clients, or detecting and excluding malicious participants. Part of the challenge here
reside in the metrics to chose to build clusters. Aforementioned metrics such as data quality, or
information estimation, could be also used in clustering. In the context of intrusion detection,
the formation of clusters can have an indirect impact on participants’ security.</p>
      <p>Finally, the lack of information inherent to the abstract nature of the model is a major hurdle
to estimate its value for aggregation. Therefore, we also consider adding metadata around
models, describing what the model contains without giving out too much information about
local data and configurations Such metadata would allow choosing which models one client
is interested in, depending on its use case. We believe an à-la-carte model aggregation would
help to cope with heterogeneity issues.</p>
    </sec>
    <sec id="sec-6">
      <title>6. Conclusion</title>
      <p>In this paper, we focused on the application of federated learning to the cybersecurity field.
Federated learning increases trust among partners as they do not need to share data, contrarily
to traditional ML-approaches. However, federated learning faces some limitations when
federating models built on heterogeneous data. We therefore ofer to address this issue within
experiments conducted on a platform with appropriate generated datasets. This platform displays
several use-cases with diferent partners in order to study aggregation-models parameters. We
then outline envisioned solutions which will be subjects of future work.</p>
      <p>These contributions can have a significant impact on increasing the security of organizations.
In fact, while existing research has addressed the privacy aspects of collaboration through
federated learning and other privacy-preserving mechanisms, maintaining trust in heterogeneous
collaboration is still a challenge. We showed that federated learning can help with the creation
of a common trusted security model for systems that are inherently distributed. Our approach
enables non-trusting parties to collaborate for the joint goal of increasing their cybersecurity
without revealing critical internals.
[15]</p>
      <p>B. Li, Y. Wu, J. Song, R. Lu, T. Li, and L. Zhao, “DeepFed: Federated Deep Learning for Intrusion
Detection in Industrial Cyber-Physical Systems,” IEEE Transactions on Industrial Informatics, 2020.
[17]
[18]
Q. Qin, K. Poularakis, K. K. Leung, and L. Tassiulas, “Line-Speed and Scalable Intrusion Detection
at the Network Edge via Federated Learning,” en, 2020.</p>
      <p>Z. Chen, N. Lv, P. Liu, Y. Fang, K. Chen, and W. Pan, “Intrusion Detection for Wireless Edge
Networks Based on Federated Learning,” en, IEEE Access, 2020. (visited on 10/25/2021).
X. Hei, X. Yin, Y. Wang, J. Ren, and L. Zhu, “A trusted feature aggregator federated learning for
distributed malicious attack detection,” en, Computers &amp; Security, 2020. (visited on 10/25/2021).
K. Li, H. Zhou, Z. Tu, W. Wang, and H. Zhang, “Distributed Network Intrusion Detection
System in Satellite-Terrestrial Integrated Networks Using Federated Learning,” en, IEEE Access, 2020.
(visited on 10/25/2021).</p>
      <p>Y. Qin and M. Kondo, “Federated Learning-Based Network Intrusion Detection with a Feature
Selection Approach,” en, in 2021 International Conference on Electrical, Communication, and
Computer Engineering (ICECCE), Kuala Lumpur, Malaysia: IEEE, 2021. (visited on 10/04/2021).
H. Liu, S. Zhang, P. Zhang, X. Zhou, X. Shao, G. Pu, and Y. Zhang, “Blockchain and Federated
Learning for Collaborative Intrusion Detection in Vehicular Edge Computing,” en, IEEE
Transactions on Vehicular Technology, 2021. (visited on 10/04/2021).
[32]</p>
    </sec>
  </body>
  <back>
    <ref-list>
      <ref id="ref1">
        <mixed-citation>
          <source>[1] [2] [4] [5] [6] [7] [8] [9] [10] [11] [12] [13]</source>
          [14]
          <string-name>
            <given-names>M.</given-names>
            <surname>Catillo</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A. D.</given-names>
            <surname>Vecchio</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Pecchia</surname>
          </string-name>
          , and U. Villano, “
          <article-title>A critique on the use of machine learning on public datasets for intrusion detection</article-title>
          ,” in Communications in Computer and Information Science, Springer International Publishing,
          <year>2021</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref2">
        <mixed-citation>
          <string-name>
            <given-names>S.</given-names>
            <surname>Goldwasser</surname>
          </string-name>
          ,
          <string-name>
            <given-names>M. P.</given-names>
            <surname>Kim</surname>
          </string-name>
          ,
          <string-name>
            <given-names>V.</given-names>
            <surname>Vaikuntanathan</surname>
          </string-name>
          , and
          <string-name>
            <given-names>O.</given-names>
            <surname>Zamir</surname>
          </string-name>
          , “
          <article-title>Planting undetectable backdoors in machine learning models</article-title>
          ,”
          <year>2022</year>
          . arXiv:
          <volume>2204</volume>
          .06974 [cs.LG].
