{"id":"https://openalex.org/W4389610334","doi":"https://doi.org/10.1109/tsc.2023.3341951","title":"Demystifying Data Poisoning Attacks in Distributed Learning as a Service","display_name":"Demystifying Data Poisoning Attacks in Distributed Learning as a Service","publication_year":2023,"publication_date":"2023-12-12","ids":{"openalex":"https://openalex.org/W4389610334","doi":"https://doi.org/10.1109/tsc.2023.3341951"},"language":"en","primary_location":{"id":"doi:10.1109/tsc.2023.3341951","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tsc.2023.3341951","pdf_url":null,"source":{"id":"https://openalex.org/S204223317","display_name":"IEEE Transactions on Services Computing","issn_l":"1939-1374","issn":["1939-1374","2372-0204"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Services Computing","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5069331320","display_name":"Wenqi Wei","orcid":"https://orcid.org/0000-0001-9177-114X"},"institutions":[{"id":"https://openalex.org/I130701444","display_name":"Georgia Institute of Technology","ror":"https://ror.org/01zkghx44","country_code":"US","type":"education","lineage":["https://openalex.org/I130701444"]},{"id":"https://openalex.org/I164389053","display_name":"Fordham University","ror":"https://ror.org/03qnxaf80","country_code":"US","type":"education","lineage":["https://openalex.org/I164389053"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Wenqi Wei","raw_affiliation_strings":["Department of Computer and Information Sciences, Fordham University, New York City, NY, USA","School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer and Information Sciences, Fordham University, New York City, NY, USA","institution_ids":["https://openalex.org/I164389053"]},{"raw_affiliation_string":"School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA","institution_ids":["https://openalex.org/I130701444"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028240524","display_name":"Ka-Ho Chow","orcid":"https://orcid.org/0000-0001-5917-2577"},"institutions":[{"id":"https://openalex.org/I130701444","display_name":"Georgia Institute of Technology","ror":"https://ror.org/01zkghx44","country_code":"US","type":"education","lineage":["https://openalex.org/I130701444"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ka-Ho Chow","raw_affiliation_strings":["School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA","institution_ids":["https://openalex.org/I130701444"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5060093535","display_name":"Yanzhao Wu","orcid":"https://orcid.org/0000-0001-8761-5486"},"institutions":[{"id":"https://openalex.org/I130701444","display_name":"Georgia Institute of Technology","ror":"https://ror.org/01zkghx44","country_code":"US","type":"education","lineage":["https://openalex.org/I130701444"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Yanzhao Wu","raw_affiliation_strings":["School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA","institution_ids":["https://openalex.org/I130701444"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100343991","display_name":"Ling Liu","orcid":"https://orcid.org/0000-0002-4138-3082"},"institutions":[{"id":"https://openalex.org/I130701444","display_name":"Georgia Institute of Technology","ror":"https://ror.org/01zkghx44","country_code":"US","type":"education","lineage":["https://openalex.org/I130701444"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Ling Liu","raw_affiliation_strings":["School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, Georgia Institute of Technology, Atlanta, GA, USA","institution_ids":["https://openalex.org/I130701444"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5069331320"],"corresponding_institution_ids":["https://openalex.org/I130701444","https://openalex.org/I164389053"],"apc_list":null,"apc_paid":null,"fwci":1.7397,"has_fulltext":false,"cited_by_count":10,"citation_normalized_percentile":{"value":0.88016833,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":97,"max":98},"biblio":{"volume":"17","issue":"1","first_page":"237","last_page":"250"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9947999715805054,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9824000000953674,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7496961951255798},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.7343571186065674},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.48786187171936035},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.349224716424942},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.34345030784606934},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3338191509246826}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7496961951255798},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.7343571186065674},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.48786187171936035},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.349224716424942},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.34345030784606934},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3338191509246826},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tsc.2023.3341951","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tsc.2023.3341951","pdf_url":null,"source":{"id":"https://openalex.org/S204223317","display_name":"IEEE Transactions on Services Computing","issn_l":"1939-1374","issn":["1939-1374","2372-0204"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Services