Paper 2026/869
SealAgg: A Lightweight Auditing Framework for One-Shot Secure Aggregation against Malicious Servers
Abstract
Trustworthy federated learning requires both update privacy and aggregate integrity. While secure aggregation protects the confidentiality of client updates, it does not prevent a malicious server from tampering with the final aggregate. Existing verifiable schemes typically address this limitation by introducing separate integrity-verification layers, such as zero-knowledge proofs, homomorphic hashes, and commitmentbased mechanisms. However, these approaches either require clients to remain online after uploading their updates for additional verification or recovery procedures, or incur substantial computation overhead that scales linearly with the model dimension. To address these limitations, we propose SealAgg, a one-shot verifiable secure aggregation framework that simultaneously guarantees update confidentiality and aggregate integrity against a malicious server. SealAgg allows clients to disconnect immediately after uploading their updates and introduces an aggregatenative auditing mechanism that enables lightweight integrity verification without a separate costly verification pipeline. Specifically, each client embeds dual hidden finite-field linear projections and a context-binding heartbeat value into its update before encryption, so that the audit material is co-aggregated with the gradients along the same path. Moreover, we design an asymmetric three-server architecture that confines integrity validation entirely to the server side, thereby fully supporting one-shot client participation. We provide formal analyses of the correctness and security of SealAgg. Extensive experiments show that SealAgg achieves practical end-to-end efficiency, incurs only a small auditing overhead relative to the total cost, and outperforms state-of-the-art schemes.
Metadata
- Available format(s)
-
PDF
- Category
- Cryptographic protocols
- Publication info
- Preprint.
- Keywords
- Federated LearningSecure AggregationVerifiable AggregationMalicious Server
- Contact author(s)
-
gaoge92021 @ 163 com
yuhaining @ hit edu cn
alittleyellowduck @ 163 com
huazhongyun @ hit edu cn - History
- 2026-05-08: approved
- 2026-05-04: received
- See all versions
- Short URL
- https://ia.cr/2026/869
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2026/869,
author = {Ge Gao and Haining Yu and Yue Sun and Zhongyun Hua},
title = {{SealAgg}: A Lightweight Auditing Framework for One-Shot Secure Aggregation against Malicious Servers},
howpublished = {Cryptology {ePrint} Archive, Paper 2026/869},
year = {2026},
url = {https://eprint.iacr.org/2026/869}
}