Goto

Collaborating Authors

 Asia









DualDefense: EnhancingPrivacyandMitigating PoisoningAttacksinFederatedLearning

Neural Information Processing Systems

DDFedsimultaneously boosts privacyprotection andmitigatespoisoning attacks, without introducing new participant roles or disrupting the existing FL topology.DDFedinitially leveragescutting-edge fullyhomomorphic encryption (FHE)tosecurely aggregatemodelupdates, without theimpractical requirement for non-colluding two-server setups and ensures strong privacy protection.