Paper 2025/703

Priv-PFL: A Privacy-Preserving and Efficient Personalized Federated Learning Approach

Alireza Aghabagherloo, COSIC, Department of Electrical Engineering, KU Leuven, 3001 Leuven, Belgium
Roozbeh Sarenche, COSIC, Department of Electrical Engineering, KU Leuven, 3001 Leuven, Belgium
Maryam Zarezadeh, Barkhausen Institut, Dresden, Germany
Bart Preneel, COSIC, Department of Electrical Engineering, KU Leuven, 3001 Leuven, Belgium
Stefan Köpsell, Barkhausen Institut, Dresden, Germany
Abstract

Federated Learning (FL) allows clients to engage in learning without revealing their raw data. However, traditional FL focuses on developing a single global model for all clients, limiting their ability to have personalized models tailored to their specific needs. Personalized FL (PFL) enables clients to obtain their customized models, either with or without a central party. Current PFL research includes mechanisms to detect poisoning attacks, in which a couple of malicious nodes try to manipulate training convergence by submitting misleading data. However, these detection approaches often overlook privacy concerns, as they require clients to share their models with all other clients. This paper extends BALANCE, a personalized poisoning detection mechanism based on client models and their expectations. Our method enhances both security and privacy by ensuring clients are not required to share their model data with other clients. By leveraging server-assisted PFL and Fully Homomorphic Encryption (FHE), we enable a central party to identify unpoisoned clients from the perspective of individual clients and train personalized models securely. Additionally, we introduce an efficient personalized client selection algorithm that prevents redundant checks and ensures the inheritance of unpoisoned clients.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Published elsewhere. This paper has been accepted to DLSP 2025 (IEEE S&P Workshop) as a non-archival paper, and the camera-ready version is forthcoming.
Keywords
Personalized Federated LearningDeep LearningHomomorphic EncryptionPoisoning Attack
Contact author(s)
alireza aghabagherloo @ esat kuleuven be
roozbeh sarenche @ esat kuleuven be
maryam zarezadeh @ barkhauseninstitut org
bart preneel @ esat kuleuven be
stefan koepsell @ barkhauseninstitut org
History
2025-04-18: approved
2025-04-18: received
See all versions
Short URL
https://ia.cr/2025/703
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2025/703,
      author = {Alireza Aghabagherloo and Roozbeh Sarenche and Maryam Zarezadeh and Bart Preneel and Stefan Köpsell},
      title = {Priv-{PFL}: A Privacy-Preserving and Efficient Personalized Federated Learning Approach},
      howpublished = {Cryptology {ePrint} Archive, Paper 2025/703},
      year = {2025},
      url = {https://eprint.iacr.org/2025/703}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.