Efficient Secure Aggregation for Federated Learning
307
9.3
Microsoft Research353 тыс
Следующее
Популярные
54 дня – 6225:46
87 дней – 1 3135:04Опубликовано 17 октября 2025, 15:34
Host: Melissa Chase, Microsoft Research
Speaker: Varun Madathil, Yale University
Federated Learning (FL) trains a global model by having each selected device push only its model update to a central server, keeping raw data local. However, those updates can still leak sensitive information unless the server learns only their sum. A naïve approach is to run a generic secure‑multiparty sum, but off‑the‑shelf protocols require several rounds of interaction and even direct client‑to‑client communication - often infeasible in FL, where mobile devices are intermittently online and can drop out at any moment, and cannot be expected to interact with each other.
In this talk, I will review the secure‑aggregation problem in the context of FL and explain why naïve solutions fail by focusing on constraints unique to the FL setting. I will then present Tacita, a single‑server protocol that satisfies these FL‑specific constraints while retaining provable security. Tacita uses an external committee (needed to prevent residual leakage) to aid in secure aggregation and offers:
- One‑shot execution: every client and every committee member sends exactly one message.
- Constant‑size communication per client, independent of the round’s cohort of clients or committee size.
- Robust aggregation despite client or committee dropout.
These properties are enabled by two new primitives: (i) succinct multi‑key linearly homomorphic threshold signatures (MKLHTS) for verifiable input soundness with a single aggregate signature, and (ii) a homomorphic variant of Silent Threshold Encryption (CRYPTO ’24).
Speaker: Varun Madathil, Yale University
Federated Learning (FL) trains a global model by having each selected device push only its model update to a central server, keeping raw data local. However, those updates can still leak sensitive information unless the server learns only their sum. A naïve approach is to run a generic secure‑multiparty sum, but off‑the‑shelf protocols require several rounds of interaction and even direct client‑to‑client communication - often infeasible in FL, where mobile devices are intermittently online and can drop out at any moment, and cannot be expected to interact with each other.
In this talk, I will review the secure‑aggregation problem in the context of FL and explain why naïve solutions fail by focusing on constraints unique to the FL setting. I will then present Tacita, a single‑server protocol that satisfies these FL‑specific constraints while retaining provable security. Tacita uses an external committee (needed to prevent residual leakage) to aid in secure aggregation and offers:
- One‑shot execution: every client and every committee member sends exactly one message.
- Constant‑size communication per client, independent of the round’s cohort of clients or committee size.
- Robust aggregation despite client or committee dropout.
These properties are enabled by two new primitives: (i) succinct multi‑key linearly homomorphic threshold signatures (MKLHTS) for verifiable input soundness with a single aggregate signature, and (ii) a homomorphic variant of Silent Threshold Encryption (CRYPTO ’24).
Свежие видео
10 дней – 2 9290:17
11 дней – 56 8331:08
13 дней – 1293:22
17 дней – 3 7711:01
18 дней – 854:42Случайные видео
138 дней – 2917:25
151 день – 4 2151:39
29.01.24 – 3 3951:05
14.11.23 – 4 1790:36
01.11.22 – 2 130 58330:35
07.11.21 – 1 583 70816:22
3 дня – 19 67513:19
3 дня – 18 9882:46
4 дня – 491 0670:57
6 дней – 2 3120:25
9 дней – 2001:01:12
9 дней – 24 9027:14
8 часов – 1 0400:26
2 дня – 2 847 5031:08