{"id":"https://openalex.org/W4414908350","doi":"https://doi.org/10.1109/tdsc.2025.3618769","title":"Model Stability Defense Against Model Poisoning in Federated Learning","display_name":"Model Stability Defense Against Model Poisoning in Federated Learning","publication_year":2025,"publication_date":"2025-10-07","ids":{"openalex":"https://openalex.org/W4414908350","doi":"https://doi.org/10.1109/tdsc.2025.3618769"},"language":"en","primary_location":{"id":"doi:10.1109/tdsc.2025.3618769","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2025.3618769","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5063724348","display_name":"Qi Guo","orcid":null},"institutions":[{"id":"https://openalex.org/I4210104252","display_name":"Air Force Engineering University","ror":"https://ror.org/00seraz22","country_code":"CN","type":"education","lineage":["https://openalex.org/I4210104252"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Qi Guo","raw_affiliation_strings":["Air Traffic Control and Navigation School, Air Force Engineering University, Xi’an, China","Air Traffic Control and Navigation School, Air Force Engineering University, Xi'an, Shaanxi, China"],"raw_orcid":"https://orcid.org/0000-0001-5507-3424","affiliations":[{"raw_affiliation_string":"Air Traffic Control and Navigation School, Air Force Engineering University, Xi’an, China","institution_ids":["https://openalex.org/I4210104252"]},{"raw_affiliation_string":"Air Traffic Control and Navigation School, Air Force Engineering University, Xi'an, Shaanxi, China","institution_ids":["https://openalex.org/I4210104252"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100602148","display_name":"Di Wu","orcid":"https://orcid.org/0009-0007-0772-9303"},"institutions":[{"id":"https://openalex.org/I87445476","display_name":"Xi'an Jiaotong University","ror":"https://ror.org/017zhmm22","country_code":"CN","type":"education","lineage":["https://openalex.org/I87445476"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Di Wu","raw_affiliation_strings":["School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China"],"raw_orcid":"https://orcid.org/0000-0001-6979-3537","affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","institution_ids":["https://openalex.org/I87445476"]},{"raw_affiliation_string":"School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China","institution_ids":["https://openalex.org/I87445476"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5023228402","display_name":"Yong Qi","orcid":"https://orcid.org/0000-0002-7682-5653"},"institutions":[{"id":"https://openalex.org/I87445476","display_name":"Xi'an Jiaotong University","ror":"https://ror.org/017zhmm22","country_code":"CN","type":"education","lineage":["https://openalex.org/I87445476"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yong Qi","raw_affiliation_strings":["School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China"],"raw_orcid":"https://orcid.org/0000-0002-7682-5653","affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","institution_ids":["https://openalex.org/I87445476"]},{"raw_affiliation_string":"School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China","institution_ids":["https://openalex.org/I87445476"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5021497508","display_name":"Saiyu Qi","orcid":"https://orcid.org/0000-0002-0394-4432"},"institutions":[{"id":"https://openalex.org/I87445476","display_name":"Xi'an Jiaotong University","ror":"https://ror.org/017zhmm22","country_code":"CN","type":"education","lineage":["https://openalex.org/I87445476"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Saiyu Qi","raw_affiliation_strings":["School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China"],"raw_orcid":"https://orcid.org/0000-0002-0394-4432","affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","institution_ids":["https://openalex.org/I87445476"]},{"raw_affiliation_string":"School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China","institution_ids":["https://openalex.org/I87445476"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5114429889","display_name":"Qian Li","orcid":"https://orcid.org/0000-0002-1073-7810"},"institutions":[{"id":"https://openalex.org/I87445476","display_name":"Xi'an Jiaotong University","ror":"https://ror.org/017zhmm22","country_code":"CN","type":"education","lineage":["https://openalex.org/I87445476"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Qian Li","raw_affiliation_strings":["School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China"],"raw_orcid":"https://orcid.org/0000-0002-1073-7810","affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","institution_ids":["https://openalex.org/I87445476"]},{"raw_affiliation_string":"School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China","institution_ids":["https://openalex.org/I87445476"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5012568806","display_name":"Minghao