{"id":"https://openalex.org/W4384948726","doi":"https://doi.org/10.1109/sp46215.2023.10179400","title":"RoFL: Robustness of Secure Federated Learning","display_name":"RoFL: Robustness of Secure Federated Learning","publication_year":2023,"publication_date":"2023-05-01","ids":{"openalex":"https://openalex.org/W4384948726","doi":"https://doi.org/10.1109/sp46215.2023.10179400"},"language":"en","primary_location":{"id":"doi:10.1109/sp46215.2023.10179400","is_oa":false,"landing_page_url":"https://doi.org/10.1109/sp46215.2023.10179400","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE Symposium on Security and Privacy (SP)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5054931943","display_name":"Hidde Lycklama","orcid":null},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":true,"raw_author_name":"Hidde Lycklama","raw_affiliation_strings":["ETH Zurich"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"ETH Zurich","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5045475697","display_name":"Lukas Burkhalter","orcid":null},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Lukas Burkhalter","raw_affiliation_strings":["ETH Zurich"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"ETH Zurich","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5053856479","display_name":"Alexander Viand","orcid":"https://orcid.org/0000-0001-5452-1432"},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Alexander Viand","raw_affiliation_strings":["ETH Zurich"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"ETH Zurich","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028808102","display_name":"Nicolas K\u00fcchler","orcid":null},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Nicolas K\u00fcchler","raw_affiliation_strings":["ETH Zurich"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"ETH Zurich","institution_ids":["https://openalex.org/I35440088"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5039686586","display_name":"Anwar Hithnawi","orcid":null},"institutions":[{"id":"https://openalex.org/I35440088","display_name":"ETH Zurich","ror":"https://ror.org/05a28rw58","country_code":"CH","type":"education","lineage":["https://openalex.org/I2799323385","https://openalex.org/I35440088"]}],"countries":["CH"],"is_corresponding":false,"raw_author_name":"Anwar Hithnawi","raw_affiliation_strings":["ETH Zurich"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"ETH Zurich","institution_ids":["https://openalex.org/I35440088"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5054931943"],"corresponding_institution_ids":["https://openalex.org/I35440088"],"apc_list":null,"apc_paid":null,"fwci":12.4899,"has_fulltext":false,"cited_by_count":74,"citation_normalized_percentile":{"value":0.99074282,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"453","last_page":"476"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9918000102043152,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9912999868392944,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.829800009727478},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7683842182159424},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.5474534630775452},{"id":"https://openalex.org/keywords/memorization","display_name":"Memorization","score":0.5338885188102722},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.47262832522392273},{"id":"https://openalex.org/keywords/context","display_name":"Context (archaeology)","score":0.4345494210720062},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.4262455701828003},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.419174462556839},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.34972161054611206},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.10661035776138306}],"concepts":[{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.829800009727478},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7683842182159424},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.5474534630775452},{"id":"https://openalex.org/C30038468","wikidata":"https://www.wikidata.org/wiki/Q4354775","display_name":"Memorization","level":2,"score":0.5338885188102722},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.47262832522392273},{"id":"https://openalex.org/C2779343474","wikidata":"https://www.wikidata.org/wiki/Q3109175","display_name":"Context (archaeology)","level":2,"score":0.4345494210720062},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.4262455701828003},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.419174462556839},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.34972161054611206},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.10661035776138306},{"id":"https://openalex.org/C151730666","wikidata":"https://www.wikidata.org/wiki/Q7205","display_name":"Paleontology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C145420912","wikidata":"https://www.wikidata.org/wiki/Q853077","display_name":"Mathematics education","level":1,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/sp46215.2023.10179400","is_oa":false,"landing_page_url":"https://doi.org/10.1109/sp46215.2023.10179400","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2023 IEEE Symposium on Security and Privacy (SP)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.5299999713897705}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306087","display_name":"Semiconductor Research Corporation","ror":"https://ror.org/047z4n946"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":133,"referenced_works":["https://openalex.org/W1501894674","https://openalex.org/W1502745717","https://openalex.org/W1534388293","https://openalex.org/W1541538376","https://openalex.org/W1546167911","https://openalex.org/W1589034595","https://openalex.org/W1885156594","https://openalex.org/W1925603120","https://openalex.org/W1952161176","https://openalex.org/W1993673439","https://openalex.org/W2027423568","https://openalex.org/W2034603029","https://openalex.org/W2064675550","https://openalex.org/W2079913403","https://openalex.org/W2096219879","https://openalex.org/W2112507308","https://openalex.org/W2149921703","https://openalex.org/W2169101582","https://openalex.org/W2194775991","https://openalex.org/W2402235285","https://openalex.org/W2496543269","https://openalex.org/W2535690855","https://openalex.org/W2535838896","https://openalex.org/W2559840118","https://openalex.org/W2566079294","https://openalex.org/W2599930814","https://openalex.org/W2747329762","https://openalex.org/W2748789698","https://openalex.org/W2752689052","https://openalex.org/W2753211788","https://openalex.org/W2753783305","https://openalex.org/W2765747403","https://openalex.org/W2767079719","https://openalex.org/W2774423163","https://openalex.org/W2783522756","https://openalex.org/W2789911054","https://openalex.org/W2810065831","https://openalex.org/W2860079600","https://openalex.org/W2883748642","https://openalex.org/W2886444620","https://openalex.org/W2897230576","https://openalex.org/W2897865027","https://openalex.org/W2903356604","https://openalex.org/W2946930197","https://openalex.org/W2963477238","https://openalex.org/W2963822870","https://openalex.org/W2966757932","https://openalex.org/W2981645102","https://openalex.org/W2984020543","https://openalex.org/W2990595670","https://openalex.org/W2995022099","https://openalex.org/W2995164118","https://openalex.org/W3010025900","https://openalex.org/W3012501605","https://openalex.org/W3027749727","https://openalex.org/W3035261884","https://openalex.org/W3037467273","https://openalex.org/W3043303805","https://openalex.org/W3045674654","https://openalex.org/W3048045781","https://openalex.org/W3048715803","https://openalex.org/W3081055514","https://openalex.org/W3082420143","https://openalex.org/W3086590218","https://openalex.org/W3087391814","https://openalex.org/W3096328345","https://openalex.org/W3106047871","https://openalex.org/W3118608800","https://openalex.org/W3128532268","https://openalex.org/W3159513901","https://openalex.org/W3173250331","https://openalex.org/W3175192640","https://openalex.org/W3179639848","https://openalex.org/W3209752568","https://openalex.org/W3212079419","https://openalex.org/W4225544507","https://openalex.org/W4246140522","https://openalex.org/W4286895293","https://openalex.org/W4287553002","https://openalex.org/W4287822453","https://openalex.org/W4288057793","https://openalex.org/W4288277757","https://openalex.org/W4288333953","https://openalex.org/W4288346602","https://openalex.org/W4289147229","https://openalex.org/W4292084264","https://openalex.org/W4298221930","https://openalex.org/W4306815319","https://openalex.org/W4318619660","https://openalex.