        </mixed-citation>
      </ref>
      <ref id="ref3">
        <mixed-citation>
          [3]
          <string-name>
            <given-names>I. J.</given-names>
            <surname>Goodfellow</surname>
          </string-name>
          ,
          <string-name>
            <given-names>J.</given-names>
            <surname>Shlens</surname>
          </string-name>
          , and
          <string-name>
            <given-names>C.</given-names>
            <surname>Szegedy</surname>
          </string-name>
          , “
          <article-title>Explaining and harnessing adversarial examples</article-title>
          ,”
          <year>2014</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref4">
        <mixed-citation>
          <source>arXiv: 1412</source>
          .
          <article-title>6572 [stat</article-title>
          .ML].
        </mixed-citation>
      </ref>
      <ref id="ref5">
        <mixed-citation>
          <string-name>
            <given-names>N.</given-names>
            <surname>Chaabouni</surname>
          </string-name>
          ,
          <string-name>
            <given-names>M.</given-names>
            <surname>Mosbah</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Zemmari</surname>
          </string-name>
          ,
          <string-name>
            <given-names>C.</given-names>
            <surname>Sauvignac</surname>
          </string-name>
          , and
          <string-name>
            <given-names>P.</given-names>
            <surname>Faruki</surname>
          </string-name>
          , “
          <article-title>Network Intrusion Detection for IoT Security Based on Learning Techniques,”</article-title>
          <source>IEEE Communications Surveys &amp; Tutorials</source>
          ,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref6">
        <mixed-citation>
          <string-name>
            <given-names>G.</given-names>
            <surname>Karantzas</surname>
          </string-name>
          and
          <string-name>
            <given-names>C.</given-names>
            <surname>Patsakis</surname>
          </string-name>
          , “
          <article-title>An Empirical Assessment of Endpoint Detection and Response Systems against Advanced Persistent Threats Attack Vectors,” en</article-title>
          ,
          <source>Journal of Cybersecurity and Privacy</source>
          ,
          <year>2021</year>
          . (visited on 07/20/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref7">
        <mixed-citation>
          <string-name>
            <surname>T. D. Nguyen</surname>
            ,
            <given-names>S.</given-names>
          </string-name>
          <string-name>
            <surname>Marchal</surname>
            ,
            <given-names>M.</given-names>
          </string-name>
          <string-name>
            <surname>Miettinen</surname>
            ,
            <given-names>H.</given-names>
          </string-name>
          <string-name>
            <surname>Fereidooni</surname>
            ,
            <given-names>N.</given-names>
          </string-name>
          <string-name>
            <surname>Asokan</surname>
          </string-name>
          , and A.
          <string-name>
            <surname>-R. Sadeghi</surname>
          </string-name>
          , “
          <article-title>DÏoT: A Federated Self-learning Anomaly Detection System for IoT,</article-title>
          ” in
          <source>2019 IEEE 39th International Conference on Distributed Computing Systems (ICDCS)</source>
          , IEEE,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref8">
        <mixed-citation>
          <string-name>
            <given-names>P.</given-names>
            <surname>García-Teodoro</surname>
          </string-name>
          ,
          <string-name>
            <given-names>J.</given-names>
            <surname>Díaz-Verdejo</surname>
          </string-name>
          ,
          <string-name>
            <given-names>G.</given-names>
            <surname>Maciá-Fernández</surname>
          </string-name>
          , and E. Vázquez, “
          <article-title>Anomaly-based network intrusion detection: Techniques, systems</article-title>
          and challenges,” Computers &amp; Security,
          <year>2009</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref9">
        <mixed-citation>
          <string-name>
            <given-names>L.</given-names>
            <surname>Lavaur</surname>
          </string-name>
          , M.