Yao","orcid":"https://orcid.org/0000-0002-2232-0991"},"institutions":[{"id":"https://openalex.org/I87445476","display_name":"Xi'an Jiaotong University","ror":"https://ror.org/017zhmm22","country_code":"CN","type":"education","lineage":["https://openalex.org/I87445476"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Minghao Yao","raw_affiliation_strings":["School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Computer Science and Technology, Xi’an Jiaotong University, Xi’an, China","institution_ids":["https://openalex.org/I87445476"]},{"raw_affiliation_string":"School of Computer Science and Technology, Xi'an Jiaotong University, Xi'an, Shaanxi, China","institution_ids":["https://openalex.org/I87445476"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5001485404","display_name":"Kaitai Liang","orcid":"https://orcid.org/0000-0003-0262-7678"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Kaitai Liang","raw_affiliation_strings":["Cybersecurity Group, Delft University of Technology, Delft, The Netherlands","Cybersecurity group, Delft University of Technology, Delft, The Netherlands"],"raw_orcid":"https://orcid.org/0000-0003-0262-7678","affiliations":[{"raw_affiliation_string":"Cybersecurity Group, Delft University of Technology, Delft, The Netherlands","institution_ids":["https://openalex.org/I98358874"]},{"raw_affiliation_string":"Cybersecurity group, Delft University of Technology, Delft, The Netherlands","institution_ids":["https://openalex.org/I98358874"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5063724348"],"corresponding_institution_ids":["https://openalex.org/I4210104252"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.13933089,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":"23","issue":"1","first_page":"1543","last_page":"1559"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9962999820709229,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9962999820709229,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9807000160217285,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9136000275611877,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/stability","display_name":"Stability (learning theory)","score":0.6164000034332275},{"id":"https://openalex.org/keywords/compromise","display_name":"Compromise","score":0.525600016117096},{"id":"https://openalex.org/keywords/federated-learning","display_name":"Federated learning","score":0.522599995136261},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.4722000062465668},{"id":"https://openalex.org/keywords/resilience","display_name":"Resilience (materials science)","score":0.438400000333786},{"id":"https://openalex.org/keywords/jacobian-matrix-and-determinant","display_name":"Jacobian matrix and determinant","score":0.43549999594688416},{"id":"https://openalex.org/keywords/convergence","display_name":"Convergence (economics)","score":0.4129999876022339},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.3950999975204468}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7802000045776367},{"id":"https://openalex.org/C112972136","wikidata":"https://www.wikidata.org/wiki/Q7595718","display_name":"Stability (learning theory)","level":2,"score":0.6164000034332275},{"id":"https://openalex.org/C46355384","wikidata":"https://www.wikidata.org/wiki/Q726686","display_name":"Compromise","level":2,"score":0.525600016117096},{"id":"https://openalex.org/C2992525071","wikidata":"https://www.wikidata.org/wiki/Q50818671","display_name":"Federated learning","level":2,"score":0.522599995136261},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.4722000062465668},{"id":"https://openalex.org/C2779585090","wikidata":"https://www.wikidata.org/wiki/Q3457762","display_name":"Resilience (materials science)","level":2,"score":0.438400000333786},{"id":"https://openalex.org/C200331156","wikidata":"https://www.wikidata.org/wiki/Q506041","display_name":"Jacobian matrix and determinant","level":2,"score":0.43549999594688416},{"id":"https://openalex.org/C2777303404","wikidata":"https://www.wikidata.org/wiki/Q759757","display_name":"Convergence (economics)","level":2,"score":0.4129999876022339},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.40880000591278076},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.3950999975204468},{"id":"https://openalex.org/C191795146","wikidata":"https://www.wikidata.org/wiki/Q3878446","display_name":"Norm (philosophy)","level":2,"score":0.38850000500679016},{"id":"https://openalex.org/C2164484","wikidata":"https://www.wikidata.org/wiki/Q5170150","display_name":"Core (optical fiber)","level":2,"score":0.373199999332428},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.33390000462532043},{"id":"https://openalex.org/C21200559","wikidata":"https://www.wikidata.org/wiki/Q7451068","display_name":"Sensitivity (control