# Secure Hierarchical Asynchronous Federated Learning with Shuffle Model and Mask–DP

**Authors:** Yonghui Chen, Daxiang Ai, Linglong Yan

PMC · DOI: 10.3390/s26020617 · Sensors (Basel, Switzerland) · 2026-01-16

## TL;DR

This paper introduces SHAFL, a secure framework for federated learning that improves privacy and robustness in hierarchical and asynchronous settings.

## Contribution

SHAFL introduces a novel mask–DP exchange protocol and shuffle model to enhance privacy and robustness in hierarchical federated learning.

## Key findings

- SHAFL reduces the impact of malicious and stale models on system performance during global aggregation.
- Theoretical analysis and experiments show SHAFL outperforms existing methods in convergence and security.
- SHAFL uses homomorphic encryption to prevent collusion attacks among training nodes.

## Abstract

Hierarchical asynchronous federated learning (HAFL) accommodates more real networking and ensures practical communications and efficient aggregations. However, existing HAFL schemes still face challenges in balancing privacy-preserving and robustness. Malicious training nodes may infer the privacy of other training nodes or poison the global model, thereby damaging the system’s robustness. To address these issues, we propose a secure hierarchical asynchronous federated learning (SHAFL) framework. SHAFL organizes training nodes into multiple groups based on their respective gateways. Within each group, the training nodes prevent inference attacks from the gateways and committee nodes via a mask–DP exchange protocol and employ homomorphic encryption (HE) to prevent collusion attacks from other training nodes. Compared with conventional solutions, SHAFL uses noise that can be eliminated to reduce the impact of noise on the global model’s performance, while employing a shuffle model and subsampling to enhance the local model’s privacy-preserving level. At global model aggregation, SHAFL considers both model accuracy and communication delay, effectively reducing the impact of malicious and stale models on system performance. Theoretical analysis and experimental evaluations demonstrate that SHAFL outperforms state-of-the-art solutions in terms of convergence, security, robustness, and privacy-preserving capabilities.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/PMC12846026/full.md

## Figures

12 figures with captions in the complete paper: https://tomesphere.com/paper/PMC12846026/full.md

## References

75 references — full list in the complete paper: https://tomesphere.com/paper/PMC12846026/full.md

---
Source: https://tomesphere.com/paper/PMC12846026