{"id":"https://openalex.org/W4408861280","doi":"https://doi.org/10.1109/tifs.2025.3555193","title":"Enhanced Model Poisoning Attack and Multi-Strategy Defense in Federated Learning","display_name":"Enhanced Model Poisoning Attack and Multi-Strategy Defense in Federated Learning","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4408861280","doi":"https://doi.org/10.1109/tifs.2025.3555193"},"language":"en","primary_location":{"id":"doi:10.1109/tifs.2025.3555193","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3555193","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://ink.library.smu.edu.sg/sis_research/10448","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5103549976","display_name":"Li Yang","orcid":"https://orcid.org/0009-0001-0631-580X"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Li Yang","raw_affiliation_strings":["School of Cyber Engineering, Xidian University, Xi’an, China"],"raw_orcid":"https://orcid.org/0009-0001-0631-580X","affiliations":[{"raw_affiliation_string":"School of Cyber Engineering, Xidian University, Xi’an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5102885964","display_name":"Yinbin Miao","orcid":null},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yinbin Miao","raw_affiliation_strings":["School of Cyber Engineering, Xidian University, Xi’an, China"],"raw_orcid":"https://orcid.org/0000-0001-5437-3572","affiliations":[{"raw_affiliation_string":"School of Cyber Engineering, Xidian University, Xi’an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5068724111","display_name":"Ziteng Liu","orcid":"https://orcid.org/0000-0002-6066-631X"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]},{"id":"https://openalex.org/I159948400","display_name":"Jinan University","ror":"https://ror.org/02xe5ns62","country_code":"CN","type":"education","lineage":["https://openalex.org/I159948400"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Ziteng Liu","raw_affiliation_strings":["College of Cyber Security, Jinan University, Guangzhou, China","School of Cyber Engineering, Xidian University, Xi’an, China"],"raw_orcid":"https://orcid.org/0000-0002-6066-631X","affiliations":[{"raw_affiliation_string":"College of Cyber Security, Jinan University, Guangzhou, China","institution_ids":["https://openalex.org/I159948400"]},{"raw_affiliation_string":"School of Cyber Engineering, Xidian University, Xi’an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5062494507","display_name":"Zhiquan Liu","orcid":"https://orcid.org/0000-0002-3934-2177"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]},{"id":"https://openalex.org/I159948400","display_name":"Jinan University","ror":"https://ror.org/02xe5ns62","country_code":"CN","type":"education","lineage":["https://openalex.org/I159948400"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhiquan Liu","raw_affiliation_strings":["College of Cyber Security, Jinan University, Guangzhou, China","School of Cyber Engineering, Xidian University, Xi’an, China"],"raw_orcid":"https://orcid.org/0000-0002-3934-2177","affiliations":[{"raw_affiliation_string":"College of Cyber Security, Jinan University, Guangzhou, China","institution_ids":["https://openalex.org/I159948400"]},{"raw_affiliation_string":"School of Cyber Engineering, Xidian University, Xi’an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100626958","display_name":"Xinghua Li","orcid":"https://orcid.org/0000-0002-5583-4155"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xinghua Li","raw_affiliation_strings":["State Key Laboratory of Integrated Service Networks, School of Cyber Engineering, Engineering Research Center of Big Data Security, Ministry of Education, Xidian University, Xi’an, China","School of Cyber Engineering, Engineering Research Center of Big data Security, Ministry of Education, State Key Laboratory of Integrated Service Networks, Xidian University, Xi’an, China"],"raw_orcid":"https://orcid.org/0000-0002-5583-4155","affiliations":[{"raw_affiliation_string":"State Key Laboratory of Integrated Service Networks, School of Cyber Engineering, Engineering Research Center of Big Data Security, Ministry of Education, Xidian University, Xi’an, China","institution_ids":["https://openalex.org/I149594827"]},{"raw_affiliation_string":"School of Cyber Engineering, Engineering Research Center of Big data Security, Ministry of Education, State Key Laboratory of Integrated Service Networks, Xidian University, Xi’an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5083013626","display_name":"Da Kuang","orcid":"https://orcid.org/0009-0000-0352-2101"},"institutions":[{"id":"https://openalex.org/I149594827","display_name":"Xidian