| SoK: Benchmarking Poisoning Attacks and Defenses in Federated Learning | Feb 6, 2025 | BenchmarkingData Poisoning | CodeCode Available | 2 | 5 |
| Byzantine-robust Federated Learning through Collaborative Malicious Gradient Filtering | Sep 13, 2021 | Federated LearningModel Poisoning | CodeCode Available | 1 | 5 |
| FL-WBC: Enhancing Robustness against Model Poisoning Attacks in Federated Learning from a Client Perspective | Oct 26, 2021 | Federated LearningModel Poisoning | CodeCode Available | 1 | 5 |
| Ditto: Fair and Robust Federated Learning Through Personalization | Dec 8, 2020 | FairnessFederated Learning | CodeCode Available | 1 | 5 |
| Robust Federated Learning with Attack-Adaptive Aggregation | Feb 10, 2021 | Federated LearningModel Poisoning | CodeCode Available | 1 | 5 |
| ARFED: Attack-Resistant Federated averaging based on outlier elimination | Nov 8, 2021 | Data PoisoningFederated Learning | CodeCode Available | 1 | 5 |
| Analyzing Federated Learning through an Adversarial Lens | Nov 29, 2018 | Federated LearningModel Poisoning | CodeCode Available | 1 | 5 |
| FedDefender: Client-Side Attack-Tolerant Federated Learning | Jul 18, 2023 | Federated LearningKnowledge Distillation | CodeCode Available | 1 | 5 |
| Chameleon: Adapting to Peer Images for Planting Durable Backdoors in Federated Learning | Apr 25, 2023 | Contrastive LearningFederated Learning | CodeCode Available | 1 | 5 |
| FedRecAttack: Model Poisoning Attack to Federated Recommendation | Apr 1, 2022 | Federated Learningmodel | CodeCode Available | 1 | 5 |
| FLDetector: Defending Federated Learning Against Model Poisoning Attacks via Detecting Malicious Clients | Jul 19, 2022 | Federated LearningModel Poisoning | CodeCode Available | 1 | 5 |
| BEAS: Blockchain Enabled Asynchronous & Secure Federated Machine Learning | Feb 6, 2022 | Anomaly DetectionBIG-bench Machine Learning | CodeCode Available | 1 | 5 |
| How To Backdoor Federated Learning | Jul 2, 2018 | Anomaly DetectionData Poisoning | CodeCode Available | 1 | 5 |
| Back to the Drawing Board: A Critical Evaluation of Poisoning Attacks on Production Federated Learning | Aug 23, 2021 | Federated LearningMisconceptions | CodeCode Available | 1 | 5 |
| Defending Against Sophisticated Poisoning Attacks with RL-based Aggregation in Federated Learning | Jun 20, 2024 | Federated LearningModel Poisoning | CodeCode Available | 0 | 5 |
| On the Security Risks of AutoML | Oct 12, 2021 | AutoMLModel Poisoning | CodeCode Available | 0 | 5 |
| EAB-FL: Exacerbating Algorithmic Bias through Model Poisoning Attacks in Federated Learning | Oct 2, 2024 | FairnessFederated Learning | CodeCode Available | 0 | 5 |
| FedSECA: Sign Election and Coordinate-wise Aggregation of Gradients for Byzantine Tolerant Federated Learning | Nov 6, 2024 | Federated LearningModel Poisoning | CodeCode Available | 0 | 5 |
| Towards Understanding Quality Challenges of the Federated Learning for Neural Networks: A First Look from the Lens of Robustness | Jan 5, 2022 | Data PoisoningFederated Learning | CodeCode Available | 0 | 5 |
| A Novel Defense Against Poisoning Attacks on Federated Learning: LayerCAM Augmented with Autoencoder | Jun 2, 2024 | Federated LearningModel Poisoning | CodeCode Available | 0 | 5 |
| SparseFed: Mitigating Model Poisoning Attacks in Federated Learning with Sparsification | Dec 12, 2021 | Federated LearningModel Poisoning | CodeCode Available | 0 | 5 |
| Semi-Targeted Model Poisoning Attack on Federated Learning via Backward Error Analysis | Mar 22, 2022 | Backdoor AttackFederated Learning | CodeCode Available | 0 | 5 |
| Exploring the Limits of Model-Targeted Indiscriminate Data Poisoning Attacks | Mar 7, 2023 | Data PoisoningModel Poisoning | CodeCode Available | 0 | 5 |
| MPAF: Model Poisoning Attacks to Federated Learning based on Fake Clients | Mar 16, 2022 | Federated LearningModel Poisoning | CodeCode Available | 0 | 5 |
| Dual Defense: Enhancing Privacy and Mitigating Poisoning Attacks in Federated Learning | Feb 8, 2025 | Anomaly DetectionFederated Learning | CodeCode Available | 0 | 5 |
