Presentation is loading. Please wait.

Presentation is loading. Please wait.

Differential Privacy.

Published by지일 편 Modified over 5 years ago

Similar presentations

Presentation on theme: "Differential Privacy."— Presentation transcript:

1 Differential Privacy

2 1977 paper of Dalenius articulated the following desideratum: access to a statistical database should not enable one to learn anything about an individual that could not be learned without access.

3 An adversary who has access to the statistical database and the auxiliary information “Terry Gross is two inches shorter than the average Lithuanian woman” learns Terry Gross’ height Cynthia Dwork, Moni Naor. On the Difficulties of Disclosure Prevention in Statistical Databases or The Case for Differential Privacy. Journal of Privacy and Confidentiality, 2010

4 Differencing Attack Participating or not doesn't significantly improve privacy risk How many people in the database have the sickle cell trait? Name Age Sex Sickle Cell Trait Alice 65 M yes Bob 35 F no Cindy 40

5 Definition of Differential Privacy
Let ε be a positive real number A be a randomized algorithm that takes a dataset as input. The algorithm A is said to provide ε-differential privacy if, for all datasets D1 and D2 that differ on a single element, and all subsets S of Range(A):

6 DP Algorithms Randomized response Laplace mechanism Gaussian mechanism

7 Randomized Response “Have you engaged in XYZ in the past week?”
Flip a coin. If tails, then respond truthfully. If heads, then flip a second coin and respond “Yes” if heads and “No” if tails. p is the true fraction the expected number of “Yes” answers is (1/4)(1−p)+(3/4)p = (1/4)+p/2

8 Randomized Response Satisfy ln3-differential privacy S={Yes} S={No}

9 Laplace Mechanism

10 Laplace Mechanism f (D1) f (D2)

11 Laplace Mechanism

12 Gaussian mechanism | |

13 Gaussian mechanism Let ε be a positive real number
M be a randomized algorithm that takes a dataset as input. The algorithm M is said to provide (ε, δ)-differential privacy if, for all datasets D1 and D2 that differ on a single element, and all subsets S of Range(M):

14 Gaussian mechanism

15 Gaussian mechanism σ = cΔf/ε

16 Compare Laplace & Gaussian
Lap: b = Δf/ε Gau: σ = cΔf/ε Variance , σ

17 Discussion Assumption 1: more knowledgeable attacker
Assumption 2: less knowledgeable attacker Under which assumption should we release less sensitive information Under assumption 1 Under assumption 2 Daniel Kifer, Ashwin Machanavajjhala No Free Lunch in Data Privacy 2011 SIGMOD

18 Discussion Data are not independently generated
Example Bob and his 9 immediate family members may be afflicted with a genetic disease, A weaker attacker who knows nothing about the family's health can ask the query "how many in Bob's family have this disease?". The true answer is almost certainly going to be either 0 or 10. Suppose Laplace(1/ε) noise is added to the true answer. The answer 12 is exp(10) times more likely when the true answer is 10 than when the true answer is 0 Daniel Kifer, Ashwin Machanavajjhala No Free Lunch in Data Privacy 2011 SIGMOD

Download ppt "Differential Privacy."

Similar presentations

Wavelet and Matrix Mechanism CompSci 590.03 Instructor: Ashwin Machanavajjhala 1Lecture 11 : 590.03 Fall 12.

Wavelet and Matrix Mechanism CompSci Instructor: Ashwin Machanavajjhala 1Lecture 11 : Fall 12.
Publishing Set-Valued Data via Differential Privacy Rui Chen, Concordia University Noman Mohammed, Concordia University Benjamin C. M. Fung, Concordia.

Publishing Set-Valued Data via Differential Privacy Rui Chen, Concordia University Noman Mohammed, Concordia University Benjamin C. M. Fung, Concordia.
Confidentiality risks of releasing measures of data quality Jerry Reiter Department of Statistical Science Duke University

Confidentiality risks of releasing measures of data quality Jerry Reiter Department of Statistical Science Duke University
Differentially Private Recommendation Systems Jeremiah Blocki Fall 2009 18739A: Foundations of Security and Privacy.

