{"id":"https://openalex.org/W4224013687","doi":"https://doi.org/10.1109/ciss53076.2022.9751167","title":"Hidden Vulnerabilities in Cosine Similarity based Poisoning Defense","display_name":"Hidden Vulnerabilities in Cosine Similarity based Poisoning Defense","publication_year":2022,"publication_date":"2022-03-09","ids":{"openalex":"https://openalex.org/W4224013687","doi":"https://doi.org/10.1109/ciss53076.2022.9751167"},"language":"en","primary_location":{"id":"doi:10.1109/ciss53076.2022.9751167","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ciss53076.2022.9751167","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 56th Annual Conference on Information Sciences and Systems (CISS)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5079240842","display_name":"Harsh Kasyap","orcid":"https://orcid.org/0000-0002-8313-6354"},"institutions":[{"id":"https://openalex.org/I132153292","display_name":"Indian Institute of Technology Patna","ror":"https://ror.org/01ft5vz71","country_code":"IN","type":"education","lineage":["https://openalex.org/I132153292"]}],"countries":["IN"],"is_corresponding":true,"raw_author_name":"Harsh Kasyap","raw_affiliation_strings":["Indian Institute of Technology Patna,Department of Computer Science and Engineering,Patna,India","Department of Computer Science and Engineering, Indian Institute of Technology Patna, Patna, India"],"affiliations":[{"raw_affiliation_string":"Indian Institute of Technology Patna,Department of Computer Science and Engineering,Patna,India","institution_ids":["https://openalex.org/I132153292"]},{"raw_affiliation_string":"Department of Computer Science and Engineering, Indian Institute of Technology Patna, Patna, India","institution_ids":["https://openalex.org/I132153292"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5071224481","display_name":"Somanath Tripathy","orcid":"https://orcid.org/0000-0002-6964-2648"},"institutions":[{"id":"https://openalex.org/I132153292","display_name":"Indian Institute of Technology Patna","ror":"https://ror.org/01ft5vz71","country_code":"IN","type":"education","lineage":["https://openalex.org/I132153292"]}],"countries":["IN"],"is_corresponding":false,"raw_author_name":"Somanath Tripathy","raw_affiliation_strings":["Indian Institute of Technology Patna,Department of Computer Science and Engineering,Patna,India","Department of Computer Science and Engineering, Indian Institute of Technology Patna, Patna, India"],"affiliations":[{"raw_affiliation_string":"Indian Institute of Technology Patna,Department of Computer Science and Engineering,Patna,India","institution_ids":["https://openalex.org/I132153292"]},{"raw_affiliation_string":"Department of Computer Science and Engineering, Indian Institute of Technology Patna, Patna, India","institution_ids":["https://openalex.org/I132153292"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5079240842"],"corresponding_institution_ids":["https://openalex.org/I132153292"],"apc_list":null,"apc_paid":null,"fwci":0.7957,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.75859307,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"263","last_page":"268"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9983999729156494,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.998199999332428,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9254999756813049,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7148337364196777},{"id":"https://openalex.org/keywords/similarity","display_name":"Similarity (geometry)","score":0.6687912940979004},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6451414823532104},{"id":"https://openalex.org/keywords/cosine-similarity","display_name":"Cosine similarity","score":0.6116166710853577},{"id":"https://openalex.org/keywords/euclidean-distance","display_name":"Euclidean distance","score":0.559863269329071},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3624035716056824},{"id":"https://openalex.org/keywords/pattern-recognition","display_name":"Pattern recognition (psychology)","score":0.17000332474708557}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7148337364196777},{"id":"https://openalex.org/C103278499","wikidata":"https://www.wikidata.org/wiki/Q254465","display_name":"Similarity (geometry)","level":3,"score":0.6687912940979004},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6451414823532104},{"id":"https://openalex.org/C2780762811","wikidata":"https://www.wikidata.org/wiki/Q1784941","display_name":"Cosine similarity","level":3,"score":0.6116166710853577},{"id":"https://openalex.org/C120174047","wikidata":"https://www.wikidata.org/wiki/Q847073","display_name":"Euclidean