Computing","raw_type":"journal-article"},{"id":"pmh:oai:hub.hku.hk:10722/343446","is_oa":false,"landing_page_url":"https://hub.hku.hk/handle/10722/343446","pdf_url":null,"source":{"id":"https://openalex.org/S4377196271","display_name":"The HKU Scholars Hub (University of Hong Kong)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I889458895","host_organization_name":"University of Hong Kong","host_organization_lineage":["https://openalex.org/I889458895"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"Article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":53,"referenced_works":["https://openalex.org/W2027595342","https://openalex.org/W2123820077","https://openalex.org/W2151298633","https://openalex.org/W2473418344","https://openalex.org/W2554864439","https://openalex.org/W2774423163","https://openalex.org/W2788816110","https://openalex.org/W2807006176","https://openalex.org/W2920095265","https://openalex.org/W2942091739","https://openalex.org/W2942689850","https://openalex.org/W2962763344","https://openalex.org/W2963456518","https://openalex.org/W2964043980","https://openalex.org/W2965721472","https://openalex.org/W2990595670","https://openalex.org/W3003426262","https://openalex.org/W3017123256","https://openalex.org/W3017335724","https://openalex.org/W3085804918","https://openalex.org/W3087391814","https://openalex.org/W3138597937","https://openalex.org/W3196449668","https://openalex.org/W3200840849","https://openalex.org/W3203780767","https://openalex.org/W4245724425","https://openalex.org/W4298221930","https://openalex.org/W4386075529","https://openalex.org/W6676935882","https://openalex.org/W6681673350","https://openalex.org/W6684559340","https://openalex.org/W6728757088","https://openalex.org/W6743821447","https://openalex.org/W6746720608","https://openalex.org/W6746897123","https://openalex.org/W6747855403","https://openalex.org/W6748786018","https://openalex.org/W6750462152","https://openalex.org/W6752029299","https://openalex.org/W6752600739","https://openalex.org/W6756333562","https://openalex.org/W6756840679","https://openalex.org/W6759226220","https://openalex.org/W6764838729","https://openalex.org/W6770634426","https://openalex.org/W6771533808","https://openalex.org/W6773366154","https://openalex.org/W6775563089","https://openalex.org/W6780640148","https://openalex.org/W6787633081","https://openalex.org/W6794566239","https://openalex.org/W6797096170","https://openalex.org/W7056673059"],"related_works":["https://openalex.org/W2961085424","https://openalex.org/W4306674287","https://openalex.org/W4387369504","https://openalex.org/W3046775127","https://openalex.org/W4394896187","https://openalex.org/W3170094116","https://openalex.org/W4386462264","https://openalex.org/W3107602296","https://openalex.org/W4364306694","https://openalex.org/W4312192474"],"abstract_inverted_index":{"Data":[0],"Poisoning":[1],"is":[2,192],"a":[3,40,78,83],"dominating":[4],"threat":[5],"in":[6,34,93,99,150,184,200],"the":[7,12,18,23,58,68,75,94,97,100,105,111,121,128,135,153,169,178,190,197,201,204],"distributed":[8,19],"learning-as-a-service":[9],"API,":[10],"where":[11],"mediator":[13],"has":[14],"limited":[15],"control":[16],"over":[17],"client":[20,106],"contributing":[21],"to":[22,66,72,107,152],"joint":[24],"model.":[25],"Through":[26,157],"an":[27],"in-depth":[28],"characterization":[29],"of":[30,96,123,172,203],"data":[31,45,61,112,148,173],"poisoning":[32,46,62,113,149,174],"risks":[33],"federated":[35,136],"learning,":[36],"this":[37],"paper":[38],"presents":[39],"comprehensive":[41],"study":[42,120],"towards":[43],"demystifying":[44],"attacks":[47],"from":[48,77,104],"three":[49],"perspectives.":[50],"<italic":[51,115,138],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[52,116,139],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">First</i>":[53],",":[54,118,141],"we":[55,88,119,142,164],"formally":[56],"define":[57],"targeted":[59],"dirty-label":[60],"attack,":[63],"which":[64],"aims":[65],"cause":[67],"trained":[69],"global":[70],"model":[71],"only":[73],"misclassify":[74],"input":[76],"specific":[79],"victim":[80],"class":[81],"with":[82],"designated":[84],"malicious":[85],"behavior.":[86],"Then,":[87],"demonstrate":[89],"theoretical":[90],"statistical":[91,170],"robustness":[92,171],"eigenvalues":[95],"covariance":[98],"gradient":[101],"update":[102],"shared":[103],"server":[108],"when":[109],"under":[110,166],"attack.":[114],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Second</i>":[117],"impact":[122],"attack":[124,131,182,188,191,198],"timing":[125,189],"and":[126,160,195],"identify":[127],"most":[129,193],"detrimental":[130],"entry":[132],"point":[133],"during":[134],"training.":[137],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Last</i>":[140],"examine":[143],"several":[144],"existing":[145,205],"defenses":[146],"against":[147],"addition":[151],"robust":[154],"statistic":[155],"detection.":[156],"formal":[158],"analysis":[159],"extensive":[161],"empirical":[162],"evidence,":[163],"investigate":[165],"what":[167,187],"conditions":[168],"can":[175],"serve":[176],"as":[177],"forensic":[179],"evidence":[180],"for":[181],"mitigation":[183],"federated-learning-as-a-service,":[185],"at":[186],"detrimental,":[194],"how":[196],"reacts":[199],"presence":[202],"defenses.":[206]},"counts_by_year":[{"year":2025,"cited_by_count":5},{"year":2024,"cited_by_count":5}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}