Differentially Private Recommendation Systems Jeremiah Blocki Fall A: Foundations of Security and Privacy.
Simulatability “The enemy knows the system”, Claude Shannon CompSci 590.03 Instructor: Ashwin Machanavajjhala 1Lecture 6 : 590.03 Fall 12.

Simulatability “The enemy knows the system”, Claude Shannon CompSci Instructor: Ashwin Machanavajjhala 1Lecture 6 : Fall 12.
1. Required Reading A firm foundation for private data analysis. Dwork, C. Communications of the ACM, 54(1), 86-95. 2011. Privacy by the Numbers: A New.

1. Required Reading A firm foundation for private data analysis. Dwork, C. Communications of the ACM, 54(1), Privacy by the Numbers: A New.
Private Analysis of Graph Structure With Vishesh Karwa, Sofya Raskhodnikova and Adam Smith Pennsylvania State University Grigory Yaroslavtsev

Private Analysis of Graph Structure With Vishesh Karwa, Sofya Raskhodnikova and Adam Smith Pennsylvania State University Grigory Yaroslavtsev
1 Privacy Preserving Data Publishing Prof. Ravi Sandhu Executive Director and Endowed Chair March 29, 2013 © Ravi.

1 Privacy Preserving Data Publishing Prof. Ravi Sandhu Executive Director and Endowed Chair March 29, © Ravi.
Privacy Enhancing Technologies

Privacy Enhancing Technologies
Seminar in Foundations of Privacy 1.Adding Consistency to Differential Privacy 2.Attacks on Anonymized Social Networks Inbal Talgam March 2008.

Seminar in Foundations of Privacy 1.Adding Consistency to Differential Privacy 2.Attacks on Anonymized Social Networks Inbal Talgam March 2008.
An brief tour of Differential Privacy Avrim Blum Computer Science Dept Your guide:

An brief tour of Differential Privacy Avrim Blum Computer Science Dept Your guide:
Kunal Talwar MSR SVC [Dwork, McSherry, Talwar, STOC 2007] TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: A A A AA A.

Kunal Talwar MSR SVC [Dwork, McSherry, Talwar, STOC 2007] TexPoint fonts used in EMF. Read the TexPoint manual before you delete this box.: A A A AA A.
Differential Privacy 18739A: Foundations of Security and Privacy Anupam Datta Fall 2009.

Differential Privacy 18739A: Foundations of Security and Privacy Anupam Datta Fall 2009.
Privacy without Noise Yitao Duan NetEase Youdao R&D Beijing China CIKM 2009.

Privacy without Noise Yitao Duan NetEase Youdao R&D Beijing China CIKM 2009.
Differential Privacy (2). Outline  Using differential privacy Database queries Data mining  Non interactive case  New developments.

Differential Privacy (2). Outline  Using differential privacy Database queries Data mining  Non interactive case  New developments.
Foundations of Cryptography Lecture 9 Lecturer: Moni Naor.

Foundations of Cryptography Lecture 9 Lecturer: Moni Naor.
More About Inverse Problems: Another Example Inverting for density.

More About Inverse Problems: Another Example Inverting for density.
Multiplicative Weights Algorithms CompSci 590.03 Instructor: Ashwin Machanavajjhala 1Lecture 13 : 590.03 Fall 12.

Multiplicative Weights Algorithms CompSci Instructor: Ashwin Machanavajjhala 1Lecture 13 : Fall 12.
Sets, Combinatorics, Probability, and Number Theory Mathematical Structures for Computer Science Chapter 3 Copyright © 2006 W.H. Freeman & Co.MSCS SlidesProbability.

Sets, Combinatorics, Probability, and Number Theory Mathematical Structures for Computer Science Chapter 3 Copyright © 2006 W.H. Freeman & Co.MSCS SlidesProbability.
Sets, Combinatorics, Probability, and Number Theory Mathematical Structures for Computer Science Chapter 3 Copyright © 2006 W.H. Freeman & Co.MSCS SlidesProbability.

Sets, Combinatorics, Probability, and Number Theory Mathematical Structures for Computer Science Chapter 3 Copyright © 2006 W.H. Freeman & Co.MSCS SlidesProbability.

Similar presentations

Ads by Google