Cost-TrustFL: Cost-Aware Hierarchical Federated Learning with Lightweight Reputation Evaluation across Multi-Cloud
Jixiao Yang, Jinyu Chen, Zixiao Huang, Chengda Xu, Chi Zhang, Sijia Li
TL;DR
Cost-TrustFL tackles the triad of non-IID data, Byzantine threats, and costly cross-cloud communication in multi-cloud federated learning. It introduces a hierarchical aggregation framework, a gradient-based Shapley approximation with linear complexity, and a cost-aware client selection mechanism to jointly optimize accuracy and communication cost. Key contributions include a lightweight reputation scheme, intra-cloud prioritization to reduce egress, and FLTrust-inspired robustness with reference gradients. The approach yields robust accuracy improvements (e.g., 86.7% under aggressive attacks) and significant cross-cloud cost reductions (about 32%), demonstrating practical viability for real-world multi-cloud FL deployments.
Abstract
Federated learning across multi-cloud environments faces critical challenges, including non-IID data distributions, malicious participant detection, and substantial cross-cloud communication costs (egress fees). Existing Byzantine-robust methods focus primarily on model accuracy while overlooking the economic implications of data transfer across cloud providers. This paper presents Cost-TrustFL, a hierarchical federated learning framework that jointly optimizes model performance and communication costs while providing robust defense against poisoning attacks. We propose a gradient-based approximate Shapley value computation method that reduces the complexity from exponential to linear, enabling lightweight reputation evaluation. Our cost-aware aggregation strategy prioritizes intra-cloud communication to minimize expensive cross-cloud data transfers. Experiments on CIFAR-10 and FEMNIST datasets demonstrate that Cost-TrustFL achieves 86.7% accuracy under 30% malicious clients while reducing communication costs by 32% compared to baseline methods. The framework maintains stable performance across varying non-IID degrees and attack intensities, making it practical for real-world multi-cloud deployments.