distance","level":2,"score":0.559863269329071},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3624035716056824},{"id":"https://openalex.org/C153180895","wikidata":"https://www.wikidata.org/wiki/Q7148389","display_name":"Pattern recognition (psychology)","level":2,"score":0.17000332474708557},{"id":"https://openalex.org/C115961682","wikidata":"https://www.wikidata.org/wiki/Q860623","display_name":"Image (mathematics)","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ciss53076.2022.9751167","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ciss53076.2022.9751167","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2022 56th Annual Conference on Information Sciences and Systems (CISS)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.6899999976158142,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":25,"referenced_works":["https://openalex.org/W2088454850","https://openalex.org/W2283463896","https://openalex.org/W2752689052","https://openalex.org/W2788816110","https://openalex.org/W2789911054","https://openalex.org/W2804073516","https://openalex.org/W2903356604","https://openalex.org/W2949523979","https://openalex.org/W2964261056","https://openalex.org/W3048715803","https://openalex.org/W3138153888","https://openalex.org/W3138597937","https://openalex.org/W3200002062","https://openalex.org/W4288578176","https://openalex.org/W4318619660","https://openalex.org/W6695838908","https://openalex.org/W6728757088","https://openalex.org/W6743821447","https://openalex.org/W6748786018","https://openalex.org/W6754358263","https://openalex.org/W6756840679","https://openalex.org/W6756898242","https://openalex.org/W6758201434","https://openalex.org/W6770634426","https://openalex.org/W6787656162"],"related_works":["https://openalex.org/W2389818373","https://openalex.org/W2220831889","https://openalex.org/W4312683641","https://openalex.org/W3027421045","https://openalex.org/W2010199950","https://openalex.org/W2576320324","https://openalex.org/W3013312691","https://openalex.org/W2980386803","https://openalex.org/W2019538911","https://openalex.org/W2467200550"],"abstract_inverted_index":{"Federated":[0],"learning":[1,5],"is":[2,39,140,219],"a":[3,27,155,178,183],"collaborative":[4],"paradigm":[6,35],"that":[7,33,139,215],"deploys":[8],"the":[9,12,17,21,24,31,59,62,81,147,206,209,216],"model":[10,51,84,98,159],"to":[11,41,52,57,74,92,103,114,142,145,150,204],"edge":[13],"for":[14,188],"training":[15],"over":[16],"local":[18,97,158],"data":[19,49,77],"of":[20,26,61,208],"participants":[22,44],"under":[23],"supervision":[25],"trusted":[28],"server.":[29],"Despite":[30],"fact":[32],"this":[34],"guarantees":[36],"privacy,":[37],"it":[38],"vulnerable":[40],"poisoning.":[42],"Malicious":[43],"alter":[45],"their":[46,128],"locally":[47],"maintained":[48],"or":[50,68],"publish":[53],"an":[54,134],"insidious":[55,89],"update,":[56],"reduce":[58],"accuracy":[60,148],"global":[63],"model.":[64],"Recent":[65],"byzantine-robust":[66],"(euclidean":[67],"cosine-similarity)":[69],"based":[70,106,117,157],"aggregation":[71],"techniques,":[72],"claim":[73],"protect":[75],"against":[76],"poisoning":[78,85,99,160],"attacks.":[79],"On":[80],"other":[82],"hand,":[83],"attacks":[86,100],"are":[87,101,192],"more":[88],"and":[90,124,126,165,170,182,202],"adaptable":[91,141],"current":[93],"defenses.":[94,118,190],"Though":[95],"different":[96,196],"proposed":[102,210],"attack":[104,138,161,176,200],"euclidean":[105],"defenses,":[107],"we":[108,153],"could":[109],"not":[110],"find":[111,127],"any":[112],"work":[113],"investigate":[115],"cosine-similarity":[116,156],"We":[119,131],"examine":[120],"such":[121],"defenses":[122],"(FLTrust":[123],"FoolsGold)":[125],"underlying":[129],"issues.":[130],"also":[132],"demonstrate":[133],"efficient":[135],"layer":[136],"replacement":[137],"FLTrust,":[143],"impacting":[144],"lower":[146],"up":[149],"10%.":[151],"Further,":[152],"propose":[154],"(CSA)":[162],"on":[163,195],"FLTrust":[164],"FoolsGold,":[166],"which":[167],"generates":[168],"diverse":[169],"poisonous":[171],"client":[172],"updates.":[173],"The":[174,212],"later":[175],"maintains":[177],"high":[179,184],"trust":[180],"score":[181,187],"averaged":[185],"weighted":[186],"respective":[189],"Experiments":[191],"carried":[193],"out":[194],"datasets,":[197],"with":[198],"varying":[199],"capabilities":[201],"settings,":[203],"study":[205],"effectiveness":[207],"attack.":[211],"results":[213],"show":[214],"test":[217],"loss":[218],"increased":[220],"by":[221],"10":[222],"-":[223],"20\u00d7.":[224]},"counts_by_year":[{"year":2025,"cited_by_count":4},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":1}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}