          <article-title>-</article-title>
          <string-name>
            <surname>O. Pahl</surname>
            ,
            <given-names>Y.</given-names>
          </string-name>
          <string-name>
            <surname>Busnel</surname>
            , and
            <given-names>F.</given-names>
          </string-name>
          <string-name>
            <surname>Autrel</surname>
          </string-name>
          , “
          <article-title>The Evolution of Federated Learning-based Intrusion Detection and Mitigation: A Survey,” IEEE Transactions on Network and Service Management, Special Issue on Network Security Management</article-title>
          ,
          <year>2022</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref10">
        <mixed-citation>
          <string-name>
            <surname>E. M. Campos</surname>
            ,
            <given-names>P. F.</given-names>
          </string-name>
          <string-name>
            <surname>Saura</surname>
            ,
            <given-names>A.</given-names>
          </string-name>
          <string-name>
            <surname>González-Vidal</surname>
            ,
            <given-names>J. L.</given-names>
          </string-name>
          <string-name>
            <surname>Hernández-Ramos</surname>
            ,
            <given-names>J. B.</given-names>
          </string-name>
          <string-name>
            <surname>Bernabe</surname>
            ,
            <given-names>G.</given-names>
          </string-name>
          <article-title>Baldini, and</article-title>
          <string-name>
            <given-names>A.</given-names>
            <surname>Skarmeta</surname>
          </string-name>
          , “
          <article-title>Evaluating Federated Learning for Intrusion Detection in Internet of Things: Review and Challenges,” en</article-title>
          , arXiv:
          <fpage>2108</fpage>
          .00974 [cs],
          <year>2021</year>
          . (visited on 12/02/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref11">
        <mixed-citation>
          <string-name>
            <given-names>V.</given-names>
            <surname>Chandola</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Banerjee</surname>
          </string-name>
          , and
          <string-name>
            <given-names>V.</given-names>
            <surname>Kumar</surname>
          </string-name>
          , “
          <article-title>Anomaly detection: A survey,” en</article-title>
          , ACM Computing Surveys,
          <year>2009</year>
          . (visited on 03/20/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref12">
        <mixed-citation>
          <string-name>
            <given-names>S.</given-names>
            <surname>Rathore</surname>
          </string-name>
          ,
          <string-name>
            <given-names>B. Wook</given-names>
            <surname>Kwon</surname>
          </string-name>
          , and
          <string-name>
            <given-names>J. H.</given-names>
            <surname>Park</surname>
          </string-name>
          , “BlockSecIoTNet:
          <article-title>Blockchain-based decentralized security architecture for IoT network</article-title>
          ,
          <source>” Journal of Network and Computer Applications</source>
          ,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref13">
        <mixed-citation>
          <string-name>
            <given-names>C. V.</given-names>
            <surname>Zhou</surname>
          </string-name>
          ,
          <string-name>
            <given-names>C.</given-names>
            <surname>Leckie</surname>
          </string-name>
          , and
          <string-name>
            <given-names>S.</given-names>
            <surname>Karunasekera</surname>
          </string-name>
          , “
          <article-title>A survey of coordinated attacks and collaborative intrusion detection</article-title>
          ,” en,
          <source>Computers &amp; Security</source>
          ,
          <year>2010</year>
          . (visited on 07/21/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref14">
        <mixed-citation>
          <string-name>
            <surname>ENISA</surname>
          </string-name>
          , “
          <article-title>Actionable Information for Security Incident Response,”</article-title>
          <string-name>
            <surname>Tech. Rep.</surname>
          </string-name>
          ,
          <year>2014</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref15">
        <mixed-citation>
          <string-name>
            <given-names>B.</given-names>
            <surname>McMahan</surname>
          </string-name>
          ,
          <string-name>
            <given-names>E.</given-names>
            <surname>Moore</surname>
          </string-name>
          ,
          <string-name>
            <given-names>D.</given-names>
            <surname>Ramage</surname>
          </string-name>
          ,
          <string-name>
            <given-names>S.</given-names>
            <surname>Hampson</surname>
          </string-name>
          , and
          <string-name>
            <surname>B. A.</surname>
          </string-name>
          y. Arcas, “
          <article-title>Communication-eficient learning of deep networks from decentralized data,”</article-title>
          <source>in Proceedings of the 20th international conference on artificial intelligence and statistics , A. Singh and J</source>
          . Zhu, Eds., ser.
          <source>Proceedings of machine learning research, PMLR</source>
          ,
          <year>2017</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref16">
        <mixed-citation>
          [16]
          <string-name>
            <given-names>J.</given-names>
            <surname>Ren</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Wang</surname>
          </string-name>
          ,
          <string-name>
            <given-names>T.</given-names>
            <surname>Hou</surname>
          </string-name>
          ,
          <string-name>
            <given-names>S.</given-names>
            <surname>Zheng</surname>
          </string-name>
          , and
          <string-name>
            <given-names>C.</given-names>
            <surname>Tang</surname>
          </string-name>
          , “
