{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,6,9]],"date-time":"2026-06-09T15:28:45Z","timestamp":1781018925376,"version":"3.54.1"},"publisher-location":"New York, NY, USA","reference-count":45,"publisher":"ACM","license":[{"start":{"date-parts":[[2026,3,23]],"date-time":"2026-03-23T00:00:00Z","timestamp":1774224000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by-nc-nd\/4.0\/legalcode"}],"funder":[{"name":"Wallenberg AI, Autonomous Systems and Software Program","award":["KTH-RPROJ-0277442"],"award-info":[{"award-number":["KTH-RPROJ-0277442"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2026,3,23]]},"DOI":"10.1145\/3748522.3779807","type":"proceedings-article","created":{"date-parts":[[2026,6,9]],"date-time":"2026-06-09T14:17:49Z","timestamp":1781014669000},"page":"1486-1495","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":0,"title":["DEFEND: Poisoned Model Detection and Malicious Client Exclusion Mechanism for Secure Federated Learning-based Road Condition Classification"],"prefix":"10.1145","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-9883-5289","authenticated-orcid":false,"given":"Sheng","family":"Liu","sequence":"first","affiliation":[{"name":"Division of Software and Computer Systems, KTH Royal Institute of Technology, Stockholm, Sweden"}],"role":[{"vocabulary":"crossref","role":"author"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-3267-5374","authenticated-orcid":false,"given":"Panos","family":"Papadimitratos","sequence":"additional","affiliation":[{"name":"EECS, KTH Royal Institute of Technology, Stockholm, Sweden"}],"role":[{"vocabulary":"crossref","role":"author"}]}],"member":"320","published-online":{"date-parts":[[2026,6,9]]},"reference":[{"key":"e_1_3_2_1_1_1","first-page":"2","article-title":"IEEE Standard for Wireless Access in Vehicular Environments-Security Services for Application and Management Messages","volume":"1609","author":"IEEE","year":"2023","unstructured":"IEEE Std 1609.2. 2023. IEEE Standard for Wireless Access in Vehicular Environments-Security Services for Application and Management Messages. IEEE Std 1609.2-2022 (Revision of IEEE Std 1609.2-2016) (2023), 1\u2013349.","journal-title":"IEEE Std"},{"key":"e_1_3_2_1_2_1","volume-title":"CONTRA: Defending Against Poisoning Attacks in Federated Learning. In ESORICS (Virtual).","author":"Awan Sana","year":"2021","unstructured":"Sana Awan, Bo Luo, and Fengjun Li. 2021. CONTRA: Defending Against Poisoning Attacks in Federated Learning. In ESORICS (Virtual)."},{"key":"e_1_3_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1109\/JSEN.2019.2952857"},{"key":"e_1_3_2_1_4_1","volume-title":"Rachid Guerraoui, and Julien Stainer.","author":"Blanchard Peva","year":"2017","unstructured":"Peva Blanchard, El Mahdi El Mhamdi, Rachid Guerraoui, and Julien Stainer. 2017. Machine learning with Adversaries: Byzantine Tolerant Gradient Descent. In NeurIPS (Long Beach, CA, USA)."},{"key":"e_1_3_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.eswa.2024.125978"},{"key":"e_1_3_2_1_6_1","doi-asserted-by":"crossref","unstructured":"Hossein Fereidooni Alessandro Pegoraro Phillip Rieger Alexandra Dmitrienko and Ahmad-Reza Sadeghi. 2024. FreqFed: A Frequency Analysis-Based Approach for Mitigating Poisoning Attacks in Federated Learning. In NDSS (San Diego CA USA).","DOI":"10.14722\/ndss.2024.24620"},{"key":"e_1_3_2_1_7_1","volume-title":"Chris JM Yoon, and Ivan Beschastnikh","author":"Fung Clement","year":"2020","unstructured":"Clement Fung, Chris JM Yoon, and Ivan Beschastnikh. 2020. The Limitations of Federated Learning in Sybil Settings. In RAID (San Sebastian, Spain)."},{"key":"e_1_3_2_1_8_1","unstructured":"Kaiming He Xiangyu Zhang Shaoqing Ren and Jian Sun. 2016. Deep Residual Learning for Image Recognition. In CVPR (Las Vegas NV USA)."