{"id":"https://openalex.org/W4387872826","doi":"https://doi.org/10.1109/icc45041.2023.10279267","title":"Towards Defending Adaptive Backdoor Attacks in Federated Learning","display_name":"Towards Defending Adaptive Backdoor Attacks in Federated Learning","publication_year":2023,"publication_date":"2023-05-28","ids":{"openalex":"https://openalex.org/W4387872826","doi":"https://doi.org/10.1109/icc45041.2023.10279267"},"language":"en","primary_location":{"id":"doi:10.1109/icc45041.2023.10279267","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/icc45041.2023.10279267","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ICC 2023 - IEEE International Conference on Communications","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5055058218","display_name":"Han Yang","orcid":"https://orcid.org/0000-0003-4469-6743"},"institutions":[{"id":"https://openalex.org/I110002522","display_name":"University of Essex","ror":"https://ror.org/02nkf1q06","country_code":"GB","type":"education","lineage":["https://openalex.org/I110002522"]}],"countries":["GB"],"is_corresponding":true,"raw_author_name":"Han Yang","raw_affiliation_strings":["University of Essex,Department of Computer science and Electronic Engineering,Essex,UK","Department of Computer science and Electronic Engineering, University of Essex, Essex, UK"],"affiliations":[{"raw_affiliation_string":"University of Essex,Department of Computer science and Electronic Engineering,Essex,UK","institution_ids":["https://openalex.org/I110002522"]},{"raw_affiliation_string":"Department of Computer science and Electronic Engineering, University of Essex, Essex, UK","institution_ids":["https://openalex.org/I110002522"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076389260","display_name":"Dongbing Gu","orcid":"https://orcid.org/0000-0002-0986-2921"},"institutions":[{"id":"https://openalex.org/I110002522","display_name":"University of Essex","ror":"https://ror.org/02nkf1q06","country_code":"GB","type":"education","lineage":["https://openalex.org/I110002522"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Dongbing Gu","raw_affiliation_strings":["University of Essex,Department of Computer science and Electronic Engineering,Essex,UK","Department of Computer science and Electronic Engineering, University of Essex, Essex, UK"],"affiliations":[{"raw_affiliation_string":"University of Essex,Department of Computer science and Electronic Engineering,Essex,UK","institution_ids":["https://openalex.org/I110002522"]},{"raw_affiliation_string":"Department of Computer science and Electronic Engineering, University of Essex, Essex, UK","institution_ids":["https://openalex.org/I110002522"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5014610561","display_name":"Jianhua He","orcid":"https://orcid.org/0000-0002-5738-8507"},"institutions":[{"id":"https://openalex.org/I110002522","display_name":"University of Essex","ror":"https://ror.org/02nkf1q06","country_code":"GB","type":"education","lineage":["https://openalex.org/I110002522"]}],"countries":["GB"],"is_corresponding":false,"raw_author_name":"Jianhua He","raw_affiliation_strings":["University of Essex,Department of Computer science and Electronic Engineering,Essex,UK","Department of Computer science and Electronic Engineering, University of Essex, Essex, UK"],"affiliations":[{"raw_affiliation_string":"University of Essex,Department of Computer science and Electronic Engineering,Essex,UK","institution_ids":["https://openalex.org/I110002522"]},{"raw_affiliation_string":"Department of Computer science and Electronic Engineering, University of Essex, Essex, UK","institution_ids":["https://openalex.org/I110002522"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5055058218"],"corresponding_institution_ids":["https://openalex.org/I110002522"],"apc_list":null,"apc_paid":null,"fwci":0.1746,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.56936257,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":94},"biblio":{"volume":null,"issue":null,"first_page":"5078","last_page":"5084"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9987999796867371,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9983000159263611,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9176999926567078,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/backdoor","display_name":"Backdoor","score":0.999505877494812},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7472220063209534},{"id":"https://openalex.org/keywords/mnist-database","display_name":"MNIST