          <article-title>Federated Learning-Based Computation Ofloading Optimization in Edge Computing-Supported Internet of Things,”</article-title>
          <source>IEEE Access</source>
          ,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref17">
        <mixed-citation>
          <string-name>
            <given-names>K.</given-names>
            <surname>Bonawitz</surname>
          </string-name>
          ,
          <string-name>
            <given-names>V.</given-names>
            <surname>Ivanov</surname>
          </string-name>
          ,
          <string-name>
            <given-names>B.</given-names>
            <surname>Kreuter</surname>
          </string-name>
          , et al.,
          <source>“Practical Secure Aggregation for Privacy-Preserving Machine Learning,” in Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security</source>
          , New York, NY, USA: ACM,
          <year>2017</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref18">
        <mixed-citation>
          <string-name>
            <given-names>W.</given-names>
            <surname>Zhang</surname>
          </string-name>
          ,
          <string-name>
            <given-names>Q.</given-names>
            <surname>Lu</surname>
          </string-name>
          ,
          <string-name>
            <given-names>Q.</given-names>
            <surname>Yu</surname>
          </string-name>
          , et al., “
          <article-title>Blockchain-based Federated Learning for Device Failure Detection in Industrial IoT,”</article-title>
          <source>IEEE Internet of Things Journal</source>
          ,
          <year>2020</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref19">
        <mixed-citation>
          <string-name>
            <given-names>U.</given-names>
            <surname>Majeed</surname>
          </string-name>
          and
          <string-name>
            <given-names>C. S.</given-names>
            <surname>Hong</surname>
          </string-name>
          , “
          <article-title>FLchain: Federated Learning via MEC-enabled Blockchain Network,” in 2019 20th Asia-Pacific Network Operations and Management Symposium (APNOMS)</article-title>
          , IEEE,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref20">
        <mixed-citation>
          <string-name>
            <surname>T. D. Nguyen</surname>
            ,
            <given-names>P.</given-names>
          </string-name>
          <string-name>
            <surname>Rieger</surname>
            ,
            <given-names>H.</given-names>
          </string-name>
          <string-name>
            <surname>Yalame</surname>
          </string-name>
          , et al.,
          <string-name>
            <surname>“</surname>
            <given-names>FLGUARD</given-names>
          </string-name>
          :
          <article-title>Secure and Private Federated Learning,” en</article-title>
          , arXiv:
          <fpage>2101</fpage>
          .02281 [cs],
          <year>2021</year>
          . (visited on 05/18/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref21">
        <mixed-citation>
          <string-name>
            <given-names>M.</given-names>
            <surname>Kim</surname>
          </string-name>
          ,
          <string-name>
            <given-names>O.</given-names>
            <surname>Gunlu</surname>
          </string-name>
          , and
          <string-name>
            <given-names>R. F.</given-names>
            <surname>Schaefer</surname>
          </string-name>
          , “
          <article-title>Federated Learning with Local Diferential Privacy: Tradeofs between Privacy, Utility,</article-title>
          and Communication,”
          <year>2021</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref22">
        <mixed-citation>
          <string-name>
            <given-names>A.</given-names>
            <surname>Sinha</surname>
          </string-name>
          ,
          <string-name>
            <given-names>Z.</given-names>
            <surname>Shen</surname>
          </string-name>
          ,
          <string-name>
            <given-names>Y.</given-names>
            <surname>Song</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Ma</surname>
          </string-name>
          ,
          <string-name>
            <given-names>D.</given-names>
            <surname>Eide</surname>
          </string-name>
          , B.
          <string-name>
            <surname>-J. ( Hsu</surname>
            , and
            <given-names>K.</given-names>
          </string-name>
          <string-name>
            <surname>Wang</surname>
          </string-name>
          , “
          <article-title>An Overview of Microsoft Academic Service (MAS) and Applications,” en</article-title>
          ,
          <source>in Proceedings of the 24th International Conference on World Wide Web, Florence Italy: ACM</source>
          ,
          <year>2015</year>
          . (visited on 10/22/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref23">
        <mixed-citation>
          <string-name>
            <surname>M.-O. Pahl</surname>
            and
            <given-names>F. X.</given-names>
          </string-name>
          <string-name>
            <surname>Aubet</surname>
          </string-name>
          , “
          <article-title>All Eyes on You: Distributed Multi-Dimensional IoT Microservice Anomaly Detection,” 14th International Conference on Network and Service Management</article-title>
          ,
          <source>CNSM 2018, 1st Workshop on Segment Routing and Service Function Chaining</source>
          ,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref24">
        <mixed-citation>
          <string-name>
            <given-names>Y.</given-names>
            <surname>Zhao</surname>
          </string-name>
          ,
          <string-name>
            <given-names>J.</given-names>
            <surname>Chen</surname>
          </string-name>
          ,
          <string-name>
            <given-names>D.</given-names>
            <surname>Wu</surname>
          </string-name>
          ,
          <string-name>
            <given-names>J.</given-names>
            <surname>Teng</surname>
          </string-name>
          , and
          <string-name>
            <given-names>S.</given-names>
