{"id":"https://openalex.org/W4388820956","doi":"https://doi.org/10.1109/ats59501.2023.10317993","title":"An Empirical Study of the Inherent Resistance of Knowledge Distillation Based Federated Learning to Targeted Poisoning Attacks","display_name":"An Empirical Study of the Inherent Resistance of Knowledge Distillation Based Federated Learning to Targeted Poisoning Attacks","publication_year":2023,"publication_date":"2023-10-14","ids":{"openalex":"https://openalex.org/W4388820956","doi":"https://doi.org/10.1109/ats59501.2023.10317993"},"language":"en","primary_location":{"id":"doi:10.1109/ats59501.2023.10317993","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/ats59501.2023.10317993","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE 32nd Asian Test Symposium (ATS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://dr.ntu.edu.sg/bitstream/10356/173117/2/eval_KDFL_camera-ready.pdf","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100561730","display_name":"Weiyang He","orcid":"https://orcid.org/0009-0005-6109-4009"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":true,"raw_author_name":"Weiyang He","raw_affiliation_strings":["School of Electrical and Electronic Engineering, Nanyang Technological University"],"affiliations":[{"raw_affiliation_string":"School of Electrical and Electronic Engineering, Nanyang Technological University","institution_ids":["https://openalex.org/I172675005"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103202637","display_name":"Zizhen Liu","orcid":"https://orcid.org/0000-0002-1674-9361"},"institutions":[{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]},{"id":"https://openalex.org/I4210165038","display_name":"University of Chinese Academy of Sciences","ror":"https://ror.org/05qbk4x57","country_code":"CN","type":"education","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210165038"]},{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"funder","lineage":["https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zizhen Liu","raw_affiliation_strings":["Institute of Computing Technology, Chinese Academy of Sciences,State Key Lab of Processors","University of Chinese Academy of Sciences","CASTEST Co., Ltd","State Key Lab of Processors, Institute of Computing Technology, Chinese Academy of Sciences"],"affiliations":[{"raw_affiliation_string":"Institute of Computing Technology, Chinese Academy of Sciences,State Key Lab of Processors","institution_ids":["https://openalex.org/I4210090176","https://openalex.org/I19820366"]},{"raw_affiliation_string":"University of Chinese Academy of Sciences","institution_ids":["https://openalex.org/I4210165038"]},{"raw_affiliation_string":"CASTEST Co., Ltd","institution_ids":[]},{"raw_affiliation_string":"State Key Lab of Processors, Institute of Computing Technology, Chinese Academy of Sciences","institution_ids":["https://openalex.org/I4210090176","https://openalex.org/I19820366"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5029335324","display_name":"Chip-Hong Chang","orcid":"https://orcid.org/0000-0002-8897-6176"},"institutions":[{"id":"https://openalex.org/I172675005","display_name":"Nanyang Technological University","ror":"https://ror.org/02e7b5302","country_code":"SG","type":"education","lineage":["https://openalex.org/I172675005"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Chip-Hong Chang","raw_affiliation_strings":["School of Electrical and Electronic Engineering, Nanyang Technological University"],"affiliations":[{"raw_affiliation_string":"School of Electrical and Electronic Engineering, Nanyang Technological University","institution_ids":["https://openalex.org/I172675005"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5100561730"],"corresponding_institution_ids":["https://openalex.org/I172675005"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.15390815,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"33","issue":null,"first_page":"1","last_page":"6"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.989300012588501,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9876999855041504,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6618281006813049},{"id":"https://openalex.org/keywords/distillation","display_name":"Distillation","score":0.6179288029670715},{"id":"https://openalex.org/keywords/resistance","display_name":"Resistance (ecology)","score":0.5370074510574341},{"id":"https://openalex.org/keywords/empirical-research","display_name":"Empirical