Calibrating Noise to Sensitivity in Private Data Analysis

Dwork, Cynthia; McSherry, Frank; Nissim, Kobbi; Smith, Adam

doi:10.1007/11681878_14

Cited by 5,380 publications

(6,219 citation statements)

References 11 publications

Supporting

Mentioning

6,190

Contrasting

Unclassified

Order By: Relevance

“…The methodology of differential privacy [6,7] has provided a strong definition of privacy which in some settings, using a mechanism of doubly-exponential noise addition, also allows for extraction of informative statistics from databases. A recent paper by Barak et al [1] extends this approach to the release of a specified set of margins from a multi-way contingency table.…”

Section: Introductionmentioning

confidence: 99%

Differential Privacy and the Risk-Utility Tradeoff for Multi-dimensional Contingency Tables

Fienberg

Rinaldo

Yang

2010

Privacy in Statistical Databases

View full text Add to dashboard Cite

Abstract. The methodology of differential privacy has provided a strong definition of privacy which in some settings, using a mechanism of doubly-exponential noise addition, also allows for extraction of informative statistics from databases. A recent paper extends this approach to the release of a specified set of margins from a multi-way contingency table. Privacy protection in such settings implicitly focuses on small cell counts that might allow for the identification of units that are unique in the database. We explore how well the mechanism works in the context of a series of examples, and the extent to which the proposed differential-privacy mechanism allows for sensible inferences from the released data.

show abstract

Section: Introductionmentioning

confidence: 99%

Differential Privacy and the Risk-Utility Tradeoff for Multi-dimensional Contingency Tables

Fienberg

Rinaldo

Yang

2010

Privacy in Statistical Databases

View full text Add to dashboard Cite

show abstract

“…Because differential privacy protects against a class of attackers the security guarantee is formally stronger. For this reason, algorithms for differential privacy [9] would therefore randomise scripts that are already t-private (but not -adversarial private) thus reducing their usability. In our fingerprinting context, we exploit the attacker's a priori knowledge for synthesising a channel that is t-private with minimal randomisation.…”

Section: Definition 5 a Channel C = (C I O) Is -Adversarially Privmentioning

confidence: 99%

Browser Randomisation against Fingerprinting: A Quantitative Information Flow Approach

2014

View full text Add to dashboard Cite

Abstract. Web tracking companies use device fingerprinting to distinguish the users of the websites by checking the numerous properties of their machines and web browsers. One way to protect the users' privacy is to make them switch between different machine and browser configurations. We propose a formalisation of this privacy enforcement mechanism. We use information-theoretic channels to model the knowledge of the tracker and the fingerprinting program, and show how to synthesise a randomisation mechanism that defines the distribution of configurations for each user. This mechanism provides a strong guarantee of privacy (the probability of identifying the user is bounded by a given threshold) while maximising usability (the user switches to other configurations rarely). To find an optimal solution, we express the enforcement problem of randomisation by a linear program. We investigate and compare several approaches to randomisation and find that more efficient privacy enforcement would often provide lower usability. Finally, we relax the requirement of knowing the fingerprinting program in advance, by proposing a randomisation mechanism that guarantees privacy for an arbitrary program.

show abstract

“…The server's goal is to output a value which is close to f (x) but which reveals almost no information about any single individual. Recently, the latter notion has been made precise via the concept of differential privacy [9]. A standard way of obtaining such guarantees is to ask users to submit only Lipschitz functions 4 , and have the server output f (x) plus some random noise depending on the desired privacy guarantee [9].…”

Section: Introductionmentioning

confidence: 99%

“…Recently, the latter notion has been made precise via the concept of differential privacy [9]. A standard way of obtaining such guarantees is to ask users to submit only Lipschitz functions 4 , and have the server output f (x) plus some random noise depending on the desired privacy guarantee [9]. However, if a malicious user submits a function which is not Lipschitz, the differential privacy guarantee is lost.…”

Section: Introductionmentioning

confidence: 99%

Limitations of Local Filters of Lipschitz and Monotone Functions

Awasthi

Jha

Molinaro

et al. 2012

Approximation, Randomization, and Combinatorial Optimization. Algorithms and Techniques

View full text Add to dashboard Cite

Abstract. We study local filters for two properties of functions f : {0, 1} d → R: the Lipschitz property and monotonicity. A local filter with additive error a is a randomized algorithm that is given black-box access to a function f and a query point x in the domain of f . Its output is a value F (x), such that (i) the reconstructed function F (x) satisfies the property (in our case, is Lipschitz or monotone) and (ii) if the input function f satisfies the property, then for every point x in the domain (with high constant probability) the reconstructed value F (x) differs from f (x) by at most a. Local filters were introduced by Saks and Seshadhri (SICOMP 2010) and the relaxed definition we study is due to Bhattacharyya et al. (RANDOM 2010), except that we further relax it by allowing additive error. Local filters for Lipschitz and monotone functions have applications to areas such as data privacy. We show that every local filter for Lipschitz or monotone functions runs in time exponential in the dimension d, even when the filter is allowed significant additive error. Prior lower bounds (for local filters with no additive error, i.e., with a = 0) applied only to more restrictive class of filters, e.g., nonadaptive filters. To prove our lower bounds, we construct families of hard functions and show that lookups of a local filter on these functions are captured by a combinatorial object that we call a c-connector. Then we present a lower bound on the maximum outdegree of a c-connector, and show that it implies the desired bounds on the running time of local filters. Our lower bounds, in particular, imply the same bound on the running time for a class of privacy mechanisms.

show abstract

Calibrating Noise to Sensitivity in Private Data Analysis

Cited by 5,380 publications

References 11 publications

Differential Privacy and the Risk-Utility Tradeoff for Multi-dimensional Contingency Tables

Differential Privacy and the Risk-Utility Tradeoff for Multi-dimensional Contingency Tables

Browser Randomisation against Fingerprinting: A Quantitative Information Flow Approach

Limitations of Local Filters of Lipschitz and Monotone Functions

Contact Info

Product

Resources

About