            <surname>Yu</surname>
          </string-name>
          ,
          <article-title>“Multi-Task Network Anomaly Detection using Federated Learning,” en</article-title>
          ,
          <source>in Proceedings of the Tenth International Symposium on Information and Communication Technology - SoICT</source>
          <year>2019</year>
          ,
          <article-title>Hanoi, Ha Long Bay</article-title>
          , Viet Nam: ACM Press,
          <year>2019</year>
          . (visited on 06/07/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref25">
        <mixed-citation>
          <string-name>
            <given-names>W.</given-names>
            <surname>Schneble</surname>
          </string-name>
          and G. Thamilarasu, “
          <article-title>Attack detection using federated learning in medical cyberphysical systems</article-title>
          ,” en,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref26">
        <mixed-citation>
          <string-name>
            <given-names>B.</given-names>
            <surname>Cetin</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Lazar</surname>
          </string-name>
          ,
          <string-name>
            <given-names>J.</given-names>
            <surname>Kim</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Sim</surname>
          </string-name>
          ,
          <article-title>and</article-title>
          K. Wu, “
          <article-title>Federated Wireless Network Intrusion Detection,” en</article-title>
          , in
          <source>2019 IEEE International Conference on Big Data (Big Data)</source>
          , Los Angeles, CA, USA: IEEE,
          <year>2019</year>
          . (visited on 10/25/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref27">
        <mixed-citation>
          <string-name>
            <given-names>S. A.</given-names>
            <surname>Rahman</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Tout</surname>
          </string-name>
          ,
          <string-name>
            <given-names>C.</given-names>
            <surname>Talhi</surname>
          </string-name>
          ,
          <article-title>and</article-title>
          <string-name>
            <given-names>A.</given-names>
            <surname>Mourad</surname>
          </string-name>
          , “
          <article-title>Internet of Things Intrusion Detection: Centralized, On-Device, or Federated Learning?” en</article-title>
          , IEEE Network,
          <year>2020</year>
          . (visited on 06/01/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref28">
        <mixed-citation>
          <string-name>
            <surname>Mühlethaler</surname>
          </string-name>
          , Eds., Cham: Springer International Publishing,
          <year>2020</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref29">
        <mixed-citation>
          <string-name>
            <given-names>Y.</given-names>
            <surname>Sun</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Ochiai</surname>
          </string-name>
          , and
          <string-name>
            <given-names>H.</given-names>
            <surname>Esaki</surname>
          </string-name>
          , “
          <article-title>Intrusion Detection with Segmented Federated Learning for Large-Scale Multiple LANs,” en</article-title>
          , in
          <source>2020 International Joint Conference on Neural Networks (IJCNN)</source>
          , Glasgow, United Kingdom: IEEE,
          <year>2020</year>
          . (visited on 10/01/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref30">
        <mixed-citation>
          <string-name>
            <given-names>Y.</given-names>
            <surname>Fan</surname>
          </string-name>
          ,
          <string-name>
            <given-names>Y.</given-names>
            <surname>Li</surname>
          </string-name>
          ,
          <string-name>
            <given-names>M.</given-names>
            <surname>Zhan</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Cui</surname>
          </string-name>
          , and
          <string-name>
            <given-names>Y.</given-names>
            <surname>Zhang</surname>
          </string-name>
          , “
          <article-title>IoTDefender: A Federated Transfer Learning Intrusion Detection Framework for 5G IoT,” en</article-title>
          , in
          <source>2020 IEEE 14th International Conference on Big Data Science and Engineering (BigDataSE)</source>
          , Guangzhou, China: IEEE,
          <year>2020</year>
          . (visited on 10/04/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref31">
        <mixed-citation>
          <string-name>
            <given-names>N. A. A.-A.</given-names>
            <surname>Al-Marri</surname>
          </string-name>
          ,
          <string-name>
            <given-names>B. S.</given-names>
            <surname>Ciftler</surname>
          </string-name>
          , and
          <string-name>
            <given-names>M.</given-names>
            <surname>Abdallah</surname>
          </string-name>
          , “
          <article-title>Federated Mimic Learning for Privacy Preserving Intrusion Detection,” en</article-title>
          , arXiv:
          <year>2012</year>
          .06974 [cs],
          <year>2020</year>
          . (visited on 10/25/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref32">
        <mixed-citation>
          <string-name>
            <given-names>Y.</given-names>
            <surname>Sun</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Esaki</surname>
          </string-name>
          , and
          <string-name>
            <given-names>H.</given-names>
            <surname>Ochiai</surname>
          </string-name>
          , “
          <article-title>Adaptive Intrusion Detection in the Networking of Large-Scale LANs With Segmented Federated Learning,” en</article-title>
          ,
          <source>IEEE Open Journal of the Communications Society</source>
          ,
          <year>2021</year>
          . (visited on 10/04/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref33">
        <mixed-citation>
          <string-name>
            <given-names>X.</given-names>
            <surname>Cao</surname>
          </string-name>
          ,
          <string-name>
