ERIS: Enhancing Privacy and Communication Efficiency in Serverless Federated Learning

Scaling federated learning (FL) to billion-parameter models introduces critical trade-offs between communication efficiency, model accuracy, and privacy guarantees. Existing solutions often tackle these challenges in isolation, sacrificing accuracy or relying on costly cryptographic tools. We propose ERIS, a serverless FL framework that balances privacy and accuracy while eliminating the server bottleneck and distributing the communication load. ERIS combines a model partitioning strategy, distributing aggregation across multiple client-side aggregators, with a distributed shifted gradient compression mechanism. We theoretically prove that ERIS (i) converges at the same rate as FedAvg under standard assumptions, and (ii) bounds mutual information leakage inversely with the number of aggregators, enabling strong privacy guarantees with no accuracy degradation. Experiments across image and text tasks, including large language models, confirm that ERIS achieves FedAvg-level accuracy while substantially reducing communication cost and improving robustness to membership inference and reconstruction attacks, without relying on heavy cryptography or noise injection.

Key Contributions

• Serverless FL framework (ERIS) that distributes aggregation across multiple client-side aggregators using model partitioning, eliminating the central server bottleneck
• Theoretical proof that mutual information leakage is bounded inversely with the number of aggregators, providing privacy guarantees without noise injection or heavy cryptography
• Distributed shifted gradient compression mechanism that reduces communication cost by over 94% while maintaining FedAvg-level accuracy across image and LLM tasks

🛡️ Threat Analysis

Details

Similar Papers