Mitigating Data Poisoning Risks in Federated Learning through Blockchain Integrated Verifiable Model Aggregation Protocols

Authors

  • Aaron Whitaker Department of Electrical and Computer Engineering, University of New Mexico

Keywords:

Federated Learning, Data Poisoning, Blockchain, Verifiable Aggregation, Socio-technical Systems, Decentralized AI, Robustness.

Abstract

The rapid expansion of decentralized machine learning has positioned Federated Learning (FL) as a cornerstone for privacy-preserving artificial intelligence, enabling model training across distributed datasets without centralized data collection. Despite its promise, the architecture remains fundamentally vulnerable to data poisoning attacks, where malicious participants introduce corrupted gradients to degrade model performance or install backdoors. This research explores the integration of blockchain technology and verifiable model aggregation protocols as a systemic defense mechanism against such adversarial threats. We analyze the structural trade-offs between computational overhead and system robustness, arguing that traditional centralized aggregators represent a single point of failure and a significant trust bottleneck. By utilizing a decentralized ledger for the verification of local updates and the implementation of consensus-based aggregation, the proposed framework ensures that only mathematically validated contributions are incorporated into the global model. The discussion extends beyond technical implementation to address broader socio-technical implications, including governance models, infrastructure sustainability, and policy frameworks for cross-institutional data collaboration. Our analysis demonstrates that while blockchain integration increases latency, it provides a necessary foundation for verifiable accountability in high-stakes predictive modeling. This paper concludes by examining the future of resilient socio-technical infrastructures and the regulatory shifts required to support decentralized, robust, and fair machine learning systems in an increasingly adversarial global digital landscape.

References

References

1.Awan, S., et al. (2025). Decentralized model aggregation in federated learning: A blockchain perspective. IEEE Transactions on Network and Service Management.

2.Bhagoji, A. N., et al. (2019). Analyzing federated learning through an adversarial lens. Proceedings of the 36th International Conference on Machine Learning.

3.Cao, X., et al. (2024). Robust federated learning with verifiable secret sharing and consensus. Journal of Parallel and Distributed Computing.

4.Chen, Y., et al. (2025). Blockchain for AI: Decentralized security and governance frameworks. Computer Science Review.

5.Dong, C., et al. (2024). Mitigation strategies for data poisoning in distributed machine learning. Information Sciences.

6.European Commission. (2024). The Artificial Intelligence Act and Decentralized Infrastructures. Publications Office of the European Union.

7.Fang, M., et al. (2020). Local model poisoning attacks to federated learning. Proceedings of the 29th USENIX Security Symposium.

8.Ghosh, A., et al. (2025). Robust aggregation protocols for high-stakes federated learning. Journal of Machine Learning Research.

9.Gunning, D., et al. (2019). DARPA’s explainable artificial intelligence (XAI) program. AI Magazine.

10.Kalapaaking, A. P., et al. (2025). Blockchain-based verifiable federated learning for IoT ecosystems. Future Generation Computer Systems.

11.Kim, H., et al. (2019). Blockchained on-device federated learning. IEEE Communications Letters.

12.Lamport, L., et al. (1982). The Byzantine Generals Problem. ACM Transactions on Programming Languages and Systems.

13.Li, Q., et al. (2024). A survey on federated learning systems: Design, security, and privacy. ACM Computing Surveys.

14.Liu, Y., et al. (2025). Blockchain-integrated verifiable aggregation for privacy-preserving AI. Nature Communications.

15.McMahan, B., et al. (2017). Communication-efficient learning of deep networks from decentralized data. Artificial Intelligence and Statistics.

16.Nasajpour, M., et al. (2025). Sustainability and efficiency in blockchain-based AI infrastructures. Renewable and Sustainable Energy Reviews.

17.Nguyen, D. C., et al. (2021). Federated learning meets blockchain in edge computing: Opportunities and challenges. IEEE Internet of Things Journal.

18.Qu, Y., et al. (2024). Proof of Quality: A consensus mechanism for federated learning. IEEE Transactions on Computers.

19.Shayan, M., et al. (2020). Biscotti: A ledger-based secure federated learning system. IEEE Transactions on Cognitive Communications and Networking.

20.Shi, C., Li, S., Guo, S., Xie, S., Wu, W., Dou, J., ... & Chua, T. S. (2025). Where Culture Fades: Revealing the Cultural Gap in Text-to-Image Generation. arXiv preprint arXiv:2511.17282. [20]

21.Sun, G., et al. (2025). Data poisoning in federated learning: Attacks, defenses, and open problems. Information Fusion.

22.Tolpegin, V., et al. (2020). Data poisoning attacks against federated learning systems. European Symposium on Research in Computer Security.

23.Wang, J., et al. (2024). Verifiable model aggregation via zero-knowledge proofs. Journal of Cryptology.

24.Wood, G. (2024). Polkadot: Vision for a Heterogeneous Multi-chain Framework. Web3 Foundation.

25.Xie, C., et al. (2025). Zeno: Distributed stochastic gradient descent with suspicion-based fault-tolerance. Proceedings of ICML 2019.

26.Yang, Q., et al. (2019). Federated Machine Learning: Concept and Applications. ACM Transactions on Intelligent Systems and Technology.

27.Zhang, C., et al. (2024). Blockchain-based fair and robust federated learning. IEEE Transactions on Services Computing.

28.Zhao, Y., et al. (2018). Federated learning with non-IID data. arXiv preprint arXiv:1806.00582.

29.Zheng, Z., et al. (2025). Blockchain-integrated federated learning: Architecture and deployment challenges. Digital Communications and Networks.

30.Zhu, L., et al. (2024). Deep leakage from gradients. Advances in Neural Information Processing Systems.

Downloads

Published

2026-05-12

How to Cite

Aaron Whitaker. (2026). Mitigating Data Poisoning Risks in Federated Learning through Blockchain Integrated Verifiable Model Aggregation Protocols. International Journal of Artificial Intelligence Research, 1(2). Retrieved from https://isipress.org/index.php/IJAIR/article/view/140

Issue

Vol. 1 No. 2 (2026): International Journal of Artificial Intelligence Research

Section

Articles

License

Copyright (c) 2026 International Journal of Artificial Intelligence Research

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

This article is published under the Creative Commons Attribution 4.0 International License (CC BY 4.0), which permits unrestricted use, distribution, and reproduction in any medium, provided the original author and source are credited.