{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,1,10]],"date-time":"2026-01-10T19:16:51Z","timestamp":1768072611534,"version":"3.49.0"},"reference-count":55,"publisher":"Institute of Electrical and Electronics Engineers (IEEE)","license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/legalcode"}],"funder":[{"DOI":"10.13039\/501100002383","name":"King Saud University, Riyadh, Saudi Arabia, through Researchers Supporting Project","doi-asserted-by":"publisher","award":["RSPD2023R636"],"award-info":[{"award-number":["RSPD2023R636"]}],"id":[{"id":"10.13039\/501100002383","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/100008982","name":"Qatar National Research Fund","doi-asserted-by":"publisher","award":["NPRP13S-0201-200219"],"award-info":[{"award-number":["NPRP13S-0201-200219"]}],"id":[{"id":"10.13039\/100008982","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["IEEE Access"],"published-print":{"date-parts":[[2023]]},"DOI":"10.1109\/access.2023.3323617","type":"journal-article","created":{"date-parts":[[2023,10,11]],"date-time":"2023-10-11T17:49:06Z","timestamp":1697046546000},"page":"112953-112972","source":"Crossref","is-referenced-by-count":27,"title":["Novel Evasion Attacks Against Adversarial Training Defense for Smart Grid Federated Learning"],"prefix":"10.1109","volume":"11","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-6790-8310","authenticated-orcid":false,"given":"Atef H.","family":"Bondok","sequence":"first","affiliation":[{"name":"Department of Electrical and Computer Engineering, Tennessee Tech University, Cookeville, TN, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8719-501X","authenticated-orcid":false,"given":"Mohamed","family":"Mahmoud","sequence":"additional","affiliation":[{"name":"Department of Electrical and Computer Engineering, Tennessee Tech University, Cookeville, TN, USA"}]},{"given":"Mahmoud M.","family":"Badr","sequence":"additional","affiliation":[{"name":"Department of Network and Computer Security, College of Engineering, SUNY Polytechnic Institute, Utica, NY, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-1790-8640","authenticated-orcid":false,"given":"Mostafa M.","family":"Fouda","sequence":"additional","affiliation":[{"name":"Department of Electrical and Computer Engineering, College of Science and Engineering, Idaho State University, Pocatello, ID, USA"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3261-7588","authenticated-orcid":false,"given":"Mohamed","family":"Abdallah","sequence":"additional","affiliation":[{"name":"Information and Computing Technology Department, College of Science and Engineering, Hamad Bin Khalifa University (HBKU), Doha, Qatar"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-8601-3184","authenticated-orcid":false,"given":"Maazen","family":"Alsabaan","sequence":"additional","affiliation":[{"name":"Department of Computer Engineering, College of Computer and Information Sciences, King Saud University, Riyadh, Saudi Arabia"}]}],"member":"263","reference":[{"key":"ref13","article-title":"FAT: Federated adversarial training","author":"zizzo","year":"2020","journal-title":"arXiv 2012 01791"},{"key":"ref12","article-title":"Explaining and harnessing adversarial examples","author":"goodfellow","year":"2014","journal-title":"arXiv 1412 6572"},{"key":"ref15","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.49"},{"key":"ref14","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2020.3005969"},{"key":"ref53","doi-asserted-by":"publisher","DOI":"10.1007\/s13042-020-01097-4"},{"key":"ref52","year":"2023","journal-title":"Irish Social Science Data Archive"},{"key":"ref11","article-title":"Intriguing properties of neural networks","author":"szegedy","year":"2013","journal-title":"arXiv 1312 6199"},{"key":"ref55","article-title":"Mitigating backdoor attacks in federated learning","author":"wu","year":"2020","journal-title":"arXiv 2011 01767"},{"key":"ref10","doi-asserted-by":"publisher","DOI":"10.1145\/3338501.3357370"},{"key":"ref54","article-title":"Defensive distillation is not robust to adversarial examples","author":"carlini","year":"2016","journal-title":"arXiv 1607 04311"},{"key":"ref17","first-page":"2206","article-title":"Reliable evaluation of adversarial robustness with an ensemble of diverse parameter-free attacks","author":"croce","year":"2020","journal-title":"Proc Int Conf Mach Learn"},{"key":"ref16","doi-asserted-by":"publisher","DOI":"10.1109\/EuroSP.2018.00035"},{"key":"ref19","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2021.3066577"},{"key":"ref18","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2021.3110784"},{"key":"ref51","first-page":"2938","article-title":"How to backdoor federated learning","author":"bagdasaryan","year":"2020","journal-title":"Proc Int Conf Artif Intell Statist"},{"key":"ref50","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2016.41"},{"key":"ref46","doi-asserted-by":"publisher","DOI":"10.1109\/TNSE.2022.3146399"},{"key":"ref45","first-page":"1273","article-title":"Communication-efficient