English

Multi-Message Secure Aggregation with Demand Privacy

Information Theory 2025-10-14 v2 math.IT

Abstract

This paper considers a multi-message secure aggregation with privacy problem, in which a server aims to compute Kc1\sf K_c\geq 1 linear combinations of local inputs from K\sf K distributed users. The problem addresses two tasks: (1) security, ensuring that the server can only obtain the desired linear combinations without any else information about the users' inputs, and (2) privacy, preventing users from learning about the server's computation task. In addition, the effect of user dropouts is considered, where at most KU\sf{K-U} users can drop out and the identity of these users cannot be predicted in advance. We propose two schemes for Kc\sf K_c is equal to (1) and 2KcU1\sf 2\leq K_c\leq U-1, respectively. For Kc\sf K_c is equal to (1), we introduce multiplicative encryption of the server's demand using a random variable, where users share coded keys offline and transmit masked models in the first round, followed by aggregated coded keys in the second round for task recovery. For 2KcU1\sf{2\leq K_c \leq U-1}, we use robust symmetric private computation to recover linear combinations of keys in the second round. The objective is to minimize the number of symbols sent by each user during the two rounds. Our proposed schemes have achieved the optimal rate region when Kc \sf K_c is equal to (1) and the order optimal rate (within 2) when 2KcU1\sf{2\leq K_c \leq U-1}.

Keywords

Cite

@article{arxiv.2504.20639,
  title  = {Multi-Message Secure Aggregation with Demand Privacy},
  author = {Chenyi Sun and Ziting Zhang and Kai Wan and Giuseppe Caire},
  journal= {arXiv preprint arXiv:2504.20639},
  year   = {2025}
}
R2 v1 2026-06-28T23:15:09.604Z