database","score":0.6003604531288147},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4769764840602875},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4700927436351776},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.4560650587081909},{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.4112955927848816},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.37303948402404785}],"concepts":[{"id":"https://openalex.org/C2781045450","wikidata":"https://www.wikidata.org/wiki/Q254569","display_name":"Backdoor","level":2,"score":0.999505877494812},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7472220063209534},{"id":"https://openalex.org/C190502265","wikidata":"https://www.wikidata.org/wiki/Q17069496","display_name":"MNIST database","level":3,"score":0.6003604531288147},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4769764840602875},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4700927436351776},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.4560650587081909},{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.4112955927848816},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.37303948402404785}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icc45041.2023.10279267","is_oa":false,"landing_page_url":"http://dx.doi.org/10.1109/icc45041.2023.10279267","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ICC 2023 - IEEE International Conference on Communications","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.4300000071525574,"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":28,"referenced_works":["https://openalex.org/W190008395","https://openalex.org/W2112796928","https://openalex.org/W2748789698","https://openalex.org/W2789911054","https://openalex.org/W2810065831","https://openalex.org/W2903356604","https://openalex.org/W2995164118","https://openalex.org/W3003426262","https://openalex.org/W3030742901","https://openalex.org/W3095273258","https://openalex.org/W3113458348","https://openalex.org/W3118840986","https://openalex.org/W3204548896","https://openalex.org/W4213446860","https://openalex.org/W4221129260","https://openalex.org/W4318619660","https://openalex.org/W6728757088","https://openalex.org/W6743581629","https://openalex.org/W6748786018","https://openalex.org/W6752600739","https://openalex.org/W6756840679","https://openalex.org/W6771533808","https://openalex.org/W6773366154","https://openalex.org/W6784747331","https://openalex.org/W6787633081","https://openalex.org/W6788531746","https://openalex.org/W6810415194","https://openalex.org/W7056673059"],"related_works":["https://openalex.org/W4320031223","https://openalex.org/W4200629851","https://openalex.org/W4281902577","https://openalex.org/W4309417370","https://openalex.org/W4292107232","https://openalex.org/W3009072493","https://openalex.org/W3093748630","https://openalex.org/W3206218040","https://openalex.org/W4206776436","https://openalex.org/W4380075502"],"abstract_inverted_index":{"Federated":[0],"learning":[1,16,19],"(FL)":[2],"is":[3,91,110,137],"an":[4,66],"efficient,":[5],"scalable,":[6],"and":[7,93,102,124],"privacy-preserving":[8],"technology":[9],"in":[10,95,113,163],"which":[11,37],"clients":[12,24],"collaborate":[13],"on":[14,119,128,143],"machine":[15],"or":[17],"deep":[18],"model":[20,28,62,98],"training.":[21],"However,":[22],"malicious":[23,97],"can":[25],"send":[26],"poisoned":[27],"updates":[29,99],"to":[30,41,54,149],"the":[31,72,77,81,133,141,144],"central":[32],"server":[33],"without":[34],"being":[35,147],"identified,":[36],"makes":[38],"FL":[39],"vulnerable":[40],"backdoor":[42,56,85,117,145,161,165],"attacks.":[43,166],"In":[44,151],"this":[45],"work,":[46],"we":[47],"propose":[48],"a":[49,129],"novel":[50],"defence":[51,135],"approach,":[52],"FLSec,":[53],"mitigate":[55],"attacks":[57,118],"caused":[58],"by":[59],"adversarial":[60],"local":[61,82],"updates.":[63],"FLSec":[64,109,157],"utilizes":[65],"original":[67],"measurement,":[68],"GradScore,":[69],"computed":[70],"from":[71],"loss":[73],"gradient":[74],"norm":[75],"of":[76,80],"final":[78],"layer":[79],"models":[83],"for":[84],"defence.":[86],"We":[87],"show":[88,155],"that":[89,156],"GradScore":[90],"efficient":[92],"robust":[94],"identifying":[96],"through":[100],"analysis":[101],"experiments.":[103],"Our":[104],"extensive":[105],"evaluation":[106],"also":[107],"demonstrates":[108],"highly":[111],"effective":[112],"mitigating":[114],"three":[115],"state-of-the-art":[116],"well-known":[120],"datasets,":[121],"MNIST,":[122],"LOAN,":[123],"CIFAR-10.":[125],"The":[126],"accuracy":[127,142],"benign":[130],"dataset":[131,146],"with":[132,140],"proposed":[134],"approach":[136],"nearly":[138],"unchanged,":[139],"reduced":[148],"0%.":[150],"addition,":[152],"our":[153],"experiments":[154],"significantly":[158],"outperforms":[159],"existing":[160],"defences":[162],"multi-round":[164]},"counts_by_year":[{"year":2024,"cited_by_count":1}],"updated_date":"2025-12-25T23:11:45.687758","created_date":"2025-10-10T00:00:00"}