org/W4320472516","https://openalex.org/W6630115690","https://openalex.org/W6635298198","https://openalex.org/W6640760920","https://openalex.org/W6676935882","https://openalex.org/W6728757088","https://openalex.org/W6735438999","https://openalex.org/W6743581629","https://openalex.org/W6743821447","https://openalex.org/W6746720608","https://openalex.org/W6746897123","https://openalex.org/W6747855403","https://openalex.org/W6748304690","https://openalex.org/W6748786018","https://openalex.org/W6752600739","https://openalex.org/W6752911157","https://openalex.org/W6754358263","https://openalex.org/W6754708698","https://openalex.org/W6756756286","https://openalex.org/W6756840679","https://openalex.org/W6760825779","https://openalex.org/W6763192249","https://openalex.org/W6763393573","https://openalex.org/W6763747921","https://openalex.org/W6766633873","https://openalex.org/W6770114989","https://openalex.org/W6770634426","https://openalex.org/W6771533808","https://openalex.org/W6773795086","https://openalex.org/W6775563089","https://openalex.org/W6780438843","https://openalex.org/W6780640148","https://openalex.org/W6781689620","https://openalex.org/W6782722732","https://openalex.org/W6787335730","https://openalex.org/W6787972765","https://openalex.org/W6796818095","https://openalex.org/W6797329691","https://openalex.org/W6802409679","https://openalex.org/W6803923983","https://openalex.org/W6810982815","https://openalex.org/W6839074529","https://openalex.org/W6840756468","https://openalex.org/W6850108124"],"related_works":["https://openalex.org/W3093895509","https://openalex.org/W3163481960","https://openalex.org/W2323394100","https://openalex.org/W280704926","https://openalex.org/W2476068070","https://openalex.org/W4323971310","https://openalex.org/W2893372175","https://openalex.org/W4307248189","https://openalex.org/W3093954335","https://openalex.org/W4205482204"],"abstract_inverted_index":{"Even":[0],"though":[1],"recent":[2],"years":[3],"have":[4],"seen":[5],"many":[6],"attacks":[7,22,52,111],"exposing":[8],"severe":[9,110],"vulnerabilities":[10],"in":[11,89,138],"Federated":[12],"Learning":[13],"(FL),":[14],"a":[15,57,148],"holistic":[16],"understanding":[17],"of":[18,41,92,109],"what":[19],"enables":[20],"these":[21,51,132],"and":[23,55,172],"how":[24,128],"they":[25],"can":[26,112,163],"be":[27,113],"mitigated":[28,114],"effectively":[29,115],"is":[30,63],"still":[31],"lacking.":[32],"In":[33],"this":[34],"work,":[35],"we":[36,145],"demystify":[37],"the":[38,68,90,139],"inner":[39],"workings":[40],"existing":[42],"(targeted)":[43],"attacks.":[44],"We":[45,65,104,126],"provide":[46],"new":[47,149],"insights":[48],"into":[49,134],"why":[50,56],"are":[53],"possible":[54],"definitive":[58],"solution":[59],"to":[60,73,129],"FL":[61,81,136,151],"robustness":[62],"challenging.":[64],"show":[66,105],"that":[67,106,153],"need":[69],"for":[70,80,101],"ML":[71,102],"algorithms":[72],"memorize":[74],"tail":[75],"data":[76],"has":[77,85],"significant":[78],"implications":[79,100],"integrity.":[82,103],"This":[83],"phenomenon":[84],"largely":[86],"been":[87],"studied":[88],"context":[91],"privacy;":[93],"our":[94],"analysis":[95],"sheds":[96],"light":[97],"on":[98,123,143,178],"its":[99],"certain":[107],"classes":[108],"by":[116],"enforcing":[117],"constraints":[118,133,165],"such":[119,166],"as":[120,167],"norm":[121],"bounds":[122,177],"clients\u2019":[124],"updates.":[125,182],"investigate":[127],"efficiently":[130],"incorporate":[131],"secure":[135,150,155],"protocols":[137],"single-server":[140],"setting.":[141],"Based":[142],"this,":[144],"propose":[146],"RoFL,":[147],"system":[152],"extends":[154],"aggregation":[156],"with":[157],"privacy-preserving":[158],"input":[159],"validation.":[160],"Specifically,":[161],"RoFL":[162],"enforce":[164],"L":[168,173],"<inf":[169,174],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[170,175],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">2</inf>":[171],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">\u221e</inf>":[176],"high-dimensional":[179],"encrypted":[180],"model":[181]},"counts_by_year":[{"year":2026,"cited_by_count":7},{"year":2025,"cited_by_count":39},{"year":2024,"cited_by_count":23},{"year":2023,"cited_by_count":5}],"updated_date":"2026-05-05T08:41:31.759640","created_date":"2025-10-10T00:00:00"}