Paper 2026/869

SealAgg: A Lightweight Auditing Framework for One-Shot Secure Aggregation against Malicious Servers

Ge Gao, Harbin Institute of Technology, Harbin, China
Haining Yu, Harbin Institute of Technology, Harbin, China
Yue Sun, Harbin Institute of Technology, Harbin, China
Zhongyun Hua, Harbin Institute of Technology, Shenzhen, China
Abstract

Trustworthy federated learning requires both update privacy and aggregate integrity. While secure aggregation protects the confidentiality of client updates, it does not prevent a malicious server from tampering with the final aggregate. Existing verifiable schemes typically address this limitation by introducing separate integrity-verification layers, such as zero-knowledge proofs, homomorphic hashes, and commitmentbased mechanisms. However, these approaches either require clients to remain online after uploading their updates for additional verification or recovery procedures, or incur substantial computation overhead that scales linearly with the model dimension. To address these limitations, we propose SealAgg, a one-shot verifiable secure aggregation framework that simultaneously guarantees update confidentiality and aggregate integrity against a malicious server. SealAgg allows clients to disconnect immediately after uploading their updates and introduces an aggregatenative auditing mechanism that enables lightweight integrity verification without a separate costly verification pipeline. Specifically, each client embeds dual hidden finite-field linear projections and a context-binding heartbeat value into its update before encryption, so that the audit material is co-aggregated with the gradients along the same path. Moreover, we design an asymmetric three-server architecture that confines integrity validation entirely to the server side, thereby fully supporting one-shot client participation. We provide formal analyses of the correctness and security of SealAgg. Extensive experiments show that SealAgg achieves practical end-to-end efficiency, incurs only a small auditing overhead relative to the total cost, and outperforms state-of-the-art schemes.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint.
Keywords
Federated LearningSecure AggregationVerifiable AggregationMalicious Server
Contact author(s)
gaoge92021 @ 163 com
yuhaining @ hit edu cn
alittleyellowduck @ 163 com
huazhongyun @ hit edu cn
History
2026-05-08: approved
2026-05-04: received
See all versions
Short URL
https://ia.cr/2026/869
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2026/869,
      author = {Ge Gao and Haining Yu and Yue Sun and Zhongyun Hua},
      title = {{SealAgg}: A Lightweight Auditing Framework for One-Shot Secure Aggregation against Malicious Servers},
      howpublished = {Cryptology {ePrint} Archive, Paper 2026/869},
      year = {2026},
      url = {https://eprint.iacr.org/2026/869}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.