How To Backdoor Federated Learning

Eugene Bagdasaryan, Andreas Veit, Yiqing Hua, Deborah Estrin, Vitaly Shmatikov

Type: Preprint

Publication Date: 2018-01-01

Citations: 717

DOI: https://doi.org/10.48550/arxiv.1807.00459

View Publication

Locations

arXiv (Cornell University) - View
DataCite API - View

Similar Works

Action	Title	Year	Authors
+	Neurotoxin: Durable Backdoors in Federated Learning	2022	Zhengming Zhang Ashwinee Panda Linyue Song Yaoqing Yang Michael W. Mahoney Joseph E. Gonzalez Kannan Ramchandran Prateek Mittal
+	You Can Backdoor Personalized Federated Learning	2023	Tiandi Ye Cen Chen Yinggui Wang Xiang Li Ming Gao
+	Mitigating Backdoors in Federated Learning with FLD	2023	Yihang Lin Pengyuan Zhou Zhiqian Wu Yong Liao
+	FLGUARD: Secure and Private Federated Learning	2021	Thien Duc Nguyen Phillip Rieger Hossein Yalame Helen Möllering Hossein Fereidooni Samuel Marchal Markus Miettinen Azalia Mirhoseini Ahmad‐Reza Sadeghi Thomas Schneider
+	FLAME: Taming Backdoors in Federated Learning (Extended Version 1)	2021	Thien Duc Nguyen Phillip Rieger Huili Chen Hossein Yalame Helen Möllering Hossein Fereidooni Samuel Marchal Markus Miettinen Azalia Mirhoseini Shaza Zeitouni
+	Lurking in the shadows: Unveiling Stealthy Backdoor Attacks against Personalized Federated Learning	2024	Xiaoting Lyu Yufei Han Wei Wang Jingkai Liu Yongsheng Zhu Guangquan Xu Jiqiang Liu Xiangliang Zhang
+ PDF Chat	DeTrigger: A Gradient-Centric Approach to Backdoor Attack Mitigation in Federated Learning	2024	Ki‐Chang Lee Young-Tae Shin Jonghyuk Yun Jun Han JeongGil Ko
+	PerDoor: Persistent Non-Uniform Backdoors in Federated Learning using Adversarial Perturbations	2022	Manaar Alam Esha Sarkar Michail Maniatakos
+	CrowdGuard: Federated Backdoor Detection in Federated Learning	2022	Phillip Rieger Torsten Krauß Markus Miettinen Alexandra Dmitrienko Ahmad‐Reza Sadeghi
+	CrowdGuard: Federated Backdoor Detection in Federated Learning	2024	Phillip Rieger Torsten Krauß Markus Miettinen Alexandra Dmitrienko Ahmad‐Reza Sadeghi
+ PDF Chat	BaFFLe: Backdoor Detection via Feedback-based Federated Learning	2021	Sébastien Andreina Giorgia Azzurra Marson Helen Möllering Ghassan Karame
+	BaFFLe: Backdoor detection via Feedback-based Federated Learning	2020	Sébastien Andreina Giorgia Azzurra Marson Helen Möllering Ghassan Karame
+	BaFFLe: Backdoor detection via Feedback-based Federated Learning.	2020	Sébastien Andreina Giorgia Azzurra Marson Helen Möllering Ghassan Karame
+	Get Rid Of Your Trail: Remotely Erasing Backdoors in Federated Learning	2023	Manaar Alam Hithem Lamri Michail Maniatakos
+ PDF Chat	VFLIP: A Backdoor Defense for Vertical Federated Learning via Identification and Purification	2024	Yungi Cho Woorim Han Miseon Yu Younghan Lee Ho Bae Yunheung Paek
+ PDF Chat	Client-Side Patching against Backdoor Attacks in Federated Learning	2024	Borja Molina Coronado
+	Textual Backdoor Attacks Can Be More Harmful via Two Simple Tricks	2021	Yangyi Chen Fanchao Qi Zhiyuan Liu Maosong Sun
+ PDF Chat	Textual Backdoor Attacks Can Be More Harmful via Two Simple Tricks	2022	Yangyi Chen Fanchao Qi Hongcheng Gao Zhiyuan Liu Maosong Sun
+ PDF Chat	Bad-PFL: Exploring Backdoor Attacks against Personalized Federated Learning	2025	Mingyuan Fan Zhichao Hu Fuyi Wang Cen Chen
+ PDF Chat	BackdoorIndicator: Leveraging OOD Data for Proactive Backdoor Detection in Federated Learning	2024	Songze Li Yanbo Dai