},{"key":"e_1_3_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.neunet.2023.11.019"},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/TIFS.2023.3249568"},{"key":"e_1_3_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2017.2722688"},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1109\/TCC.2023.3250584"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1109\/MVT.2015.2479367"},{"key":"e_1_3_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/TMC.2020.2981887"},{"key":"e_1_3_2_1_15_1","unstructured":"Denise-Phi Khuu Michael Sober Dominik Kaaser Mathias Fischer and Stefan Schulte. 2024. Data Poisoning Detection in Federated Learning. In ACM SAC (Avila Spain)."},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"crossref","unstructured":"L\u00e9o Lavaur Yann Busnel and Fabien Autrel. 2024. Systematic Analysis of Label-flipping Attacks against Federated Learning in Collaborative Intrusion Detection Systems. In ARES (Vienna Austria).","DOI":"10.1145\/3664476.3670434"},{"key":"e_1_3_2_1_17_1","unstructured":"Songze Li and Yanbo Dai. 2024. BackdoorIndicator: Leveraging OOD Data for Proactive Backdoor Detection in Federated Learning. In USENIX Security (Philadelphia PA USA)."},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/CNS66487.2025.11194922"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2024.3357138"},{"key":"e_1_3_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.aap.2018.10.014"},{"key":"e_1_3_2_1_21_1","volume-title":"UMAP: Uniform Manifold Approximation and Projection for Dimension Reduction. arXiv preprint arXiv:1802.03426","author":"McInnes Leland","year":"2020","unstructured":"Leland McInnes, John Healy, and James Melville. 2020. UMAP: Uniform Manifold Approximation and Projection for Dimension Reduction. arXiv preprint arXiv:1802.03426 (2020)."},{"key":"e_1_3_2_1_22_1","unstructured":"Brendan McMahan Eider Moore Daniel Ramage Seth Hampson and Blaise Aguera y Arcas. 2017. Communication-efficient Learning of Deep Networks from Decentralized Data. In AISTATS (Fort Lauderdale FL USA)."},{"key":"e_1_3_2_1_23_1","volume-title":"Huili Chen, Bj\u00f6rn B Brandenburg, Hossein Yalame, Helen M\u00f6llering, Hossein Fereidooni, Samuel Marchal, Markus Miettinen, et al.","author":"Nguyen Thien Duc","year":"2022","unstructured":"Thien Duc Nguyen, Phillip Rieger, Roberta De Viti, Huili Chen, Bj\u00f6rn B Brandenburg, Hossein Yalame, Helen M\u00f6llering, Hossein Fereidooni, Samuel Marchal, Markus Miettinen, et al. 2022. FLAME: Taming Backdoors in Federated Learning. In USENIX Security (Boston, MA, USA)."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"crossref","unstructured":"Marcus Nolte Nikita Kister and Markus Maurer. 2018. Assessment of Deep Convolutional Neural Networks for Road Surface Classification. In ITSC (Maui HI USA).","DOI":"10.1109\/ITSC.2018.8569396"},{"key":"e_1_3_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2024.3463952"},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/MCOM.2008.4689252"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1109\/JSAC.2005.861392"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"crossref","unstructured":"Eric Rescorla. 2018. The transport layer security (TLS) protocol version 1.3. Technical Report.","DOI":"10.17487\/RFC8446"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"crossref","unstructured":"Phillip Rieger Torsten Krau\u00df Markus Miettinen Alexandra Dmitrienko and Ahmad-Reza Sadeghi. 2024. CrowdGuard: Federated Backdoor Detection in Federated Learning. In NDSS (San Diego CA USA).","DOI":"10.14722\/ndss.2024.23233"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.comnet.2024.110768"},{"key":"e_1_3_2_1_31_1","doi-asserted-by":"crossref","unstructured":"Virat Shejwalkar and Amir Houmansadr. 