            <given-names>Z.</given-names>
            <surname>Li</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Yu</surname>
          </string-name>
          , and G. Sun, “
          <article-title>CoFED: Cross-silo Heterogeneous Federated Multi-task Learning via Co-training,” en</article-title>
          , arXiv:
          <fpage>2202</fpage>
          .08603 [cs],
          <year>2022</year>
          . (visited on 02/25/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref34">
        <mixed-citation>
          <string-name>
            <given-names>Z.</given-names>
            <surname>Charles</surname>
          </string-name>
          and
          <string-name>
            <given-names>J.</given-names>
            <surname>Konecny</surname>
          </string-name>
          , “
          <article-title>Convergence and Accuracy Trade-Os in Federated Learning</article-title>
          and Meta-Learning,” en,
          <year>2021</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref35">
        <mixed-citation>
          <string-name>
            <given-names>H. T.</given-names>
            <surname>Nguyen</surname>
          </string-name>
          ,
          <string-name>
            <given-names>V.</given-names>
            <surname>Sehwag</surname>
          </string-name>
          ,
          <string-name>
            <given-names>S.</given-names>
            <surname>Hosseinalipour</surname>
          </string-name>
          ,
          <string-name>
            <given-names>C. G.</given-names>
            <surname>Brinton</surname>
          </string-name>
          ,
          <string-name>
            <given-names>M.</given-names>
            <surname>Chiang</surname>
          </string-name>
          , and
          <string-name>
            <given-names>H.</given-names>
            <surname>Vincent Poor</surname>
          </string-name>
          , “FastConvergent Federated Learning,” en,
          <source>IEEE Journal on Selected Areas in Communications</source>
          ,
          <year>2021</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref36">
        <mixed-citation>
          <source>(visited on 05/25/</source>
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref37">
        <mixed-citation>
          <string-name>
            <given-names>M.</given-names>
            <surname>Tavallaee</surname>
          </string-name>
          ,
          <string-name>
            <given-names>E.</given-names>
            <surname>Bagheri</surname>
          </string-name>
          ,
          <string-name>
            <given-names>W.</given-names>
            <surname>Lu</surname>
          </string-name>
          ,
          <article-title>and</article-title>
          <string-name>
            <given-names>A. A.</given-names>
            <surname>Ghorbani</surname>
          </string-name>
          , “
          <article-title>A detailed analysis of the KDD CUP 99 data set</article-title>
          ,” in
          <source>2009 IEEE Symposium on Computational Intelligence for Security and Defense Applications</source>
          , IEEE,
          <year>2009</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref38">
        <mixed-citation>
          <string-name>
            <given-names>S. A. V.</given-names>
            <surname>Jatti</surname>
          </string-name>
          and
          <string-name>
            <given-names>V. J.</given-names>
            <surname>Kishor</surname>
          </string-name>
          <string-name>
            <surname>Sontif</surname>
          </string-name>
          , “
          <article-title>UNSW-NB15: A Comprehensive Data set for Network Intrusion Detection Systems</article-title>
          ,”
          <source>International Journal of Recent Technology and Engineering</source>
          ,
          <year>2019</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref39">
        <mixed-citation>
          [46]
          <string-name>
            <given-names>I.</given-names>
            <surname>Sharafaldin</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A. Habibi</given-names>
            <surname>Lashkari</surname>
          </string-name>
          ,
          <article-title>and</article-title>
          <string-name>
            <given-names>A. A.</given-names>
            <surname>Ghorbani</surname>
          </string-name>
          , “
          <article-title>Toward Generating a New Intrusion Detection Dataset and Intrusion Trafic Characterization,” en</article-title>
          ,
          <source>in Proceedings of the 4th International Conference on Information Systems Security and Privacy</source>
          , Funchal, Madeira,
          <source>Portugal: SCITEPRESS - Science and Technology Publications</source>
          ,
          <year>2018</year>
          . (visited on 10/14/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref40">
        <mixed-citation>
          <string-name>
            <given-names>F.</given-names>
            <surname>Pierazzi</surname>
          </string-name>
          ,
          <string-name>
            <given-names>F.</given-names>
            <surname>Pendlebury</surname>
          </string-name>
          ,
          <string-name>
            <given-names>J.</given-names>
            <surname>Cortellazzi</surname>
          </string-name>
          , and L. Cavallaro, “
          <article-title>Intriguing properties of adversarial ml attacks in the problem space</article-title>
          ,”
          <year>2019</year>
          . arXiv:
          <year>1911</year>
          .
          <article-title>02142 [cs</article-title>
          .CR].
        </mixed-citation>
      </ref>
      <ref id="ref41">
        <mixed-citation>
          <string-name>
            <given-names>D.</given-names>
            <surname>Park</surname>
          </string-name>
          and
          <string-name>
            <given-names>B.</given-names>
            <surname>Yener</surname>
          </string-name>
          , “
          <article-title>A survey on practical adversarial examples for malware classifiers,” in Reversing and Ofensive-oriented Trends Symposium</article-title>
          , ACM,
          <year>2020</year>
          . arXiv:
          <year>2011</year>
          .
          <article-title>05973 [cs</article-title>
          .CR].
