Presentation is loading. Please wait.

Presentation is loading. Please wait.

Differential Privacy Xintao Wu Oct 31, 2012. Sanitization approaches Input perturbation –Add noise to data –Generalize data Summary statistics –Means,

Published byMelina Gilbert Modified over 8 years ago

Similar presentations

Presentation on theme: "Differential Privacy Xintao Wu Oct 31, 2012. Sanitization approaches Input perturbation –Add noise to data –Generalize data Summary statistics –Means,"— Presentation transcript:

1 Differential Privacy Xintao Wu Oct 31, 2012

2 Sanitization approaches Input perturbation –Add noise to data –Generalize data Summary statistics –Means, variances –Marginal totals –Model parameters Output perturbation –Add noise to summary statistics

3 Blending/hiding into a crowd K-anonymity based approaches Adversary may have various background knowledge to breach privacy Privacy models often assume “the adversary’s background knowledge is given”

4 Classic intuition for privacy Privacy means that anything can be learned about a respondent from the statistical database can be learned without access to the database. Security of encryption –Anything about the plaintext that can be learned from a ciphertext can be learned without the ciphertext. Prior and posterior views about an individual should not change much

5 Motivation Publicly release statistical information about a dataset without compromising the privacy of any individual

6 Requirement Anything that can be learned about a respondent from a statistical database should be learnable without access to the database Reduce the knowledge gain of joining the database Require that the probability distribution on the public results is essentially the same independent of whether any individual opts in to, or opts out of the dataset

7 Definition

8 Sensitivity function Captures how great a difference must be hidden by the additive noise

9 LAP distribution noise

10 Guassian noise

11 Adding LAP noise

12 Proof sketch

13 Delta_f=1, epsilon varies

14 Delta_f=1 epsilon=0.01

15 Delta_f=1 epsilon=0.1

16 Delta_f=1 epsilon=1

17 Delta_f=1 epsilon=2

18 Delta_f=1 epsilon=10

19 Delta_f=2, epsilon varies

20 Delta_f=3, epsilon varies

21 Delta_f=10000, epsilon varies

22 Composition Sequential composition Parallel composition --for disjoint sets, the ultimate privacy guarantee depends only on the worst of the guarantees of each analysis, not the sum.

23 Example Let us assume a table with 1000 customers and each record has attributes: name, gender, city, cancer, salary. –For attribute city, we assume the domain size is 10; –for attribute cancer, we only record Yes or No for each customer; – for attribute salary, the domain range is 0-10k. –The privacy threshold \epsilon is a constant 0.1 set by data owner. For one single query “How many customers got cancer?” The adversary is allowed to ask three times of the query shown the above.

24 Example (continued) “How many customers got cancer in each city?” For one single query “What is the sum of salaries across all customers?”

25 Type of computing (query) some are very sensitive, others are not single query vs. query sequence query on disjoint sets or not outcome expected: number vs. arbitrary interactive vs. not interactive

26 Sensitivity Global sensitivity Local sensitivity Smooth sensitivity

27 Different areas of DP PINQ DM with DP Optimizing linear counting queries under differential privacy. -Matrix mechanism for answering a workload of predicate counting queries

28 PPDM interface--PINQ A programmable privacy preserving layer Add calibrated noise to each query Need to assign privacy cost budget

29 Data Mining with DP Previous study—privacy preserving interface ensures everything about DP Problems—inferior results if the interface is utilized simply during data mining Solution—consider both together DP ID3 —noisy count —evaluate all attributes in one exponential mechanism query using entire budget instead of splitting budget among multiple

30 DP in Social Networks Page 97-120 of pakdd11 tutorialpakdd11 tutorial

Download ppt "Differential Privacy Xintao Wu Oct 31, 2012. Sanitization approaches Input perturbation –Add noise to data –Generalize data Summary statistics –Means,"

Similar presentations

I have a DREAM! (DiffeRentially privatE smArt Metering) Gergely Acs and Claude Castelluccia {gergely.acs, INRIA 2011.

I have a DREAM! (DiffeRentially privatE smArt Metering) Gergely Acs and Claude Castelluccia {gergely.acs, INRIA 2011.
Wavelet and Matrix Mechanism CompSci 590.03 Instructor: Ashwin Machanavajjhala 1Lecture 11 : 590.03 Fall 12.

Wavelet and Matrix Mechanism CompSci Instructor: Ashwin Machanavajjhala 1Lecture 11 : Fall 12.
Naïve Bayes. Bayesian Reasoning Bayesian reasoning provides a probabilistic approach to inference. It is based on the assumption that the quantities of.

