{"id":"https://openalex.org/W3195889974","doi":"https://doi.org/10.1109/icip42928.2021.9506589","title":"From Gradient Leakage To Adversarial Attacks In Federated Learning","display_name":"From Gradient Leakage To Adversarial Attacks In Federated Learning","publication_year":2021,"publication_date":"2021-08-23","ids":{"openalex":"https://openalex.org/W3195889974","doi":"https://doi.org/10.1109/icip42928.2021.9506589","mag":"3195889974"},"language":"en","primary_location":{"id":"doi:10.1109/icip42928.2021.9506589","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icip42928.2021.9506589","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE International Conference on Image Processing (ICIP)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5007571960","display_name":"Jia Qi Lim","orcid":null},"institutions":[{"id":"https://openalex.org/I33849332","display_name":"University of Malaya","ror":"https://ror.org/00rzspn62","country_code":"MY","type":"education","lineage":["https://openalex.org/I33849332"]}],"countries":["MY"],"is_corresponding":true,"raw_author_name":"Jia Qi Lim","raw_affiliation_strings":["Universiti Malaya,Centre of Image and Signal Processing, Faculty of Computer Science and Information Technology,Kuala Lumpur,Malaysia,50603"],"affiliations":[{"raw_affiliation_string":"Universiti Malaya,Centre of Image and Signal Processing, Faculty of Computer Science and Information Technology,Kuala Lumpur,Malaysia,50603","institution_ids":["https://openalex.org/I33849332"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5070805897","display_name":"Chee Seng Chan","orcid":"https://orcid.org/0000-0001-7677-2865"},"institutions":[{"id":"https://openalex.org/I33849332","display_name":"University of Malaya","ror":"https://ror.org/00rzspn62","country_code":"MY","type":"education","lineage":["https://openalex.org/I33849332"]}],"countries":["MY"],"is_corresponding":false,"raw_author_name":"Chee Seng Chan","raw_affiliation_strings":["Universiti Malaya,Centre of Image and Signal Processing, Faculty of Computer Science and Information Technology,Kuala Lumpur,Malaysia,50603"],"affiliations":[{"raw_affiliation_string":"Universiti Malaya,Centre of Image and Signal Processing, Faculty of Computer Science and Information Technology,Kuala Lumpur,Malaysia,50603","institution_ids":["https://openalex.org/I33849332"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":["https://openalex.org/A5007571960"],"corresponding_institution_ids":["https://openalex.org/I33849332"],"apc_list":null,"apc_paid":null,"fwci":1.6316,"has_fulltext":false,"cited_by_count":15,"citation_normalized_percentile":{"value":0.86661743,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"3602","last_page":"3606"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10036","display_name":"Advanced Neural Network Applications","score":0.989300012588501,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/adversarial-system","display_name":"Adversarial system","score":0.8838715553283691},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8139664530754089},{"id":"https://openalex.org/keywords/deep-learning","display_name":"Deep learning","score":0.6278841495513916},{"id":"https://openalex.org/keywords/deep-neural-networks","display_name":"Deep neural networks","score":0.6081657409667969},{"id":"https://openalex.org/keywords/reliability","display_name":"Reliability (semiconductor)","score":0.5580579042434692},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.53183913230896},{"id":"https://openalex.org/keywords/federated-learning","display_name":"Federated learning","score":0.5103225111961365},{"id":"https://openalex.org/keywords/leakage","display_name":"Leakage (economics)","score":0.5016164779663086},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.49969005584716797},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.4576498568058014},{"id":"https://openalex.org/keywords/representation","display_name":"Representation (politics)","score":0.42623600363731384},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.33825576305389404}],"concepts":[{"id":"https://openalex.org/C37736160","wikidata":"https://www.wikidata.org/wiki/Q1801315","display_name":"Adversarial system","level":2,"score":0.8838715553283691},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8139664530754089},{"id":"https://openalex.org/C108583219","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep learning","level":2,"score":0.6278841495513916},{"id":"https://openalex.org/C2984842247","wikidata":"https://www.wikidata.org/wiki/Q197536","display_name":"Deep neural networks","level":3,"score":0.6081657409667969},{"id":"https://openalex.org/C43214815","wikidata":"https://www.wikidata.org/wiki/Q7310987","display_name":"Reliability (semiconductor)","level":3,"score":0.5580579042434692},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.53183913230896},{"id":"https://openalex.org/C2992525071","wikidata":"https://www.wikidata.org/wiki/Q50818671","display_name":"Federated