{"id":"https://openalex.org/W4411019974","doi":"https://doi.org/10.1145/3726854.3727296","title":"MUDGUARD: Taming Malicious Majorities in Federated Learning using Privacy-preserving Byzantine-robust Clustering","display_name":"MUDGUARD: Taming Malicious Majorities in Federated Learning using Privacy-preserving Byzantine-robust Clustering","publication_year":2025,"publication_date":"2025-06-04","ids":{"openalex":"https://openalex.org/W4411019974","doi":"https://doi.org/10.1145/3726854.3727296"},"language":"en","primary_location":{"id":"doi:10.1145/3726854.3727296","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3726854.3727296","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Abstracts of the 2025 ACM SIGMETRICS International Conference on Measurement and Modeling of Computer Systems","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100431156","display_name":"Rui Wang","orcid":"https://orcid.org/0000-0001-8495-3631"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":true,"raw_author_name":"Rui Wang","raw_affiliation_strings":["Delft University of Technology, Delft, Netherlands"],"raw_orcid":"https://orcid.org/0000-0001-8495-3631","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Delft, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5065925073","display_name":"Xingkai Wang","orcid":"https://orcid.org/0000-0002-7625-7932"},"institutions":[{"id":"https://openalex.org/I183067930","display_name":"Shanghai Jiao Tong University","ror":"https://ror.org/0220qvk04","country_code":"CN","type":"education","lineage":["https://openalex.org/I183067930"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xingkai Wang","raw_affiliation_strings":["Shanghai Jiao Tong University, Shanghai, China"],"raw_orcid":"https://orcid.org/0000-0002-7625-7932","affiliations":[{"raw_affiliation_string":"Shanghai Jiao Tong University, Shanghai, China","institution_ids":["https://openalex.org/I183067930"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5103719940","display_name":"H.L. Chen","orcid":null},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Huanhuan Chen","raw_affiliation_strings":["Delft University of Technology, Delft, Netherlands"],"raw_orcid":"https://orcid.org/0009-0004-1214-1879","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Delft, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5087577380","display_name":"J\u00e9r\u00e9mie Decouchant","orcid":"https://orcid.org/0000-0001-9143-3984"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"J\u00e9r\u00e9mie Decouchant","raw_affiliation_strings":["Delft University of Technology, Delft, Netherlands"],"raw_orcid":"https://orcid.org/0000-0001-9143-3984","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Delft, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5024072796","display_name":"Stjepan Picek","orcid":"https://orcid.org/0000-0001-7509-4337"},"institutions":[{"id":"https://openalex.org/I145872427","display_name":"Radboud University Nijmegen","ror":"https://ror.org/016xsfp80","country_code":"NL","type":"education","lineage":["https://openalex.org/I145872427"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Stjepan Picek","raw_affiliation_strings":["Radboud University, Nijmegen, Netherlands"],"raw_orcid":"https://orcid.org/0000-0001-7509-4337","affiliations":[{"raw_affiliation_string":"Radboud University, Nijmegen, Netherlands","institution_ids":["https://openalex.org/I145872427"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5010172378","display_name":"Nikolaos Laoutaris","orcid":"https://orcid.org/0000-0002-7361-106X"},"institutions":[{"id":"https://openalex.org/I2802499160","display_name":"IMDEA Networks","ror":"https://ror.org/04mm9fg30","country_code":"ES","type":"facility","lineage":["https://openalex.org/I105140100","https://openalex.org/I2802499160"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Nikolaos Laoutaris","raw_affiliation_strings":["IMDEA Networks Institute, Madrid, Spain"],"raw_orcid":"https://orcid.org/0000-0002-7361-106X","affiliations":[{"raw_affiliation_string":"IMDEA Networks Institute, Madrid, Spain","institution_ids":["https://openalex.org/I2802499160"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5001485404","display_name":"Kaitai Liang","orcid":"https://orcid.org/0000-0003-0262-7678"},"institutions":[{"id":"https://openalex.org/I98358874","display_name":"Delft University of Technology","ror":"https://ror.org/02e2c7k09","country_code":"NL","type":"education","lineage":["https://openalex.org/I98358874"]}],"countries":["NL"],"is_corresponding":false,"raw_author_name":"Kaitai Liang","raw_affiliation_strings":["Delft University of Technology, Delft, Netherlands"],"raw_orcid":"https://orcid.org/0000-0003-0262-7678","affiliations":[{"raw_affiliation_string":"Delft University of