systems)","level":2,"score":0.31859999895095825},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.31769999861717224},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3077000081539154},{"id":"https://openalex.org/C149728462","wikidata":"https://www.wikidata.org/wiki/Q751319","display_name":"Minimax","level":2,"score":0.30140000581741333},{"id":"https://openalex.org/C176217482","wikidata":"https://www.wikidata.org/wiki/Q860554","display_name":"Metric (unit)","level":2,"score":0.28529998660087585},{"id":"https://openalex.org/C18762648","wikidata":"https://www.wikidata.org/wiki/Q42213","display_name":"Work (physics)","level":2,"score":0.27379998564720154},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.2687999904155731},{"id":"https://openalex.org/C137981799","wikidata":"https://www.wikidata.org/wiki/Q1369184","display_name":"Reusability","level":3,"score":0.26829999685287476},{"id":"https://openalex.org/C2780366209","wikidata":"https://www.wikidata.org/wiki/Q5170200","display_name":"Core model","level":2,"score":0.2680000066757202},{"id":"https://openalex.org/C92207270","wikidata":"https://www.wikidata.org/wiki/Q939253","display_name":"Matrix norm","level":3,"score":0.2542000114917755}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tdsc.2025.3618769","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2025.3618769","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":17,"referenced_works":["https://openalex.org/W2001610032","https://openalex.org/W2112796928","https://openalex.org/W2250904038","https://openalex.org/W2962763344","https://openalex.org/W2964137095","https://openalex.org/W2996931047","https://openalex.org/W2998993395","https://openalex.org/W3111919937","https://openalex.org/W3138153888","https://openalex.org/W4285554319","https://openalex.org/W4290948380","https://openalex.org/W4312996082","https://openalex.org/W4402783864","https://openalex.org/W4405598864","https://openalex.org/W4406753720","https://openalex.org/W4408861280","https://openalex.org/W4409363683"],"related_works":[],"abstract_inverted_index":{"Federated":[0,114,190],"Learning":[1,115,191],"(FL)":[2],"exhibits":[3],"susceptible":[4],"to":[5,37,67,72,118,139,156,204],"model":[6,17,43,54,90,126,147,174,195,210],"poisoning":[7,127],"attacks,":[8],"which":[9,135,193],"compromise":[10],"the":[11,14,24,52,68,120,144,158,161,202,207,221],"availability":[12],"of":[13,30,122,146,152,160,182,201,227],"collaboratively":[15],"trained":[16],"by":[18,58,214],"introducing":[19],"detrimental":[20],"local":[21],"updates":[22],"during":[23],"training":[25],"process.":[26],"The":[27,149,230],"predominant":[28],"line":[29],"defense":[31,121,171],"against":[32,95,125],"such":[33],"attacks":[34],"has":[35],"been":[36],"impose":[38],"stringent":[39],"restrictions":[40],"on":[41,89],"clients'":[42],"updates.":[44],"However,":[45],"this":[46,81],"strategy":[47],"raises":[48],"new":[49,107],"vulnerabilities":[50],"where":[51],"global":[53],"can":[55],"be":[56],"infiltrated":[57],"meticulously":[59],"crafted":[60],"malicious":[61],"perturbations.":[62,148],"This":[63],"vulnerability":[64],"arises":[65],"due":[66],"model's":[69,93],"inherent":[70],"sensitivity":[71],"perturbations,":[73],"making":[74],"it":[75],"exposed":[76],"and":[77,225],"fragile.":[78],"In":[79],"response,":[80],"work":[82],"investigates":[83],"a":[84,92,102,106,131,179],"novel":[85],"defensive":[86],"paradigm":[87],"centered":[88],"stability-specifically,":[91],"resilience":[94],"perturbations":[96],"within":[97],"its":[98],"parameter":[99],"space.":[100],"As":[101],"solution,":[103],"we":[104,177],"introduce":[105],"method":[108],"named":[109,184],"Model":[110,186],"Stability":[111,187],"Defense":[112,188],"for":[113,142,189],"(MSDFL),":[116],"designed":[117],"fortify":[119],"FL":[123],"systems":[124],"attacks.":[128],"MSDFL":[129],"utilizes":[130],"minmax":[132],"optimization":[133],"framework,":[134],"is":[136,155],"fundamentally":[137],"linked":[138],"empirical":[140],"risk":[141],"exploring":[143],"effects":[145],"core":[150],"aim":[151],"our":[153,228],"approach":[154],"minimize":[157],"norm":[159],"model-output":[162],"Jacobian":[163],"matrix":[164],"without":[165],"compromising":[166],"predictive":[167],"performance,":[168],"thereby":[169],"establishing":[170],"through":[172],"enhanced":[173],"stability.":[175],"Moreover,":[176],"propose":[178],"refined":[180],"version":[181],"MSDFL,":[183],"Holistic":[185],"(HMSDFL),":[192],"considers":[194],"stability":[196],"across":[197],"all":[198],"output":[199],"dimensions":[200],"logits":[203],"effectively":[205],"eradicate":[206],"disparity":[208],"in":[209],"convergence":[211],"speed":[212],"induced":[213],"MSDFL.":[215],"Extensive":[216],"experimental":[217],"results":[218],"fully":[219],"demonstrate":[220],"fidelity,":[222],"robustness,":[223],"compatibility,":[224],"self-protection":[226],"methods.":[229],"source":[231],"codes":[232],"are":[233],"maintained":[234],"at":[235],"https://github.com/qqoneone/MSDFL.":[238]},"counts_by_year":[],"updated_date":"2026-01-19T04:01:09.351973","created_date":"2025-10-10T00:00:00"}