{"id":"https://openalex.org/W7138895823","doi":"https://doi.org/10.1109/globecom59602.2025.11432262","title":"Effective Dual-Layer Poison Attacks Detection in Privacy-preserving Federated Learning","display_name":"Effective Dual-Layer Poison Attacks Detection in Privacy-preserving Federated Learning","publication_year":2025,"publication_date":"2025-12-08","ids":{"openalex":"https://openalex.org/W7138895823","doi":"https://doi.org/10.1109/globecom59602.2025.11432262"},"language":null,"primary_location":{"id":"doi:10.1109/globecom59602.2025.11432262","is_oa":false,"landing_page_url":"https://doi.org/10.1109/globecom59602.2025.11432262","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"GLOBECOM 2025 - 2025 IEEE Global Communications Conference","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100430876","display_name":"Xi Zhang","orcid":"https://orcid.org/0000-0003-3415-5345"},"institutions":[{"id":"https://openalex.org/I25757504","display_name":"China University of Mining and Technology","ror":"https://ror.org/01xt2dr21","country_code":"CN","type":"education","lineage":["https://openalex.org/I25757504"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Xiao Zhang","raw_affiliation_strings":["China University of Mining and Technology,The Department of Information Science,Xuzhou,China,221116"],"affiliations":[{"raw_affiliation_string":"China University of Mining and Technology,The Department of Information Science,Xuzhou,China,221116","institution_ids":["https://openalex.org/I25757504"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5129881711","display_name":"Haotian Chi","orcid":null},"institutions":[{"id":"https://openalex.org/I181877577","display_name":"Shanxi University","ror":"https://ror.org/03y3e3s17","country_code":"CN","type":"education","lineage":["https://openalex.org/I181877577"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Haotian Chi","raw_affiliation_strings":["Shanxi University,School of Automation and Software Engineering,Taiyuan,China,030006"],"affiliations":[{"raw_affiliation_string":"Shanxi University,School of Automation and Software Engineering,Taiyuan,China,030006","institution_ids":["https://openalex.org/I181877577"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5107909020","display_name":"Yonggang Li","orcid":"https://orcid.org/0009-0003-7751-697X"},"institutions":[{"id":"https://openalex.org/I25757504","display_name":"China University of Mining and Technology","ror":"https://ror.org/01xt2dr21","country_code":"CN","type":"education","lineage":["https://openalex.org/I25757504"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yonggang Li","raw_affiliation_strings":["China University of Mining and Technology,The Department of Information Science,Xuzhou,China,221116"],"affiliations":[{"raw_affiliation_string":"China University of Mining and Technology,The Department of Information Science,Xuzhou,China,221116","institution_ids":["https://openalex.org/I25757504"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5027335042","display_name":"Shunrong Jiang","orcid":"https://orcid.org/0000-0003-2823-1794"},"institutions":[{"id":"https://openalex.org/I25757504","display_name":"China University of Mining and Technology","ror":"https://ror.org/01xt2dr21","country_code":"CN","type":"education","lineage":["https://openalex.org/I25757504"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shunrong Jiang","raw_affiliation_strings":["China University of Mining and Technology,The Department of Information Science,Xuzhou,China,221116"],"affiliations":[{"raw_affiliation_string":"China University of Mining and Technology,The Department of Information Science,Xuzhou,China,221116","institution_ids":["https://openalex.org/I25757504"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060514022","display_name":"Xiaojiang Du","orcid":"https://orcid.org/0000-0003-4235-9671"},"institutions":[{"id":"https://openalex.org/I108468826","display_name":"Stevens Institute of Technology","ror":"https://ror.org/02z43xh36","country_code":"US","type":"education","lineage":["https://openalex.org/I108468826"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Xiaojiang