{"id":"https://openalex.org/W4403577939","doi":"https://doi.org/10.1145/3627673.3679566","title":"Breaking State-of-the-Art Poisoning Defenses to Federated Learning: An Optimization-Based Attack Framework","display_name":"Breaking State-of-the-Art Poisoning Defenses to Federated Learning: An Optimization-Based Attack Framework","publication_year":2024,"publication_date":"2024-10-20","ids":{"openalex":"https://openalex.org/W4403577939","doi":"https://doi.org/10.1145/3627673.3679566"},"language":"en","primary_location":{"id":"doi:10.1145/3627673.3679566","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3627673.3679566","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd ACM International Conference on Information and Knowledge Management","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://doi.org/10.1145/3627673.3679566","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5101938688","display_name":"Yuxin Yang","orcid":"https://orcid.org/0000-0002-9907-9980"},"institutions":[{"id":"https://openalex.org/I180949307","display_name":"Illinois Institute of Technology","ror":"https://ror.org/037t3ry66","country_code":"US","type":"education","lineage":["https://openalex.org/I180949307"]},{"id":"https://openalex.org/I194450716","display_name":"Jilin University","ror":"https://ror.org/00js3aw79","country_code":"CN","type":"education","lineage":["https://openalex.org/I194450716"]}],"countries":["CN","US"],"is_corresponding":true,"raw_author_name":"Yuxin Yang","raw_affiliation_strings":["College of Computer Science and Technology, Jilin University &amp; Department of Computer Science, Illinois Institute of Technology, Changchun, Jilin, China"],"affiliations":[{"raw_affiliation_string":"College of Computer Science and Technology, Jilin University &amp; Department of Computer Science, Illinois Institute of Technology, Changchun, Jilin, China","institution_ids":["https://openalex.org/I180949307","https://openalex.org/I194450716"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100429898","display_name":"Qiang Li","orcid":"https://orcid.org/0000-0001-7510-4718"},"institutions":[{"id":"https://openalex.org/I194450716","display_name":"Jilin University","ror":"https://ror.org/00js3aw79","country_code":"CN","type":"education","lineage":["https://openalex.org/I194450716"]},{"id":"https://openalex.org/I4210134929","display_name":"Jilin Province Science and Technology Department","ror":"https://ror.org/049x38272","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210134929"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Qiang Li","raw_affiliation_strings":["College of Computer Science and Technology, Jilin University, Changchun, Jilin, China"],"affiliations":[{"raw_affiliation_string":"College of Computer Science and Technology, Jilin University, Changchun, Jilin, China","institution_ids":["https://openalex.org/I4210134929","https://openalex.org/I194450716"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5049357829","display_name":"Chenfei Nie","orcid":"https://orcid.org/0000-0003-4334-5597"},"institutions":[{"id":"https://openalex.org/I194450716","display_name":"Jilin University","ror":"https://ror.org/00js3aw79","country_code":"CN","type":"education","lineage":["https://openalex.org/I194450716"]},{"id":"https://openalex.org/I4210134929","display_name":"Jilin Province Science and Technology Department","ror":"https://ror.org/049x38272","country_code":"CN","type":"government","lineage":["https://openalex.org/I4210134929"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Chenfei Nie","raw_affiliation_strings":["College of Computer Science and Technology, Jilin University, Changchun, Jilin, China"],"affiliations":[{"raw_affiliation_string":"College of Computer Science and Technology, Jilin University, Changchun, Jilin, China","institution_ids":["https://openalex.org/I4210134929","https://openalex.org/I194450716"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100725148","display_name":"Yuan Hong","orcid":"https://orcid.org/0000-0003-4095-4506"},"institutions":[{"id":"https://openalex.org/I140172145","display_name":"University of Connecticut","ror":"https://ror.org/02der9h97","country_code":"US","type":"education","lineage":["https://openalex.org/I140172145"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Yuan Hong","raw_affiliation_strings":["School of Computing, University of Connecticut, Storrs, Connecticut, USA"],"affiliations":[{"raw_affiliation_string":"School of Computing, University of Connecticut, Storrs, Connecticut, USA","institution_ids":["https://openalex.org/I140172145"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101789833","display_name":"Binghui Wang","orcid":"https://orcid.org/0000-0001-5616-060X"},"institutions":[{"id":"https://openalex.org/I180949307","display_name":"Illinois Institute of Technology","ror":"https://ror.org/037t3ry66","country_code":"US","type":"education","lineage":["https://openalex.org/I180949307"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Binghui Wang","raw_affiliation_strings":["Department of Computer Science, Illinois Institute of Technology, Chicago, Illinois, USA"],"affiliations":[{"raw_affiliation_string":"Department of Computer Science, Illinois Institute of