Beyond update-space auditing: temporal semantic evidence for adaptive deceptive client detection in federated intrusion detection
摘要
Federated learning enables collaborative intrusion detection without centralizing raw traffic records, but it also limits the server’s ability to inspect client behavior during training. This creates a client-level auditability problem: a federated intrusion-detection model may preserve high global predictive utility while malicious clients remain difficult to distinguish from benign participants. This problem becomes more challenging under adaptive gradient mimicry, where malicious clients deliberately make their submitted updates appear plausible in update space. This paper evaluates client-level auditability in federated intrusion detection under adaptive gradient mimicry. We examine whether simple update-space audit signals, including update norm, distance to benign reference behavior, and cosine similarity, retain malicious-client ranking information when the attacker reduces update-space abnormality. We then study temporal semantic auditing as complementary inspection evidence by evaluating client-updated temporary models over a fixed probe set and extracting attribution-derived behavior using Gradient