Design and evaluation of a privacy-preserving multi-level federated learning architecture for airport biometric check-in

2 minute read

Journal Lelio Campanile, Maria Stella de Biase, Fiammetta Marulli — 2026 · Future Generation Computer Systems

Venue & metadata

Journal/Proceedings: Future Generation Computer Systems
Volume: 176
Pages: 108217
ISSN: 0167-739X

Abstract

The rapid adoption of automated airport check-in systems using facial recognition raises significant privacy concerns due to their reliance on centralized deep learning models that store and transmit biometric data from edge devices. While Federated Learning (FL) is a promising approach for privacy preservation, its effectiveness in biometric identification remains underexplored, particularly in real-world environments like airports. This study assesses the privacy implications of FL in facial recognition by comparing three architectures. A first centralized system, where biometric data is sent to a central server for model training and inference, posing significant privacy risks. The second is a one-level FL architecture, where biometric data remains on local devices, and only model updates are shared with a central aggregator. The third is a two-level FL architecture, introducing an additional aggregation layer among airlines to enhance model generalization while preserving privacy. To ensure a rigorous privacy preservation evaluation, we integrate both quantitative and qualitative metrics. For the quantitative assessment, we leverage the Privacy Meter Tool, which enables simulations of Membership Inference Attacks and the application of Differential Privacy as a mitigation technique. For the qualitative evaluation, we conduct a Data Protection Impact Assessment to analyze potential privacy risks from a regulatory perspective. Additionally, we assess model accuracy, computational efficiency, and communication overhead to determine FL’s feasibility in large-scale airport environments. Our results show that while FL significantly reduces privacy risks, the two-level FL approach introduces new vulnerabilities, such as model poisoning risks and privacy-utility trade-offs, requiring further mitigation strategies like DP.

Keywords

Federated learning Machine learning Privacy preservation Centralized architecture Federated learning architecture Edge device

Links & artifacts

DOI Publisher

@article{CAMPANILE2026108217,
  title = {Design and evaluation of a privacy-preserving multi-level federated learning architecture for airport biometric check-in},
  journal = {Future Generation Computer Systems},
  volume = {176},
  pages = {108217},
  year = {2026},
  doi = {https://doi.org/10.1016/j.future.2025.108217},
  author = {Campanile, Lelio and {de Biase}, Maria Stella and Marulli, Fiammetta}
}

Suggested citation

Campanile, L., de Biase, M. S., & Marulli, F. (2026). Design and evaluation of a privacy-preserving multi-level federated learning architecture for airport biometric check-in. Future Generation Computer Systems, 176, 108217. https://doi.org/https://doi.org/10.1016/j.future.2025.108217

← Back to Publications