research","score":0.4555354118347168},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.44293132424354553},{"id":"https://openalex.org/keywords/chemistry","display_name":"Chemistry","score":0.161426842212677},{"id":"https://openalex.org/keywords/chromatography","display_name":"Chromatography","score":0.09177151322364807}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6618281006813049},{"id":"https://openalex.org/C204030448","wikidata":"https://www.wikidata.org/wiki/Q101017","display_name":"Distillation","level":2,"score":0.6179288029670715},{"id":"https://openalex.org/C57473165","wikidata":"https://www.wikidata.org/wiki/Q7315604","display_name":"Resistance (ecology)","level":2,"score":0.5370074510574341},{"id":"https://openalex.org/C120936955","wikidata":"https://www.wikidata.org/wiki/Q2155640","display_name":"Empirical research","level":2,"score":0.4555354118347168},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.44293132424354553},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.161426842212677},{"id":"https://openalex.org/C43617362","wikidata":"https://www.wikidata.org/wiki/Q170050","display_name":"Chromatography","level":1,"score":0.09177151322364807},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C18903297","wikidata":"https://www.wikidata.org/wiki/Q7150","display_name":"Ecology","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/ats59501.2023.10317993","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/ats59501.2023.10317993","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE 32nd Asian Test Symposium (ATS)","raw_type":"proceedings-article"},{"id":"pmh:oai:dr.ntu.edu.sg:10356/173117","is_oa":true,"landing_page_url":"https://hdl.handle.net/10356/173117","pdf_url":"https://dr.ntu.edu.sg/bitstream/10356/173117/2/eval_KDFL_camera-ready.pdf","source":{"id":"https://openalex.org/S4306402609","display_name":"DR-NTU (Nanyang Technological University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I172675005","host_organization_name":"Nanyang Technological University","host_organization_lineage":["https://openalex.org/I172675005"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Conference Paper"}],"best_oa_location":{"id":"pmh:oai:dr.ntu.edu.sg:10356/173117","is_oa":true,"landing_page_url":"https://hdl.handle.net/10356/173117","pdf_url":"https://dr.ntu.edu.sg/bitstream/10356/173117/2/eval_KDFL_camera-ready.pdf","source":{"id":"https://openalex.org/S4306402609","display_name":"DR-NTU (Nanyang Technological University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I172675005","host_organization_name":"Nanyang Technological University","host_organization_lineage":["https://openalex.org/I172675005"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Conference Paper"},"sustainable_development_goals":[{"score":0.5600000023841858,"id":"https://metadata.un.org/sdg/2","display_name":"Zero hunger"}],"awards":[{"id":"https://openalex.org/G1121271761","display_name":null,"funder_award_id":"Program","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G1231421488","display_name":null,"funder_award_id":"under","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G2087396116","display_name":null,"funder_award_id":"China","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G2674912097","display_name":null,"funder_award_id":"6209002","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G3034753964","display_name":null,"funder_award_id":"grant","funder_id":"https://openalex.org/F4320320671","funder_display_name":"National Research Foundation"},{"id":"https://openalex.org/G3317480652","display_name":null,"funder_award_id":"Science","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G391238517","display_name":null,"funder_award_id":", and","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G4478266629","display_name":null,"funder_award_id":"62090024","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G4757893089","display_name":null,"funder_award_id":"U20A20202","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G5249413651","display_name":null,"funder_award_id":"U20A2020","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G5517038434","display_name":null,"funder_award_id":"2020YFB","funder_id":"https://openalex.org/F4320335777","funder_display_name":"National Key Research and Development Program of China"},{"id":"https://openalex.org/G5994120800","display_name":null,"funder_award_id":"Natural","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G6764517672","display_name":null,"funder_award_id":"U20A202","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G68136634","display_name":null,"funder_award_id":"2090024","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G6997238163","display_name":null,"funder_award_id":"2020YFB1600201","funder_id":"https://openalex.org/F4320335777","funder_display_name":"National