Multi-Message Secure Aggregation with Demand Privacy

Abstract

This paper considers a multi-message secure aggregation with privacy problem, in which a server aims to compute Kc≥ 1 linear combinations of local inputs from K distributed users. The problem addresses two tasks: (1) security, ensuring that the server can only obtain the desired linear combinations without any else information about the users' inputs, and (2) privacy, preventing users from learning about the server's computation task. In addition, the effect of user dropouts is considered, where at most K-U users can drop out and the identity of these users cannot be predicted in advance. We propose two schemes for Kc is equal to (1) and 2≤ Kc≤ U-1, respectively. For Kc is equal to (1), we introduce multiplicative encryption of the server's demand using a random variable, where users share coded keys offline and transmit masked models in the first round, followed by aggregated coded keys in the second round for task recovery. For 2≤ Kc ≤ U-1, we use robust symmetric private computation to recover linear combinations of keys in the second round. The objective is to minimize the number of symbols sent by each user during the two rounds. Our proposed schemes have achieved the optimal rate region when Kc is equal to (1) and the order optimal rate (within 2) when 2≤ Kc ≤ U-1.

0

Turn this paper into a full lesson

ArcXiv compiles a staged curriculum from this paper: 8-12 lessons across beginner → advanced, synthesised section guides, visuals, flashcards, a quiz, exercises, and on-demand deep dives per section. Grounded in the abstract, never invented.

Discussion (0)

Sign in to join the discussion.

Loading comments…