Naïve Bayes. Bayesian Reasoning Bayesian reasoning provides a probabilistic approach to inference. It is based on the assumption that the quantities of.
Publishing Set-Valued Data via Differential Privacy Rui Chen, Concordia University Noman Mohammed, Concordia University Benjamin C. M. Fung, Concordia.

Publishing Set-Valued Data via Differential Privacy Rui Chen, Concordia University Noman Mohammed, Concordia University Benjamin C. M. Fung, Concordia.
Simulatability “The enemy knows the system”, Claude Shannon CompSci 590.03 Instructor: Ashwin Machanavajjhala 1Lecture 6 : 590.03 Fall 12.

Simulatability “The enemy knows the system”, Claude Shannon CompSci Instructor: Ashwin Machanavajjhala 1Lecture 6 : Fall 12.
Private Analysis of Graph Structure With Vishesh Karwa, Sofya Raskhodnikova and Adam Smith Pennsylvania State University Grigory Yaroslavtsev

Private Analysis of Graph Structure With Vishesh Karwa, Sofya Raskhodnikova and Adam Smith Pennsylvania State University Grigory Yaroslavtsev
Raef Bassily Adam Smith Abhradeep Thakurta Penn State Yahoo! Labs Private Empirical Risk Minimization: Efficient Algorithms and Tight Error Bounds Penn.

Raef Bassily Adam Smith Abhradeep Thakurta Penn State Yahoo! Labs Private Empirical Risk Minimization: Efficient Algorithms and Tight Error Bounds Penn.
April 2, 2015Applied Discrete Mathematics Week 8: Advanced Counting 1 Random Variables In some experiments, we would like to assign a numerical value to.

April 2, 2015Applied Discrete Mathematics Week 8: Advanced Counting 1 Random Variables In some experiments, we would like to assign a numerical value to.
1 Privacy Preserving Data Publishing Prof. Ravi Sandhu Executive Director and Endowed Chair March 29, 2013 © Ravi.

1 Privacy Preserving Data Publishing Prof. Ravi Sandhu Executive Director and Endowed Chair March 29, © Ravi.
Privacy Enhancing Technologies

Privacy Enhancing Technologies
Seminar in Foundations of Privacy 1.Adding Consistency to Differential Privacy 2.Attacks on Anonymized Social Networks Inbal Talgam March 2008.

Seminar in Foundations of Privacy 1.Adding Consistency to Differential Privacy 2.Attacks on Anonymized Social Networks Inbal Talgam March 2008.
An brief tour of Differential Privacy Avrim Blum Computer Science Dept Your guide:

An brief tour of Differential Privacy Avrim Blum Computer Science Dept Your guide:
Differential Privacy 18739A: Foundations of Security and Privacy Anupam Datta Fall 2009.

Differential Privacy 18739A: Foundations of Security and Privacy Anupam Datta Fall 2009.
Privacy Preserving Market Basket Data Analysis Ling Guo, Songtao Guo, Xintao Wu University of North Carolina at Charlotte.

Privacy Preserving Market Basket Data Analysis Ling Guo, Songtao Guo, Xintao Wu University of North Carolina at Charlotte.
Flow Algorithms for Two Pipelined Filtering Problems Anne Condon, University of British Columbia Amol Deshpande, University of Maryland Lisa Hellerstein,

Flow Algorithms for Two Pipelined Filtering Problems Anne Condon, University of British Columbia Amol Deshpande, University of Maryland Lisa Hellerstein,
Privacy without Noise Yitao Duan NetEase Youdao R&D Beijing China CIKM 2009.

Privacy without Noise Yitao Duan NetEase Youdao R&D Beijing China CIKM 2009.
Differential Privacy (2). Outline  Using differential privacy Database queries Data mining  Non interactive case  New developments.

Differential Privacy (2). Outline  Using differential privacy Database queries Data mining  Non interactive case  New developments.
Preserving Privacy in Clickstreams Isabelle Stanton.

Preserving Privacy in Clickstreams Isabelle Stanton.
Chapter 5 Data mining : A Closer Look.

Chapter 5 Data mining : A Closer Look.
Database Access Control & Privacy: Is There A Common Ground? Surajit Chaudhuri, Raghav Kaushik and Ravi Ramamurthy Microsoft Research.

Database Access Control & Privacy: Is There A Common Ground? Surajit Chaudhuri, Raghav Kaushik and Ravi Ramamurthy Microsoft Research.

Similar presentations

Ads by Google