learning","level":2,"score":0.5103225111961365},{"id":"https://openalex.org/C2777042071","wikidata":"https://www.wikidata.org/wiki/Q6509304","display_name":"Leakage (economics)","level":2,"score":0.5016164779663086},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.49969005584716797},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.4576498568058014},{"id":"https://openalex.org/C2776359362","wikidata":"https://www.wikidata.org/wiki/Q2145286","display_name":"Representation (politics)","level":3,"score":0.42623600363731384},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.33825576305389404},{"id":"https://openalex.org/C17744445","wikidata":"https://www.wikidata.org/wiki/Q36442","display_name":"Political science","level":0,"score":0.0},{"id":"https://openalex.org/C94625758","wikidata":"https://www.wikidata.org/wiki/Q7163","display_name":"Politics","level":2,"score":0.0},{"id":"https://openalex.org/C163258240","wikidata":"https://www.wikidata.org/wiki/Q25342","display_name":"Power (physics)","level":2,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0},{"id":"https://openalex.org/C199539241","wikidata":"https://www.wikidata.org/wiki/Q7748","display_name":"Law","level":1,"score":0.0},{"id":"https://openalex.org/C139719470","wikidata":"https://www.wikidata.org/wiki/Q39680","display_name":"Macroeconomics","level":1,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C62520636","wikidata":"https://www.wikidata.org/wiki/Q944","display_name":"Quantum mechanics","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/icip42928.2021.9506589","is_oa":false,"landing_page_url":"https://doi.org/10.1109/icip42928.2021.9506589","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2021 IEEE International Conference on Image Processing (ICIP)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.47999998927116394,"id":"https://metadata.un.org/sdg/12","display_name":"Responsible consumption and production"}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":24,"referenced_works":["https://openalex.org/W2007339694","https://openalex.org/W2053637704","https://openalex.org/W2096733369","https://openalex.org/W2194775991","https://openalex.org/W2535838896","https://openalex.org/W2788728386","https://openalex.org/W2957151589","https://openalex.org/W2963420686","https://openalex.org/W2963446712","https://openalex.org/W2963839617","https://openalex.org/W2970408908","https://openalex.org/W3000479830","https://openalex.org/W3034315422","https://openalex.org/W3038028469","https://openalex.org/W3092701607","https://openalex.org/W3118608800","https://openalex.org/W3124675547","https://openalex.org/W4297687186","https://openalex.org/W4318619660","https://openalex.org/W6728757088","https://openalex.org/W6743731764","https://openalex.org/W6759226220","https://openalex.org/W6764838729","https://openalex.org/W6773039429"],"related_works":["https://openalex.org/W2950183588","https://openalex.org/W3080754722","https://openalex.org/W3093978547","https://openalex.org/W2953536436","https://openalex.org/W3203790781","https://openalex.org/W4313346231","https://openalex.org/W2738001131","https://openalex.org/W4285785480","https://openalex.org/W2997056298","https://openalex.org/W4298079292"],"abstract_inverted_index":{"Deep":[0],"neural":[1],"networks":[2],"(DNN)":[3],"are":[4,120],"widely":[5],"used":[6],"in":[7,37,69,115],"real-life":[8],"applications":[9],"despite":[10],"the":[11,26,57,60,63,87,92,97,111],"lack":[12],"of":[13,25,62,83,113],"understanding":[14],"on":[15],"this":[16,51],"technology":[17],"and":[18,34,108],"its":[19],"challenges.":[20],"Data":[21],"privacy":[22,77],"is":[23,29],"one":[24],"bottlenecks":[27],"that":[28],"yet":[30],"to":[31,43,47,55,85],"be":[32],"overcome":[33],"more":[35,45],"challenges":[36],"DNN":[38,48,64],"arise":[39],"when":[40],"researchers":[41],"start":[42],"pay":[44],"attention":[46],"vulnerabilities.":[49],"In":[50],"work,":[52],"we":[53,95],"aim":[54],"cast":[56],"doubts":[58],"towards":[59],"reliability":[61],"with":[65],"solid":[66],"evidence":[67],"particularly":[68],"Federated":[70],"Learning":[71],"environment":[72],"by":[73],"utilizing":[74],"an":[75],"existing":[76],"breaking":[78],"algorithm":[79,103],"which":[80],"inverts":[81],"gradients":[82,102],"models":[84,114],"reconstruct":[86],"input":[88],"data.":[89],"By":[90],"performing":[91],"attack":[93],"algorithm,":[94],"exemplify":[96],"data":[98],"reconstructed":[99],"from":[100],"inverting":[101],"as":[104],"a":[105],"potential":[106],"threat":[107],"further":[109],"reveal":[110],"vulnerabilities":[112],"representation":[116],"learning.":[117],"Pytorch":[118],"implementation":[119],"provided":[121],"at":[122],"https://github.com/Jiaqi0602/adversarial-attack-from-leakage/":[123]},"counts_by_year":[{"year":2025,"cited_by_count":3},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":8},{"year":2022,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}