Du","raw_affiliation_strings":["Stevens Institute of Technology,Department of Electrical and Computer Engineering,Hoboken,NJ,USA"],"affiliations":[{"raw_affiliation_string":"Stevens Institute of Technology,Department of Electrical and Computer Engineering,Hoboken,NJ,USA","institution_ids":["https://openalex.org/I108468826"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5129812168","display_name":"Danny Hughes","orcid":null},"institutions":[{"id":"https://openalex.org/I99464096","display_name":"KU Leuven","ror":"https://ror.org/05f950310","country_code":"BE","type":"education","lineage":["https://openalex.org/I99464096"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Danny Hughes","raw_affiliation_strings":["KU Leuven,Department of Computer Science,Belgium"],"affiliations":[{"raw_affiliation_string":"KU Leuven,Department of Computer Science,Belgium","institution_ids":["https://openalex.org/I99464096"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5100430876"],"corresponding_institution_ids":["https://openalex.org/I25757504"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.88117882,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"2300","last_page":"2305"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9477999806404114,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9477999806404114,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.025100000202655792,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.0027000000700354576,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/differential-privacy","display_name":"Differential privacy","score":0.6168000102043152},{"id":"https://openalex.org/keywords/overhead","display_name":"Overhead (engineering)","score":0.5594000220298767},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.5133000016212463},{"id":"https://openalex.org/keywords/federated-learning","display_name":"Federated learning","score":0.5009999871253967},{"id":"https://openalex.org/keywords/scheme","display_name":"Scheme (mathematics)","score":0.492000013589859},{"id":"https://openalex.org/keywords/quantization","display_name":"Quantization (signal processing)","score":0.4422999918460846},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.43309998512268066},{"id":"https://openalex.org/keywords/isolation","display_name":"Isolation (microbiology)","score":0.42239999771118164}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8019000291824341},{"id":"https://openalex.org/C23130292","wikidata":"https://www.wikidata.org/wiki/Q5275358","display_name":"Differential privacy","level":2,"score":0.6168000102043152},{"id":"https://openalex.org/C2779960059","wikidata":"https://www.wikidata.org/wiki/Q7113681","display_name":"Overhead (engineering)","level":2,"score":0.5594000220298767},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.5133000016212463},{"id":"https://openalex.org/C2992525071","wikidata":"https://www.wikidata.org/wiki/Q50818671","display_name":"Federated learning","level":2,"score":0.5009999871253967},{"id":"https://openalex.org/C77618280","wikidata":"https://www.wikidata.org/wiki/Q1155772","display_name":"Scheme (mathematics)","level":2,"score":0.492000013589859},{"id":"https://openalex.org/C28855332","wikidata":"https://www.wikidata.org/wiki/Q198099","display_name":"Quantization (signal processing)","level":2,"score":0.4422999918460846},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.43309998512268066},{"id":"https://openalex.org/C2775941552","wikidata":"https://www.wikidata.org/wiki/Q25212305","display_name":"Isolation (microbiology)","level":2,"score":0.42239999771118164},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4115999937057495},{"id":"https://openalex.org/C132964779","wikidata":"https://www.wikidata.org/wiki/Q2110223","display_name":"Raw data","level":2,"score":0.3732999861240387},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.3626999855041504},{"id":"https://openalex.org/C106131492","wikidata":"https://www.wikidata.org/wiki/Q3072260","display_name":"Filter (signal