University","ror":"https://ror.org/05s92vm98","country_code":"CN","type":"education","lineage":["https://openalex.org/I149594827"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Da Kuang","raw_affiliation_strings":["School of Cyber Engineering, Xidian University, Xi’an, China"],"raw_orcid":"https://orcid.org/0009-0000-0352-2101","affiliations":[{"raw_affiliation_string":"School of Cyber Engineering, Xidian University, Xi’an, China","institution_ids":["https://openalex.org/I149594827"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100325334","display_name":"Hongwei Li","orcid":"https://orcid.org/0000-0002-1961-7946"},"institutions":[{"id":"https://openalex.org/I150229711","display_name":"University of Electronic Science and Technology of China","ror":"https://ror.org/04qr3zq92","country_code":"CN","type":"education","lineage":["https://openalex.org/I150229711"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Hongwei Li","raw_affiliation_strings":["Department of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China"],"raw_orcid":"https://orcid.org/0000-0002-1961-7946","affiliations":[{"raw_affiliation_string":"Department of Computer Science and Engineering, University of Electronic Science and Technology of China, Chengdu, China","institution_ids":["https://openalex.org/I150229711"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5001712801","display_name":"Robert H. Deng","orcid":"https://orcid.org/0000-0003-3491-8146"},"institutions":[{"id":"https://openalex.org/I79891267","display_name":"Singapore Management University","ror":"https://ror.org/050qmg959","country_code":"SG","type":"education","lineage":["https://openalex.org/I79891267"]}],"countries":["SG"],"is_corresponding":false,"raw_author_name":"Robert H. Deng","raw_affiliation_strings":["School of Information Systems, Singapore Management University, Bras Basah, Singapore","School of Information Systems, Singapore Management University, Singapore"],"raw_orcid":"https://orcid.org/0000-0003-3491-8146","affiliations":[{"raw_affiliation_string":"School of Information Systems, Singapore Management University, Bras Basah, Singapore","institution_ids":["https://openalex.org/I79891267"]},{"raw_affiliation_string":"School of Information Systems, Singapore Management University, Singapore","institution_ids":["https://openalex.org/I79891267"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":8,"corresponding_author_ids":["https://openalex.org/A5103549976"],"corresponding_institution_ids":["https://openalex.org/I149594827"],"apc_list":null,"apc_paid":null,"fwci":72.1631,"has_fulltext":false,"cited_by_count":39,"citation_normalized_percentile":{"value":0.99919306,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"20","issue":null,"first_page":"3877","last_page":"3892"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9797999858856201,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9797999858856201,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9775000214576721,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8231061697006226},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6036491394042969}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8231061697006226},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6036491394042969}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tifs.2025.3555193","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3555193","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-11450","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/sis_research/10448","pdf_url":null,"source":{"id":"https://openalex.org/S4306401925","display_name":"Singapore Management University Institutional Knowledge (InK) (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1109/TIFS.2025.3555193","raw_type":"Journal Article"}],"best_oa_location":{"id":"pmh:oai:ink.library.smu.edu.sg:sis_research-11450","is_oa":true,"landing_page_url":"https://ink.library.smu.edu.sg/sis_research/10448","pdf_url":null,"source":{"id":"https://openalex.org/S4306401925","display_name":"Singapore Management University Institutional Knowledge (InK) (Singapore Management University)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I79891267","host_organization_name":"Singapore Management University","host_organization_lineage":["https://openalex.org/I79891267"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"https://doi.org/10.1109/TIFS.2025.3555193","raw_type":"Journal