| Leverage Variational Graph Representation For Model Poisoning on Federated Learning | Apr 23, 2024 | Federated LearningModel Poisoning | CodeCode Available | 0 | 5 |
| Mitigating Sybils in Federated Learning Poisoning | Aug 14, 2018 | DiversityFederated Learning | CodeCode Available | 0 | 5 |
| Thinking Two Moves Ahead: Anticipating Other Users Improves Backdoor Attacks in Federated Learning | Oct 17, 2022 | Federated Learningimage-classification | CodeCode Available | 0 | 5 |
| DeTrigger: A Gradient-Centric Approach to Backdoor Attack Mitigation in Federated Learning | Nov 19, 2024 | Adversarial AttackBackdoor Attack | —Unverified | 0 | 0 |
| Using Anomaly Detection to Detect Poisoning Attacks in Federated Learning Applications | Jul 18, 2022 | Activity RecognitionAnomaly Detection | —Unverified | 0 | 0 |
| Denial-of-Service or Fine-Grained Control: Towards Flexible Model Poisoning Attacks on Federated Learning | Apr 21, 2023 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| Backdoor Attacks in Federated Learning by Rare Embeddings and Gradient Ensembling | Apr 29, 2022 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| Data and Model Poisoning Backdoor Attacks on Wireless Federated Learning, and the Defense Mechanisms: A Comprehensive Survey | Dec 14, 2023 | Data PoisoningFederated Learning | —Unverified | 0 | 0 |
| Data-Agnostic Model Poisoning against Federated Learning: A Graph Autoencoder Approach | Nov 30, 2023 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| A Synergetic Attack against Neural Network Classifiers combining Backdoor and Adversarial Examples | Sep 3, 2021 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| Covert Model Poisoning Against Federated Learning: Algorithm Design and Optimization | Jan 28, 2021 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| Turning Federated Learning Systems Into Covert Channels | Apr 21, 2021 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| A Streamlit-based Artificial Intelligence Trust Platform for Next-Generation Wireless Networks | Oct 25, 2022 | Model PoisoningSelf-Learning | —Unverified | 0 | 0 |
| A First Order Meta Stackelberg Method for Robust Federated Learning | Jun 23, 2023 | Federated LearningMeta-Learning | —Unverified | 0 | 0 |
| Protecting Federated Learning from Extreme Model Poisoning Attacks via Multidimensional Time Series Anomaly Detection | Mar 29, 2023 | Anomaly DetectionFederated Learning | —Unverified | 0 | 0 |
| Concealing Backdoor Model Updates in Federated Learning by Trigger-Optimized Data Poisoning | May 10, 2024 | Backdoor AttackData Poisoning | —Unverified | 0 | 0 |
| FedRAD: Federated Robust Adaptive Distillation | Dec 2, 2021 | Federated LearningKnowledge Distillation | —Unverified | 0 | 0 |
| FedPerm: Private and Robust Federated Learning by Parameter Permutation | Aug 16, 2022 | Federated LearningInformation Retrieval | —Unverified | 0 | 0 |
| Anticipatory Thinking Challenges in Open Worlds: Risk Management | Jun 22, 2023 | Adversarial RobustnessAutonomous Vehicles | —Unverified | 0 | 0 |
| FedRDF: A Robust and Dynamic Aggregation Function against Poisoning Attacks in Federated Learning | Feb 15, 2024 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| Federated Learning-Based Data Collaboration Method for Enhancing Edge Cloud AI System Security Using Large Language Models | Jun 22, 2025 | Edge-computingFederated Learning | —Unverified | 0 | 0 |
| CATFL: Certificateless Authentication-based Trustworthy Federated Learning for 6G Semantic Communications | Feb 1, 2023 | Data PoisoningDecoder | —Unverified | 0 | 0 |
| Identifying the Truth of Global Model: A Generic Solution to Defend Against Byzantine and Backdoor Attacks in Federated Learning (full version) | Nov 17, 2023 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
| Federated Learning: Balancing the Thin Line Between Data Intelligence and Privacy | Apr 22, 2022 | Data PoisoningFederated Learning | —Unverified | 0 | 0 |
| Can We Trust the Similarity Measurement in Federated Learning? | Oct 20, 2023 | Federated LearningModel Poisoning | —Unverified | 0 | 0 |