Technology, Delft, Netherlands","institution_ids":["https://openalex.org/I98358874"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5100431156"],"corresponding_institution_ids":["https://openalex.org/I98358874"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.05654645,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"25","last_page":"27"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9969000220298767,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9793000221252441,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7504259347915649},{"id":"https://openalex.org/keywords/cluster-analysis","display_name":"Cluster analysis","score":0.7385594844818115},{"id":"https://openalex.org/keywords/federated-learning","display_name":"Federated learning","score":0.518490195274353},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4928781986236572},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.4188879728317261},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.31157737970352173}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7504259347915649},{"id":"https://openalex.org/C73555534","wikidata":"https://www.wikidata.org/wiki/Q622825","display_name":"Cluster analysis","level":2,"score":0.7385594844818115},{"id":"https://openalex.org/C2992525071","wikidata":"https://www.wikidata.org/wiki/Q50818671","display_name":"Federated learning","level":2,"score":0.518490195274353},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4928781986236572},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.4188879728317261},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.31157737970352173}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3726854.3727296","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3726854.3727296","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Abstracts of the 2025 ACM SIGMETRICS International Conference on Measurement and Modeling of Computer Systems","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":7,"referenced_works":["https://openalex.org/W2109426455","https://openalex.org/W2132172731","https://openalex.org/W2767079719","https://openalex.org/W2970606380","https://openalex.org/W3015535799","https://openalex.org/W4308632285","https://openalex.org/W6601198272"],"related_works":["https://openalex.org/W4298221930","https://openalex.org/W2777914285","https://openalex.org/W4378677776","https://openalex.org/W3013363440","https://openalex.org/W4287823391","https://openalex.org/W4312762663","https://openalex.org/W4298130764","https://openalex.org/W2804364458","https://openalex.org/W4317941881","https://openalex.org/W4229067761"],"abstract_inverted_index":{"Byzantine-robust":[0,119],"Federated":[1],"Learning":[2],"(FL)":[3],"aims":[4],"to":[5,57,69,85,98,126,150,176,192],"counter":[6],"malicious":[7,71,128],"clients":[8,34],"and":[9,40,76,88,102,120,130,134,188,195,200],"train":[10],"an":[11,17,48,65,172],"accurate":[12],"global":[13],"model":[14],"while":[15],"maintaining":[16],"extremely":[18],"low":[19],"attack":[20,164,174],"success":[21,165],"rate.":[22],"Most":[23],"existing":[24],"systems,":[25],"however,":[26],"are":[27,35],"only":[28,54],"robust":[29],"when":[30],"most":[31],"of":[32,91,104,145,198],"the":[33,60,81,89,143,151,163],"honest.":[36],"FLTrust":[37],"(NDSS":[38],"'21)":[39],"Zeno++":[41],"(ICML":[42],"'20)":[43],"do":[44],"not":[45],"make":[46],"such":[47],"honest":[49],"majority":[50,83,131],"assumption":[51,84],"but":[52],"can":[53],"be":[55],"applied":[56],"scenarios":[58],"where":[59],"server":[61,133],"is":[62,147,167],"provided":[63],"with":[64],"auxiliary":[66],"dataset":[67],"used":[68],"filter":[70],"updates.":[72,92],"FLAME":[73],"(USENIX":[74],"'22)":[75,79],"EIFFeL":[77],"(CCS":[78],"maintain":[80],"semi-honest":[82,109],"guarantee":[86],"robustness":[87,101],"confidentiality":[90,103],"It":[93],"is,":[94],"therefore,":[95],"currently":[96],"impossible":[97],"ensure":[99],"Byzantine":[100],"updates":[105],"without":[106,156],"assuming":[107],"a":[108,117],"majority.":[110],"To":[111],"tackle":[112],"this":[113],"problem,":[114],"we":[115],"propose":[116],"novel":[118],"privacy-preserving":[121],"FL":[122,152],"system,":[123],"called":[124],"MUDGUARD,":[125],"capture":[127],"minority":[129],"for":[132],"client":[135],"sides,":[136],"respectively.":[137,202],"Our":[138],"experimental":[139],"results":[140],"demonstrate":[141],"that":[142],"accuracy":[144],"MUDGUARD":[146],"practically":[148],"close":[149],"baseline":[153],"using":[154,184],"FedAvg":[155],"attacks":[157],"(\u22480.8%":[158],"gap":[159],"on":[160],"average).":[161],"Meanwhile,":[162],"rate":[166],"around":[168],"0%-5%":[169],"even":[170],"under":[171],"adaptive":[173],"tailored":[175],"MUDGUARD.":[177],"We":[178],"further":[179],"optimize":[180],"our":[181],"design":[182],"by":[183],"binary":[185],"secret":[186],"sharing":[187],"polynomial":[189],"transformation,":[190],"leading":[191],"communication":[193],"overhead":[194],"runtime":[196],"decreases":[197],"67%-89.17%":[199],"66.05%-68.75%,":[201]},"counts_by_year":[],"updated_date":"2026-03-27T05:58:40.876381","created_date":"2025-10-10T00:00:00"}