        </mixed-citation>
      </ref>
      <ref id="ref42">
        <mixed-citation>
          [49]
          <string-name>
            <given-names>J. R.</given-names>
            <surname>Trocoso-Pastoriza</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Mermoud</surname>
          </string-name>
          ,
          <string-name>
            <given-names>R.</given-names>
            <surname>Bouyé</surname>
          </string-name>
          ,
          <string-name>
            <given-names>F.</given-names>
            <surname>Marino</surname>
          </string-name>
          ,
          <string-name>
            <given-names>J.-P.</given-names>
            <surname>Bossuat</surname>
          </string-name>
          ,
          <string-name>
            <given-names>V.</given-names>
            <surname>Lenders</surname>
          </string-name>
          , and J.-P.
        </mixed-citation>
      </ref>
      <ref id="ref43">
        <mixed-citation>
          <string-name>
            <surname>Hubaux</surname>
          </string-name>
          ,
          <article-title>Orchestrating Collaborative Cybersecurity: A Secure Framework for Distributed PrivacyPreserving Threat Intelligence Sharing</article-title>
          , en,
          <year>2022</year>
          . (visited on 09/12/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref44">
        <mixed-citation>
          [51] [53] [55] [57] [59]
          <string-name>
            <given-names>M.</given-names>
            <surname>Alazab</surname>
          </string-name>
          ,
          <string-name>
            <surname>S. P. R M</surname>
          </string-name>
          , P. M, P. Reddy,
          <string-name>
            <given-names>T. R.</given-names>
            <surname>Gadekallu</surname>
          </string-name>
          , and
          <string-name>
            <given-names>Q.-V.</given-names>
            <surname>Pham</surname>
          </string-name>
          , “
          <article-title>Federated Learning for Cybersecurity: Concepts, Challenges and Future Directions,” en</article-title>
          ,
          <source>IEEE Transactions on Industrial Informatics</source>
          ,
          <year>2021</year>
          . (visited on 12/02/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref45">
        <mixed-citation>
          <string-name>
            <given-names>E.</given-names>
            <surname>Ashraf</surname>
          </string-name>
          ,
          <string-name>
            <given-names>N. F. F.</given-names>
            <surname>Areed</surname>
          </string-name>
          ,
          <string-name>
            <given-names>H.</given-names>
            <surname>Salem</surname>
          </string-name>
          ,
          <string-name>
            <given-names>E. H.</given-names>
            <surname>Abdelhay</surname>
          </string-name>
          ,
          <article-title>and</article-title>
          <string-name>
            <given-names>A.</given-names>
            <surname>Farouk</surname>
          </string-name>
          , “
          <article-title>FIDChain: Federated Intrusion Detection System for Blockchain-Enabled IoT Healthcare Applications</article-title>
          ,” en, Healthcare,
          <year>2022</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref46">
        <mixed-citation>
          <source>(visited on 07/05/</source>
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref47">
        <mixed-citation>
          <string-name>
            <given-names>P.</given-names>
            <surname>Kairouz</surname>
          </string-name>
          , H. B.
          <string-name>
            <surname>McMahan</surname>
            ,
            <given-names>B.</given-names>
          </string-name>
          <string-name>
            <surname>Avent</surname>
          </string-name>
          , et al., “Advances and Open Problems in Federated Learning,” en, arXiv:
          <year>1912</year>
          .04977 [cs, stat],
          <year>2021</year>
          . (visited on 04/01/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref48">
        <mixed-citation>
          <string-name>
            <given-names>E.</given-names>
            <surname>Brumaghin</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Khodjibaev</surname>
          </string-name>
          ,
          <string-name>
            <given-names>M.</given-names>
            <surname>Thaxton</surname>
          </string-name>
          ,
          <article-title>and</article-title>
          <string-name>
            <given-names>A.</given-names>
            <surname>Zobec</surname>
          </string-name>
          ,
          <article-title>Attackers leveraging dark utilities ”c2aas” platform in malware campaigns</article-title>
          ,
          <year>2022</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref49">
        <mixed-citation>
          <string-name>
            <given-names>A.</given-names>
            <surname>Dey</surname>
          </string-name>
          ,
          <string-name>
            <given-names>B.</given-names>
            <surname>Costé</surname>
          </string-name>
          , É. Totel,
          <article-title>and</article-title>
          <string-name>
            <given-names>A.</given-names>
            <surname>Bécue</surname>
          </string-name>
          , “
          <article-title>Realistic simulation of users for it systems in cyber ranges</article-title>
          ,”
          <year>2021</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref50">
        <mixed-citation>
          <string-name>
            <given-names>G. d. C.</given-names>
            <surname>Bertoli</surname>
          </string-name>
          ,
          <string-name>
            <given-names>L. A. P.</given-names>
            <surname>Junior</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A. L. d.</given-names>