Works That Cite This (327)

Action	Title	Year	Authors
+ PDF Chat	Blockchain-Based Federated Learning With Secure Aggregation in Trusted Execution Environment for Internet-of-Things	2022	Aditya Pribadi Kalapaaking Ibrahim Khalil Mohammad Saidur Rahman Mohammed Atiquzzaman Xun Yi Mahathir Almashor
+	Secure Federated Submodel Learning	2019	Chaoyue Niu Fan Wu Shaojie Tang Lifeng Hua Rongfei Jia Chengfei Lv Zhihua Wu Guihai Chen
+ PDF Chat	Dynamic defense against byzantine poisoning attacks in federated learning	2022	Nuria Rodríguez-Barroso Eugenio Martínez‐Cámara M. Victoria Luzón Francisco Herrera
+	Federated Learning With Unreliable Clients: Performance Analysis and Mechanism Design	2021	Chuan Ma Jun Li Ming Ding Kang Wei Wen Chen H. Vincent Poor
+ PDF Chat	RoFL: Robustness of Secure Federated Learning	2023	Hidde Lycklama Lukas Burkhalter Alexander Viand Nicolas Küchler Anwar Hithnawi
+	Multi-party Poisoning through Generalized $p$-Tampering	2018	Saeed Mahloujifar Mohammad Mahmoody Ameer Mohammed
+	Securing Federated Sensitive Topic Classification against Poisoning Attacks	2023	Tianyue Chu Álvaro García-Recuero Costas Iordanou Georgios Smaragdakis Nikolaos Laoutaris
+	Adaptive Distillation for Decentralized Learning from Heterogeneous Clients	2020	Jiaxin Ma Ryo Yonetani Zahid Iqbal
+ PDF Chat	TrojanZoo: Towards Unified, Holistic, and Practical Evaluation of Neural Backdoors	2022	Ren Pang Zheng Zhang Xiangshan Gao Zhaohan Xi Shouling Ji Peng Cheng Xiapu Luo Ting Wang
+	LINDT: Tackling Negative Federated Learning with Local Adaptation	2020	Lin Hong Lidan Shou Ke Chen Gang Chen Sai Wu

Works Cited by This (51)

Action	Title	Year	Authors
+	Distilling the Knowledge in a Neural Network	2015	Geoffrey E. Hinton Oriol Vinyals Jay B. Dean
+	Estimating a Dirichlet Distribution	2000	Thomas P. Minka
+	Differential Privacy: A Survey of Results	2008	Cynthia Dwork
+	Poisoning Attacks against Support Vector Machines	2012	Battista Biggio Blaine Nelson Pavel Laskov
+	An Empirical Investigation of Catastrophic Forgetting in Gradient-Based Neural Networks	2013	Ian Goodfellow Mehdi Mirza Xiao Da Aaron Courville Yoshua Bengio
+ PDF Chat	Deep Residual Learning for Image Recognition	2016	Kaiming He Xiangyu Zhang Shaoqing Ren Jian Sun
+	Federated Learning of Deep Networks using Model Averaging	2016	H. Brendan McMahan Eider Moore Daniel Ramage Blaise Agüera y Arcas
+	Revisiting Distributed Synchronous SGD	2017	Jianmin Chen Rajat Monga Samy Bengio Rafał Józefowicz
+ PDF Chat	Deep Learning with Differential Privacy	2016	Martı́n Abadi Andy Chu Ian Goodfellow H. Brendan McMahan Ilya Mironov Kunal Talwar Li Zhang
+	Learning without Forgetting	2017	Zhizhong Li Derek Hoiem