Technology, Chicago, Illinois, USA","institution_ids":["https://openalex.org/I180949307"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5101938688"],"corresponding_institution_ids":["https://openalex.org/I180949307","https://openalex.org/I194450716"],"apc_list":null,"apc_paid":null,"fwci":0.695,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.76334341,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"2930","last_page":"2939"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9986000061035156,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9919000267982483,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6612094640731812},{"id":"https://openalex.org/keywords/state","display_name":"State (computer science)","score":0.5719753503799438},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.49342551827430725},{"id":"https://openalex.org/keywords/federated-learning","display_name":"Federated learning","score":0.4237847328186035},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.27843379974365234},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.13858899474143982}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6612094640731812},{"id":"https://openalex.org/C48103436","wikidata":"https://www.wikidata.org/wiki/Q599031","display_name":"State (computer science)","level":2,"score":0.5719753503799438},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.49342551827430725},{"id":"https://openalex.org/C2992525071","wikidata":"https://www.wikidata.org/wiki/Q50818671","display_name":"Federated learning","level":2,"score":0.4237847328186035},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.27843379974365234},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.13858899474143982}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3627673.3679566","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3627673.3679566","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd ACM International Conference on Information and Knowledge Management","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3627673.3679566","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3627673.3679566","pdf_url":null,"source":null,"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 33rd ACM International Conference on Information and Knowledge Management","raw_type":"proceedings-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":24,"referenced_works":["https://openalex.org/W151377110","https://openalex.org/W2071949631","https://openalex.org/W2194775991","https://openalex.org/W2914630606","https://openalex.org/W2952782294","https://openalex.org/W2963334472","https://openalex.org/W2996800219","https://openalex.org/W2999905431","https://openalex.org/W3021654819","https://openalex.org/W3041107652","https://openalex.org/W3046449784","https://openalex.org/W3087391814","https://openalex.org/W3106047871","https://openalex.org/W3138153888","https://openalex.org/W3175919946","https://openalex.org/W3204548896","https://openalex.org/W4213446860","https://openalex.org/W4252654521","https://openalex.org/W4283378871","https://openalex.org/W4290948380","https://openalex.org/W4318822841","https://openalex.org/W4352977741","https://openalex.org/W4384948739","https://openalex.org/W4388867283"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2899084033","https://openalex.org/W2748952813","https://openalex.org/W4298221930","https://openalex.org/W2390279801","https://openalex.org/W2777914285","https://openalex.org/W4391913857","https://openalex.org/W2358668433","https://openalex.org/W4378677776","https://openalex.org/W3176937389"],"abstract_inverted_index":{"Federated":[0],"Learning":[1],"(FL)":[2],"is":[3,21,161],"a":[4],"novel":[5,56,79,153],"client-server":[6],"distributed":[7],"learning":[8],"framework":[9,113],"that":[10,19,77,93],"can":[11,144],"protect":[12],"data":[13],"privacy.":[14],"However,":[15],"recent":[16],"works":[17],"show":[18,63,76],"FL":[20],"vulnerable":[22,84],"to":[23,34,85,99,114,158],"poisoning":[24,70,88,156],"attacks.":[25,45,71,89],"Many":[26],"defenses":[27,154],"with":[28,55],"robust":[29,50,80,96,129],"aggregators":[30],"(AGRs)":[31],"are":[32,40,52,82],"proposed":[33,141],"mitigate":[35],"the":[36,68,101,119,124,146],"issue,":[37],"but":[38],"they":[39,62],"all":[41],"broken":[42],"by":[43],"advanced":[44,69],"Very":[46],"recently,":[47],"some":[48],"renewed":[49],"AGRs":[51,81,97],"designed,":[53],"typically":[54],"clipping":[57,102],"or/and":[58,103],"filtering":[59,104],"strategies,":[60],"and":[61,108,136],"promising":[64],"defense":[65],"performance":[66],"against":[67,127,155],"In":[72],"this":[73,116],"paper,":[74],"we":[75,91,121],"these":[78,95],"also":[83],"carefully":[86],"designed":[87],"Specifically,":[90],"observe":[92],"breaking":[94],"reduces":[98],"bypassing":[100],"of":[105],"malicious":[106],"clients,":[107],"propose":[109],"an":[110],"optimization-based":[111],"attack":[112,126,143],"leverage":[115],"observation.":[117],"Under":[118],"framework,":[120],"then":[122],"design":[123],"customized":[125],"each":[128],"AGR.":[130],"Extensive":[131],"experiments":[132],"on":[133],"multiple":[134],"datasets":[135],"threat":[137],"models":[138],"verify":[139],"our":[140],"optimizationbased":[142],"break":[145],"SOTA":[147],"AGRs.":[148],"We":[149],"hence":[150],"call":[151],"for":[152],"attacks":[157],"FL.":[159],"Code":[160],"available":[162],"at:":[163],"https:":[164],"//github.com/Yuxin104/BreakSTOAPoisoningDefenses.":[165]},"counts_by_year":[{"year":2025,"cited_by_count":2}],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}