            <surname>Santos</surname>
          </string-name>
          , and
          <string-name>
            <given-names>O.</given-names>
            <surname>Saotome</surname>
          </string-name>
          ,
          <article-title>Generalizing intrusion detection for heterogeneous networks: A stacked-unsupervised federated learning approach</article-title>
          , en,
          <year>2022</year>
          . (visited on 09/12/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref51">
        <mixed-citation>
          <string-name>
            <given-names>T.</given-names>
            <surname>Li</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A. K.</given-names>
            <surname>Sahu</surname>
          </string-name>
          ,
          <string-name>
            <given-names>M.</given-names>
            <surname>Zaheer</surname>
          </string-name>
          ,
          <string-name>
            <given-names>M.</given-names>
            <surname>Sanjabi</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Talwalkar</surname>
          </string-name>
          , and
          <string-name>
            <given-names>V.</given-names>
            <surname>Smith</surname>
          </string-name>
          , “Federated Optimization in Heterogeneous Networks,” en, arXiv:
          <year>1812</year>
          .06127 [cs, stat],
          <year>2020</year>
          . (visited on 09/20/
          <year>2021</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref52">
        <mixed-citation>
          <string-name>
            <given-names>P.</given-names>
            <surname>Yu</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Kundu</surname>
          </string-name>
          ,
          <string-name>
            <given-names>L.</given-names>
            <surname>Wynter</surname>
          </string-name>
          , and
          <string-name>
            <given-names>S. H.</given-names>
            <surname>Lim</surname>
          </string-name>
          , “Fed+
          <article-title>: A Unified Approach to Robust Personalized Federated Learning,” en</article-title>
          , arXiv:
          <year>2009</year>
          .06303 [cs, math, stat],
          <year>2021</year>
          . (visited on 01/31/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref53">
        <mixed-citation>
          <string-name>
            <given-names>Z.</given-names>
            <surname>Chen</surname>
          </string-name>
          ,
          <string-name>
            <given-names>P.</given-names>
            <surname>Tian</surname>
          </string-name>
          ,
          <string-name>
            <given-names>W.</given-names>
            <surname>Liao</surname>
          </string-name>
          , and
          <string-name>
            <given-names>W.</given-names>
            <surname>Yu</surname>
          </string-name>
          , “
          <article-title>Zero Knowledge Clustering Based Adversarial Mitigation in Heterogeneous Federated Learning</article-title>
          ,
          <source>” IEEE Transactions on Network Science and Engineering</source>
          ,
          <year>2021</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref54">
        <mixed-citation>
          <string-name>
            <given-names>B. E.</given-names>
            <surname>Strom</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A.</given-names>
            <surname>Applebaum</surname>
          </string-name>
          ,
          <string-name>
            <given-names>D. P.</given-names>
            <surname>Miller</surname>
          </string-name>
          ,
          <string-name>
            <given-names>K. C.</given-names>
            <surname>Nickels</surname>
          </string-name>
          ,
          <string-name>
            <given-names>A. G.</given-names>
            <surname>Pennington</surname>
          </string-name>
          , and C. B. Thomas, “
          <article-title>Mitre att&amp;ck™: Design and philosophy,” MITRE CORP BEDFORD MA</article-title>
          , Tech. Rep.,
          <year>2018</year>
          .
        </mixed-citation>
      </ref>
      <ref id="ref55">
        <mixed-citation>
          <string-name>
            <given-names>R.</given-names>
            <surname>Uetz</surname>
          </string-name>
          ,
          <string-name>
            <given-names>C.</given-names>
            <surname>Hemminghaus</surname>
          </string-name>
          ,
          <string-name>
            <given-names>L.</given-names>
            <surname>Hackländer</surname>
          </string-name>
          ,
          <string-name>
            <given-names>P.</given-names>
            <surname>Schlipper</surname>
          </string-name>
          , and
          <string-name>
            <given-names>M.</given-names>
            <surname>Henze</surname>
          </string-name>
          , “
          <article-title>Reproducible and Adaptable Log Data Generation for Sound Cybersecurity Experiments,” en</article-title>
          , in Annual Computer Security Applications Conference, Virtual Event USA: ACM,
          <year>2021</year>
          . (visited on 08/08/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
      <ref id="ref56">
        <mixed-citation>
          <string-name>
            <given-names>Z.</given-names>
            <surname>Li</surname>
          </string-name>
          ,
          <string-name>
            <given-names>T.</given-names>
            <surname>Wang</surname>
          </string-name>
          , and
          <string-name>
            <given-names>N.</given-names>
            <surname>Li</surname>
          </string-name>
          , Diferentially Private Vertical Federated Clustering , en,
          <year>2022</year>
          . (visited on 08/16/
          <year>2022</year>
          ).
        </mixed-citation>
      </ref>
    </ref-list>
  </back>
</article>