2021. Manipulating the Byzantine: Optimizing Model Poisoning Attacks and Defenses for Federated Learning. In NDSS (Virtual).","DOI":"10.14722\/ndss.2021.24498"},{"key":"e_1_3_2_1_32_1","unstructured":"Mingxing Tan and Quoc Le. 2019. EfficientNet: Rethinking Model Scaling for Convolutional Neural Networks. In ICML (Long Beach CA USA)."},{"key":"e_1_3_2_1_33_1","volume-title":"Mehmet Emre Gursoy, and Ling Liu","author":"Tolpegin Vale","year":"2020","unstructured":"Vale Tolpegin, Stacey Truex, Mehmet Emre Gursoy, and Ling Liu. 2020. Data Poisoning Attacks against Federated Learning Systems. In ESORICS (Guildford, UK)."},{"key":"e_1_3_2_1_34_1","unstructured":"Hugo Touvron Matthieu Cord Matthijs Douze Francisco Massa Alexandre Sablayrolles and Herv\u00e9 J\u00e9gou. 2021. Training Data-efficient Image Transformers & Distillation through Attention. In ICML (Virtual)."},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1007\/s00779-019-01234-z"},{"key":"e_1_3_2_1_36_1","volume-title":"Dimitrakopoulos","author":"Vondikakis Ioannis V.","year":"2023","unstructured":"Ioannis V. Vondikakis, Ilias E. Panagiotopoulos, and George J. Dimitrakopoulos. 2023. An Adaptive Federated Learning Framework for Intelligent Road Surface Classification. In ITSC (Bilbao, Spain)."},{"key":"e_1_3_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1109\/OJITS.2024.3432176"},{"key":"e_1_3_2_1_38_1","volume-title":"FLARE: Defending Federated Learning against Model Poisoning Attacks via Latent Space Representations. In ASIA CCS (Nagasaki, Japan).","author":"Wang Ning","year":"2022","unstructured":"Ning Wang, Yang Xiao, Yimin Chen, Yang Hu, Wenjing Lou, and Y. Thomas Hou. 2022. FLARE: Defending Federated Learning against Model Poisoning Attacks via Latent Space Representations. In ASIA CCS (Nagasaki, Japan)."},{"key":"e_1_3_2_1_39_1","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2021.3130906"},{"key":"e_1_3_2_1_40_1","unstructured":"Dong Yin Yudong Chen Ramchandran Kannan and Peter Bartlett. 2018. Byzantine-robust Distributed Learning: Towards Optimal Statistical Rates. In ICML (Stockholm Sweden)."},{"key":"e_1_3_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1109\/MNET.2023.3321519"},{"key":"e_1_3_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.future.2021.06.035"},{"key":"e_1_3_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2023.3264588"},{"key":"e_1_3_2_1_44_1","doi-asserted-by":"publisher","DOI":"10.1109\/TITS.2023.3243003"},{"key":"e_1_3_2_1_45_1","volume-title":"OpenAnnotate2: Multi-Modal Auto-Annotating for Autonomous Driving","author":"Zhou Yijie","year":"2024","unstructured":"Yijie Zhou, Likun Cai, Xianhui Cheng, Qiming Zhang, Xiangyang Xue, Wenchao Ding, and Jian Pu. 2024. OpenAnnotate2: Multi-Modal Auto-Annotating for Autonomous Driving. IEEE Transactions on Intelligent Vehicles (2024), 1\u201313."}],"event":{"name":"SAC '26: 41st ACM\/SIGAPP Symposium on Applied Computing","location":"Grand Hotel Palace Thessaloniki Greece","acronym":"SAC '26","sponsor":["SIGAPP ACM Special Interest Group on Applied Computing"]},"container-title":["Proceedings of the 41st ACM\/SIGAPP Symposium on Applied Computing"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3748522.3779807","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2026,6,9]],"date-time":"2026-06-09T14:50:40Z","timestamp":1781016640000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3748522.3779807"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2026,3,23]]},"references-count":45,"alternative-id":["10.1145\/3748522.3779807","10.1145\/3748522"],"URL":"https:\/\/doi.org\/10.1145\/3748522.3779807","relation":{},"subject":[],"published":{"date-parts":[[2026,3,23]]},"assertion":[{"value":"2026-06-09","order":3,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}