processing)","level":2,"score":0.3601999878883362},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.3368000090122223},{"id":"https://openalex.org/C137822555","wikidata":"https://www.wikidata.org/wiki/Q2587068","display_name":"Information sensitivity","level":2,"score":0.320499986410141},{"id":"https://openalex.org/C2776214188","wikidata":"https://www.wikidata.org/wiki/Q408386","display_name":"Inference","level":2,"score":0.3147999942302704},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.2678000032901764},{"id":"https://openalex.org/C3017597292","wikidata":"https://www.wikidata.org/wiki/Q25052250","display_name":"Privacy protection","level":2,"score":0.2669999897480011},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.2623000144958496},{"id":"https://openalex.org/C509729295","wikidata":"https://www.wikidata.org/wiki/Q7246032","display_name":"Privacy software","level":3,"score":0.25529998540878296}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/globecom59602.2025.11432262","is_oa":false,"landing_page_url":"https://doi.org/10.1109/globecom59602.2025.11432262","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"GLOBECOM 2025 - 2025 IEEE Global Communications Conference","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":14,"referenced_works":["https://openalex.org/W2040975718","https://openalex.org/W2141586573","https://openalex.org/W2159145942","https://openalex.org/W2296719434","https://openalex.org/W3215074513","https://openalex.org/W4317795078","https://openalex.org/W4387911072","https://openalex.org/W4388007993","https://openalex.org/W4390906206","https://openalex.org/W4391661654","https://openalex.org/W4392544406","https://openalex.org/W4400076000","https://openalex.org/W4404387360","https://openalex.org/W4407308391"],"related_works":[],"abstract_inverted_index":{"Although":[0],"federated":[1],"learning":[2],"offers":[3],"a":[4,77,83,94,124],"certain":[5],"degree":[6],"of":[7,14,37,150],"privacy":[8,45,58,133,176],"by":[9],"aggregating":[10],"user":[11],"gradients":[12],"instead":[13],"raw":[15],"data,":[16],"it":[17],"remains":[18],"vulnerable":[19],"to":[20,44,62,107],"various":[21],"attacks,":[22],"such":[23,47],"as":[24,48],"model":[25,115,151],"poisoning.":[26],"Existing":[27],"defense":[28],"mechanisms":[29],"often":[30,67],"address":[31,87],"poisoning":[32],"threats":[33],"at":[34],"the":[35,74,143,148],"cost":[36],"exposing":[38],"gradient":[39,125,132,153],"information,":[40],"which":[41],"can":[42,59],"lead":[43],"risks":[46],"member":[49],"inference":[50],"attacks.":[51],"While":[52],"techniques":[53],"like":[54],"cryptography":[55],"or":[56],"differential":[57],"be":[60],"employed":[61],"mitigate":[63],"these":[64,88],"risks,":[65],"they":[66],"come":[68],"with":[69,140],"significant":[70],"efficiency":[71],"trade-offs.":[72],"At":[73],"same":[75],"time,":[76],"non-IID":[78,159],"heterogeneous":[79],"environment":[80],"is":[81],"also":[82,135],"big":[84],"challenge.":[85],"To":[86],"challenges":[89,149],"holistically,":[90],"this":[91],"paper":[92],"proposes":[93],"dual-layer":[95],"detection":[96,106],"scheme":[97,166],"(EDDFL).":[98],"It":[99],"combines":[100],"norm-based":[101],"filtering":[102],"and":[103,155,171],"isolation":[104],"forest":[105],"effectively":[108,146],"filter":[109],"out":[110],"malicious":[111],"gradients,":[112],"thereby":[113],"preserving":[114],"accuracy":[116],"even":[117],"in":[118],"adversarial":[119],"environments.":[120],"Furthermore,":[121],"we":[122],"incorporate":[123],"quantization":[126],"method":[127,145],"that":[128,164],"not":[129],"only":[130],"protects":[131],"but":[134],"improves":[136],"communication":[137,172],"efficiency.":[138],"Compared":[139],"existing":[141],"approaches,":[142],"proposed":[144],"addresses":[147],"poisoning,":[152],"leakage,":[154],"data":[156],"heterogeneity":[157],"under":[158],"settings.":[160],"Experimental":[161],"results":[162],"demonstrate":[163],"our":[165],"significantly":[167],"reduces":[168],"both":[169],"computational":[170],"overhead":[173],"while":[174],"maintaining":[175],"guarantees.":[177]},"counts_by_year":[],"updated_date":"2026-03-20T20:54:20.808490","created_date":"2026-03-20T00:00:00"}