Article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1819083007","display_name":null,"funder_award_id":"62125205","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G306174288","display_name":null,"funder_award_id":"2024YFB3108700","funder_id":"https://openalex.org/F4320335777","funder_display_name":"National Key Research and Development Program of China"},{"id":"https://openalex.org/G4365675440","display_name":null,"funder_award_id":"U23A20303","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G678557665","display_name":null,"funder_award_id":"2023ZD020","funder_id":"https://openalex.org/F4320327727","funder_display_name":"Open Fund of Key Laboratory of Sediment Research"},{"id":"https://openalex.org/G8782580379","display_name":null,"funder_award_id":"No.62125205","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320327727","display_name":"Open Fund of Key Laboratory of Sediment Research","ror":null},{"id":"https://openalex.org/F4320335777","display_name":"National Key Research and Development Program of China","ror":null}],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":28,"referenced_works":["https://openalex.org/W2112796928","https://openalex.org/W2194775991","https://openalex.org/W2788816110","https://openalex.org/W2912213068","https://openalex.org/W2919115771","https://openalex.org/W2995022099","https://openalex.org/W3138153888","https://openalex.org/W3138597937","https://openalex.org/W3180608480","https://openalex.org/W3213515577","https://openalex.org/W4226021524","https://openalex.org/W4226047321","https://openalex.org/W4229455429","https://openalex.org/W4289656845","https://openalex.org/W4313042326","https://openalex.org/W4320481068","https://openalex.org/W4375929024","https://openalex.org/W6728757088","https://openalex.org/W6743688258","https://openalex.org/W6743821447","https://openalex.org/W6748626757","https://openalex.org/W6748786018","https://openalex.org/W6754708698","https://openalex.org/W6758201434","https://openalex.org/W6762462524","https://openalex.org/W6770634426","https://openalex.org/W6787499695","https://openalex.org/W6787972765"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052"],"abstract_inverted_index":{"As":[0],"a":[1,89,93,132,155,177],"new":[2],"paradigm":[3],"of":[4,51,110,126,170,180,201,206],"distributed":[5],"learning,":[6],"Federated":[7],"Learning":[8],"(FL)":[9],"has":[10],"been":[11,40],"applied":[12],"in":[13,198],"industrial":[14],"fields,":[15],"such":[16],"as":[17],"intelligent":[18],"retail,":[19],"finance":[20],"and":[21,34,70,92,105,142],"autonomous":[22],"driving.":[23],"However,":[24],"several":[25],"schemes":[26,44],"that":[27,148,165],"aim":[28],"to":[29,97,182,211,214],"attack":[30,91,168],"robust":[31],"aggregation":[32,76],"rules":[33],"reducing":[35],"the":[36,48,57,107,120,124,171,199,204],"model":[37,82],"accuracy":[38,205],"have":[39,119,154],"proposed":[41],"recently.":[42],"These":[43],"do":[45],"not":[46],"maintain":[47],"sign":[49,58,94,108],"statistics":[50,109],"gradients":[52,100,150],"unchanged":[53],"during":[54],"attacks.":[55,66],"Therefore,":[56],"statistics-based":[59],"scheme":[60,135],"SignGuard":[61,69],"can":[62,167,189],"resist":[63],"most":[64,71,169,192],"existing":[65,72,172,193],"To":[67],"defeat":[68],"cosine":[73,103,138,157],"or":[74],"distance-based":[75],"schemes,":[77],"we":[78,129],"propose":[79,130],"an":[80],"enhanced":[81],"poisoning":[83],"attack,":[84,203],"ScaleSign.":[85,196],"Specifically,":[86,197],"ScaleSign":[87,153,166,202],"uses":[88],"scaling":[90],"modification":[95],"component":[96],"obtain":[98],"malicious":[99,111,149],"with":[101],"higher":[102],"similarity":[104,158],"modify":[106],"gradients,":[112],"respectively.":[113],"In":[114],"addition,":[115],"these":[116],"two":[117],"components":[118],"least":[121],"impact":[122],"on":[123,137,186],"magnitudes":[125],"gradients.":[127,161],"Then,":[128],"MSGuard,":[131],"Multi-Strategy":[133],"Byzantine-robust":[134,173],"based":[136],"mechanisms,":[139],"symbol":[140],"statistics,":[141],"spectral":[143],"methods.":[144],"Formal":[145],"analysis":[146],"proves":[147],"generated":[151],"by":[152,209],"closer":[156],"than":[159],"honest":[160],"Extensive":[162],"experiments":[163],"demonstrate":[164],"rules,":[174],"especially":[175],"achieving":[176],"success":[178],"rate":[179],"up":[181,210],"98.23%":[183],"for":[184],"attacks":[185,194],"SignGuard.":[187,215],"MSGuard":[188,207],"defend":[190],"against":[191],"including":[195],"face":[200],"improves":[208],"41.78%":[212],"compared":[213]},"counts_by_year":[{"year":2026,"cited_by_count":9},{"year":2025,"cited_by_count":30}],"updated_date":"2026-05-29T09:21:14.243279","created_date":"2025-10-10T00:00:00"}