Related papers: FGGM: Formal Grey-box Gradient Method for Attacking DRL-based MU-MIMO Scheduler

FGGM: Formal Grey-box Gradient Method for Attacking DRL-based MU-MIMO Scheduler

URL: http://arxiv.org/abs/2510.26075v1
Date: Thu, 30 Oct 2025 02:17:32 GMT
Title: FGGM: Formal Grey-box Gradient Method for Attacking DRL-based MU-MIMO Scheduler
Authors: Thanh Le, Hai Duong, Yusheng Ji, ThanhVu Nguyen, John C. S. Lui,
Abstract summary: In 5G mobile communication systems, MU-MIMO has been applied to enhance spectral efficiency and support high data rates.<n>To maximize spectral efficiency while providing fairness among users, the base station needs to selects a subset of users for data transmission.<n>This paper investigates how a group of adversarial users can exploit unsanitized raw CSIs to launch a throughput degradation attack.
Score: 38.931160910894036
License: http://creativecommons.org/licenses/by/4.0/
Abstract: In 5G mobile communication systems, MU-MIMO has been applied to enhance spectral efficiency and support high data rates. To maximize spectral efficiency while providing fairness among users, the base station (BS) needs to selects a subset of users for data transmission. Given that this problem is NP-hard, DRL-based methods have been proposed to infer the near-optimal solutions in real-time, yet this approach has an intrinsic security problem. This paper investigates how a group of adversarial users can exploit unsanitized raw CSIs to launch a throughput degradation attack. Most existing studies only focused on systems in which adversarial users can obtain the exact values of victims' CSIs, but this is impractical in the case of uplink transmission in LTE/5G mobile systems. We note that the DRL policy contains an observation normalizer which has the mean and variance of the observation to improve training convergence. Adversarial users can then estimate the upper and lower bounds of the local observations including the CSIs of victims based solely on that observation normalizer. We develop an attacking scheme FGGM by leveraging polytope abstract domains, a technique used to bound the outputs of a neural network given the input ranges. Our goal is to find one set of intentionally manipulated CSIs which can achieve the attacking goals for the whole range of local observations of victims. Experimental results demonstrate that FGGM can determine a set of adversarial CSI vector controlled by adversarial users, then reuse those CSIs throughout the simulation to reduce the network throughput of a victim up to 70\% without knowing the exact value of victims' local observations. This study serves as a case study and can be applied to many other DRL-based problems, such as a knapsack-oriented resource allocation problems.

Related papers

Green Learning for STAR-RIS mmWave Systems with Implicit CSI [53.03358325565645]
Green learning (GL)-based precoding framework is proposed for simultaneously transmitting and reflecting reconfigurable intelligent surface (STAR-RIS)-aided millimeter-wave (mmWave) broadcasting systems.<n>Motivated by the emphasis on environmental sustainability in future 6G networks, this work adopts a transmission framework for scenarios where multiple users share identical information, improving spectral efficiency and reducing redundant transmissions and power consumption.
arXiv Detail & Related papers (2025-09-08T15:56:06Z)
Distributed Gossip-GAN for Low-overhead CSI Feedback Training in FDD mMIMO-OFDM Systems [65.23921727688749]
We propose a novel gossiping generative adversarial network (Gossip-GAN)-aided CSI feedback training framework.<n>Gossip-GAN enables the CSI feedback training with low-overhead while preserving users' privacy.
arXiv Detail & Related papers (2025-08-31T07:46:16Z)
CSI-BERT2: A BERT-inspired Framework for Efficient CSI Prediction and Classification in Wireless Communication and Sensing [19.12026243010111]
We propose a unified framework named CSI-BERT2 for CSI prediction and classification tasks.<n>The framework adapts BERT to capture the complex relationships among CSI sequences through a bidirectional self-attention mechanism.<n>Extensive experiments on both real-world collected and simulated datasets demonstrate that CSI-BERT2 achieves state-of-the-art performance across all tasks.
arXiv Detail & Related papers (2024-12-09T06:44:04Z)
Unsupervised Learning for Fault Detection of HVAC Systems: An OPTICS -based Approach for Terminal Air Handling Units [1.0878040851638]
This study introduces an unsupervised learning strategy to detect faults in terminal air handling units and their associated systems. The methodology involves pre-processing historical sensor data using Principal Component Analysis to streamline dimensions. Results showed that OPTICS consistently surpassed k-means in accuracy across seasons.
arXiv Detail & Related papers (2023-12-18T18:08:54Z)
A Low-Overhead Incorporation-Extrapolation based Few-Shot CSI Feedback Framework for Massive MIMO Systems [45.22132581755417]
Accurate channel state information (CSI) is essential for downlink precoding in frequency division duplexing (FDD) massive multiple-input multiple-output (MIMO) systems. However, obtaining CSI through feedback from the user equipment (UE) becomes challenging with the increasing scale of antennas and subcarriers. Deep learning-based methods have emerged for compressing CSI but these methods require substantial collected samples. Existing deep learning methods also suffer from dramatically growing feedback overhead owing to their focus on full-dimensional CSI feedback. We propose a low-overhead-Extrapolation based Few-Shot CSI
arXiv Detail & Related papers (2023-12-07T06:01:47Z)
Cluster-level pseudo-labelling for source-free cross-domain facial expression recognition [94.56304526014875]
We propose the first Source-Free Unsupervised Domain Adaptation (SFUDA) method for Facial Expression Recognition (FER) Our method exploits self-supervised pretraining to learn good feature representations from the target data. We validate the effectiveness of our method in four adaptation setups, proving that it consistently outperforms existing SFUDA methods when applied to FER.
arXiv Detail & Related papers (2022-10-11T08:24:50Z)
DAAIN: Detection of Anomalous and Adversarial Input using Normalizing Flows [52.31831255787147]
We introduce a novel technique, DAAIN, to detect out-of-distribution (OOD) inputs and adversarial attacks (AA) Our approach monitors the inner workings of a neural network and learns a density estimator of the activation distribution. Our model can be trained on a single GPU making it compute efficient and deployable without requiring specialized accelerators.
arXiv Detail & Related papers (2021-05-30T22:07:13Z)
Deep Learning Assisted CSI Estimation for Joint URLLC and eMBB Resource Allocation [36.364156900974535]
We propose a deep learning assisted CSI estimation technique in highly mobile vehicular networks. We formulate and solve a dynamic network slicing based resource allocation problem for vehicular user equipments.
arXiv Detail & Related papers (2020-03-12T10:00:08Z)
SUOD: Accelerating Large-Scale Unsupervised Heterogeneous Outlier Detection [63.253850875265115]
Outlier detection (OD) is a key machine learning (ML) task for identifying abnormal objects from general samples. We propose a modular acceleration system, called SUOD, to address it.
arXiv Detail & Related papers (2020-03-11T00:22:50Z)

This list is automatically generated from the titles and abstracts of the papers in this site.

This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.