learning of deep networks from decentralized data","author":"mcmahan","year":"2017","journal-title":"Proc Artif Intell Statist"},{"key":"ref48","doi-asserted-by":"publisher","DOI":"10.4314\/ijest.v2i2.59139"},{"key":"ref47","first-page":"28","article-title":"Neural networks learning improvement using the k-means clustering algorithm to detect network intrusions","volume":"5","author":"faraoun","year":"2006","journal-title":"INFOCOMP J Comput Sci"},{"key":"ref42","doi-asserted-by":"publisher","DOI":"10.1109\/SoutheastCon48659.2022.9764093"},{"key":"ref41","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2021.3108434"},{"key":"ref44","doi-asserted-by":"publisher","DOI":"10.1109\/COMST.2019.2904897"},{"key":"ref43","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2020.3011726"},{"key":"ref49","article-title":"Towards deep learning models resistant to adversarial attacks","author":"madry","year":"2017","journal-title":"arXiv 1706 06083"},{"key":"ref8","doi-asserted-by":"publisher","DOI":"10.3390\/app8091654"},{"key":"ref7","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2017.2785963"},{"key":"ref9","doi-asserted-by":"publisher","DOI":"10.1109\/5.192069"},{"key":"ref4","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2018.2844403"},{"key":"ref3","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2018.2882566"},{"key":"ref6","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2015.2425222"},{"key":"ref5","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2009.76"},{"key":"ref40","first-page":"5650","article-title":"Byzantine-robust distributed learning: Towards optimal statistical rates","author":"yin","year":"2018","journal-title":"Proc Int Conf Mach Learn"},{"key":"ref35","article-title":"Ensemble federated adversarial training with non-IID data","author":"luo","year":"2021","journal-title":"arXiv 2110 14814"},{"key":"ref34","article-title":"A federated learning framework for smart grids: Securing power traces in collaborative learning","author":"liu","year":"2021","journal-title":"arXiv 2103 11870"},{"key":"ref37","article-title":"Federated adversarial training with transformers","author":"aldahdooh","year":"2022","journal-title":"arXiv 2206 02131"},{"key":"ref36","article-title":"Adversarial training in communication constrained federated learning","author":"shah","year":"2021","journal-title":"arXiv 2103 01319"},{"key":"ref31","article-title":"Exploiting vulnerabilities of deep learning-based energy theft detection in AMI through adversarial attacks","author":"li","year":"2020","journal-title":"arXiv 2010 09212"},{"key":"ref30","doi-asserted-by":"publisher","DOI":"10.1109\/TCYB.2021.3125345"},{"key":"ref33","doi-asserted-by":"publisher","DOI":"10.1109\/TSG.2022.3193989"},{"key":"ref32","doi-asserted-by":"publisher","DOI":"10.1109\/JIOT.2023.3243086"},{"key":"ref2","doi-asserted-by":"publisher","DOI":"10.1109\/JSAC.2012.120705"},{"key":"ref1","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2012.2218253"},{"key":"ref39","first-page":"3521","article-title":"The hidden vulnerability of distributed learning in byzantium","author":"guerraoui","year":"2018","journal-title":"Proc Int Conf Mach Learn"},{"key":"ref38","article-title":"Machine learning with adversaries: Byzantine tolerant gradient descent","volume":"30","author":"blanchard","year":"2017","journal-title":"Proc Adv Neural Inf Process Syst"},{"key":"ref24","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-13057-2_4"},{"key":"ref23","doi-asserted-by":"publisher","DOI":"10.1109\/WCNC.2018.8377010"},{"key":"ref26","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134012"},{"key":"ref25","first-page":"1895","article-title":"Evaluating differentially private machine learning in practice","author":"jayaraman","year":"2019","journal-title":"Proc 28th USENIX Secur Symp (USENIX Secur )"},{"key":"ref20","doi-asserted-by":"publisher","DOI":"10.3390\/en15176241"},{"key":"ref22","doi-asserted-by":"publisher","DOI":"10.1109\/TII.2016.2543145"},{"key":"ref21","doi-asserted-by":"publisher","DOI":"10.1109\/ACCESS.2023.3237554"},{"key":"ref28","doi-asserted-by":"publisher","DOI":"10.1109\/ICC42927.2021.9500822"},{"key":"ref27","doi-asserted-by":"publisher","DOI":"10.1109\/SmartGridComm47815.2020.9303013"},{"key":"ref29","doi-asserted-by":"publisher","DOI":"10.1109\/AIPR50011.2020.9425190"}],"container-title":["IEEE Access"],"original-title":[],"link":[{"URL":"http:\/\/xplorestaging.ieee.org\/ielx7\/6287639\/10005208\/10278423.pdf?arnumber=10278423","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,11,6]],"date-time":"2023-11-06T19:57:51Z","timestamp":1699300671000},"score":1,"resource":{"primary":{"URL":"https:\/\/ieeexplore.ieee.org\/document\/10278423\/"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"references-count":55,"URL":"https:\/\/doi.org\/10.1109\/access.2023.3323617","relation":{},"ISSN":["2169-3536"],"issn-type":[{"value":"2169-3536","type":"electronic"}],"subject":[],"published":{"date-parts":[[2023]]}}}