… , label flipping attacks become a feasible strategy to implement data poisoning, attacks which
… We demonstrate our FL poisoning attacks using two popular image classification datasets: …

… Byzantine-robust federated learning (… poisoning attacks to Byzantine-robust federated
learning. Existing studies [9, 66] only showed local model poisoning attacks to federated learning …

… federated learning intuitively. In this paper, through real implementation of a federated learning
system and distributed poisoning attacks… poisoned training samples, attackers, and attack …

… Federated learning (FL) has recently emerged as a promising solution under this new
reality… and two major attacks on FL: 1) poisoning attacks and 2) inference attacks, this paper …

… In this work, we systematized the threat models of poisoning attacks on federated learning
(… and data poisoning attacks on FL (including existing and our improved attacks). Using these …

… Table 1 summarizes the most notable poisoning attacks recent years. In this paper, we
propose a model poisoning attack in federated learning that is based on optimization, which is …

… variety of attacks, including model poisoning, … federated learning to sybil-based poisoning
attacks. We then describe FoolsGold, a novel defense to this problem that identifies poisoning …

… Hence, we propose a novel generative poisoning attack model against federated learning
by … can successfully launch the poisoning attack under a more practical threat assumption. …

… during the federated training process. In this paper, we present a general framework for
model poisoning attacks on FL. We show that our framework leads to poisoning attacks that …

… To obtain a fair understanding of the defenses’ performance under a more realistic setting,
we adopt a federated learning system with 100 clients and the MNIST dataset with 10 classes, …