arXiv: The Capacity of Information-Theoretic Secure Aggregation in Federated Learning

This publication from arXiv presents a theoretical analysis of the capacity limits for information-theoretic secure aggregation in federated learning. It does not introduce a new regulation or binding legal requirement, but rather provides a technical framework for understanding the maximum efficiency and privacy guarantees achievable when aggregating model updates from multiple parties without revealing individual data. The paper explores how to balance communication overhead, security against colluding adversaries, and computational constraints, offering mathematical bounds that can inform the design of privacy-preserving machine learning systems.

The primary audience for this research includes organizations deploying federated learning at scale, particularly in highly regulated sectors such as healthcare, finance, and telecommunications where patient data, transaction records, or customer information must be protected under GDPR, HIPAA, or similar frameworks. Technology providers building secure aggregation protocols for cloud or edge deployments will also need to assess whether their current implementations approach the theoretical limits described. Compliance teams in these sectors should monitor how this research influences future technical standards or regulatory guidance on privacy-enhancing technologies.

Compliance teams should first review their current federated learning implementations to determine whether they rely on secure aggregation and, if so, whether the protocols used are based on information-theoretic or cryptographic assumptions. Next, they should engage with data science and engineering teams to evaluate whether the capacity bounds in this paper suggest any vulnerabilities or inefficiencies in existing systems that could affect data protection impact assessments. Finally, they should track whether European regulators, such as the EDPB or ENISA, reference this work in upcoming guidance on AI and data minimization, as it may signal a shift toward requiring provable privacy guarantees in collaborative machine learning.