Key Research and Development Program of China"},{"id":"https://openalex.org/G7106102081","display_name":null,"funder_award_id":"61876173","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G7794288408","display_name":null,"funder_award_id":"B16002","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320320671","display_name":"National Research Foundation","ror":"https://ror.org/05s0g1g46"},{"id":"https://openalex.org/F4320320709","display_name":"National Research Foundation Singapore","ror":"https://ror.org/03cpyc314"},{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320322847","display_name":"Youth Innovation Promotion Association of the Chinese Academy of Sciences","ror":"https://ror.org/031141b54"},{"id":"https://openalex.org/F4320335777","display_name":"National Key Research and Development Program of China","ror":null},{"id":"https://openalex.org/F4320335892","display_name":"Youth Innovation Promotion Association","ror":null}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4388820956.pdf","grobid_xml":"https://content.openalex.org/works/W4388820956.grobid-xml"},"referenced_works_count":31,"referenced_works":["https://openalex.org/W1821462560","https://openalex.org/W2535690855","https://openalex.org/W2963456518","https://openalex.org/W2970408908","https://openalex.org/W2980216952","https://openalex.org/W2990595670","https://openalex.org/W2995022099","https://openalex.org/W2998732348","https://openalex.org/W3012501605","https://openalex.org/W3042871071","https://openalex.org/W3086590218","https://openalex.org/W3109094166","https://openalex.org/W3155912831","https://openalex.org/W3159080474","https://openalex.org/W3175919946","https://openalex.org/W4224227775","https://openalex.org/W4287906413","https://openalex.org/W6728757088","https://openalex.org/W6743821447","https://openalex.org/W6748786018","https://openalex.org/W6752600739","https://openalex.org/W6756840679","https://openalex.org/W6758201434","https://openalex.org/W6771533808","https://openalex.org/W6780224944","https://openalex.org/W6788876066","https://openalex.org/W6796484261","https://openalex.org/W6799246147","https://openalex.org/W6810249531","https://openalex.org/W6849023765","https://openalex.org/W6849725571"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052"],"abstract_inverted_index":{"While":[0],"the":[1,20,31,52,58,62,66,97,138,143,151],"integration":[2],"of":[3,22,33,68,99,122,140,153],"Knowledge":[4],"Distillation":[5],"(KD)":[6],"into":[7,137,150],"Federated":[8],"Learning":[9],"(FL)":[10],"has":[11],"recently":[12],"emerged":[13],"as":[14],"a":[15],"promising":[16],"solution":[17],"to":[18,61,102,131],"address":[19],"challenges":[21],"heterogeneity":[23],"and":[24,65,156],"communication":[25],"efficiency,":[26],"little":[27],"is":[28,55],"known":[29],"about":[30],"security":[32],"these":[34,133],"schemes":[35],"against":[36,77],"poisoning":[37,79,105],"attacks":[38,80,106],"prevalent":[39],"in":[40,81,159],"vanilla":[41],"FL.":[42,82],"From":[43],"recent":[44],"countermeasures":[45],"built":[46],"around":[47],"KD,":[48],"we":[49,87],"conjecture":[50],"that":[51,127],"way":[53],"knowledge":[54,69],"distilled":[56],"from":[57],"global":[59],"model":[60],"local":[63],"models":[64],"type":[67],"transfer":[70],"by":[71],"KD":[72,144],"themselves":[73],"offer":[74],"some":[75],"resilience":[76],"targeted":[78,104],"To":[83],"attest":[84],"this":[85],"hypothesis,":[86],"systematize":[88],"various":[89],"adversary":[90],"agnostic":[91],"state-of-the-art":[92],"KD-based":[93,124],"FL":[94,125,161],"algorithms":[95,126],"for":[96],"evaluation":[98],"their":[100,141],"resistance":[101],"different":[103,160],"on":[107],"two":[108],"vision":[109],"recognition":[110],"tasks.":[111],"Our":[112],"empirical":[113],"security-utility":[114],"trade-off":[115],"study":[116],"indicates":[117],"surprisingly":[118],"good":[119],"inherent":[120],"immunity":[121],"certain":[123],"are":[128],"not":[129],"designed":[130],"mitigate":[132],"attacks.":[134],"By":[135],"probing":[136],"causes":[139],"robustness,":[142],"space":[145],"exploration":[146],"provides":[147],"further":[148],"insights":[149],"balancing":[152],"security,":[154],"privacy":[155],"efficiency":[157],"triad":[158],"settings.":[162]},"counts_by_year":[],"updated_date":"2026-04-10T15:06:20.359241","created_date":"2025-10-10T00:00:00"}