Presentation is loading. Please wait.

Presentation is loading. Please wait.

Methods of Secure Computation and Data Integration Jerome Reiter, Duke University Alan Karr, NISS Xiaodong Lin, University of Cincinnati Ashish Sanil,

Published byGabriel Harper Modified over 9 years ago

Similar presentations

Presentation on theme: "Methods of Secure Computation and Data Integration Jerome Reiter, Duke University Alan Karr, NISS Xiaodong Lin, University of Cincinnati Ashish Sanil,"— Presentation transcript:

1 Methods of Secure Computation and Data Integration Jerome Reiter, Duke University Alan Karr, NISS Xiaodong Lin, University of Cincinnati Ashish Sanil, Bristol Myers Squibb

2 General setting Multiple agencies seek to improve analyses by “pooling” their data. Do not want to reveal individual data values unknown to other agencies. Want accurate results from pooling procedures.

3 Pooling situations Horizontally Partitioned: Agencies have different records but same variables. Purely Vertically Partitioned: Agencies have same records but different variables. Partially Overlapping, Vertically Partitioned: Agencies have different records and different variables, with some common records and variables.

4 Horizontal partitioning Karr, Lin, Sanil, Reiter (JCGS, 2005) Secure data integration -- shares data but protects sources. -- allows any analysis to be done. Secure summation -- shares sums without sharing data -- allows regressions, association rules, classifications, clustering

5 Secure summation Obtain without sharing individual values 1. Agency A passes (x + R) to 2 nd agency. 2. Agency B adds its x to this value and passes sum to Agency C. 3. Process continues until all agencies have added their x. 4. Agency A subtracts R from the sum.

6 Purely vertical partitioning Secure dot/matrix product -- shares dot/matrix products without sharing data. -- allows regressions, association rules, classification, clustering. -- assumes semi-honest. Synthetic data approaches -- share synthetic copies of data across agencies. -- allows any analysis when distributions used to generate data are accurate. -- generates public use data file.

7 Secure dot/matrix products Karr, Lin, Reiter, Sanil (NISS tech. report) Compute not revealing individual values 1. Agency A passes where for all i,j to Agency B. 2. Agency B sends to Agency A. 3. Agency A computes

8 Purely vertical partitioning Secure dot/matrix product -- share dot/matrix products without sharing data. -- allows regressions, association rules, classification, clustering. -- assumes semi-honest. Synthetic data approaches -- share synthetic copies of data across agencies. -- allows any analysis when distributions used to generate data are accurate. -- generates public use data file.

9 Synthetic data approach Kohnen (PhD thesis, 2005) Assume X not sensitive. Pass real X to Agency B. Agency B simulates multiple copies of Y for from f(Y|X) estimated using the dataset from Agency A. Pass the copies to Agency A.

10 Synthetic data approach Kohnen (PhD thesis, 2005) Agency A uses partially synthetic data methods (Reiter, Surv. Meth., 2003) for inferences based on Y|X. Agency A can release fully synthetic data to public.

11 Synthetic data approaches Kohnen (PhD thesis, 2005) 1. Agency A simulates disguiser X that look like the genuine values of X, ideally from distribution close to f(X|Y). Pass real X and disguisers to Agency B. 2. Agency B simulates multiple copies of Y for each f(Y|X) estimated using the datasets from Agency A. Pass the copies to Agency A.

12 Synthetic data approaches Kohnen (PhD thesis, 2005) Agency A discards disguisers and uses partially synthetic data methods (Reiter, Surv. Meth., 2003) to obtain inferences using the real X. Agency A can release fully synthetic data to public.

13 Partially overlapping, vertical partitioning Secure EM algorithm -- uses secure dot products -- continuous data: estimate covariance matrix for multivariate normal data -- categorical data: estimate parameters of log-linear models

14 Limitations of methods: Defining a research agenda Secure computation methods: - How to specify models without viewing data? - What if sophisticated models needed? - How to do posterior simulation? Synthetic data methods: - How to generate good disguisers? All methods: - How to incorporate matching errors, differences in data quality and definitions? - How to account for disclosure risks from models that “fit too well?”

Download ppt "Methods of Secure Computation and Data Integration Jerome Reiter, Duke University Alan Karr, NISS Xiaodong Lin, University of Cincinnati Ashish Sanil,"

Similar presentations

Alternative Approaches to Data Dissemination and Data Sharing Jerome Reiter Duke University

Alternative Approaches to Data Dissemination and Data Sharing Jerome Reiter Duke University
Estimating Identification Risks for Microdata Jerome P. Reiter Institute of Statistics and Decision Sciences Duke University, Durham NC, USA.

Estimating Identification Risks for Microdata Jerome P. Reiter Institute of Statistics and Decision Sciences Duke University, Durham NC, USA.
Jörg Drechsler (Institute for Employment Research, Germany) NTTS 2009 Brussels, 20. February 2009 Disclosure Control in Business Data Experiences with.

Jörg Drechsler (Institute for Employment Research, Germany) NTTS 2009 Brussels, 20. February 2009 Disclosure Control in Business Data Experiences with.
Introduction to Monte Carlo Markov chain (MCMC) methods

Introduction to Monte Carlo Markov chain (MCMC) methods
Latent normal models for missing data Harvey Goldstein Centre for Multilevel Modelling University of Bristol.

Latent normal models for missing data Harvey Goldstein Centre for Multilevel Modelling University of Bristol.
Confidentiality risks of releasing measures of data quality Jerry Reiter Department of Statistical Science Duke University

Confidentiality risks of releasing measures of data quality Jerry Reiter Department of Statistical Science Duke University
Probabilistic analog of clustering: mixture models

Probabilistic analog of clustering: mixture models
Mixture Models and the EM Algorithm

Mixture Models and the EM Algorithm
GENERAL LINEAR MODELS: Estimation algorithms

GENERAL LINEAR MODELS: Estimation algorithms
Computer vision: models, learning and inference Chapter 8 Regression.

Computer vision: models, learning and inference Chapter 8 Regression.
K Means Clustering , Nearest Cluster and Gaussian Mixture

K Means Clustering , Nearest Cluster and Gaussian Mixture
1 Parametric Sensitivity Analysis For Cancer Survival Models Using Large- Sample Normal Approximations To The Bayesian Posterior Distribution Gordon B.

1 Parametric Sensitivity Analysis For Cancer Survival Models Using Large- Sample Normal Approximations To The Bayesian Posterior Distribution Gordon B.
Task 6 Statistical Approaches Scope of Work Bob Youngs NGA Workshop #5 March 25, 2003.

Task 6 Statistical Approaches Scope of Work Bob Youngs NGA Workshop #5 March 25, 2003.
Clustering.

Clustering.
© John M. Abowd 2005, all rights reserved Recent Advances In Confidentiality Protection John M. Abowd April 2005.

© John M. Abowd 2005, all rights reserved Recent Advances In Confidentiality Protection John M. Abowd April 2005.
Expectation Maximization for GMM Comp344 Tutorial Kai Zhang.

Expectation Maximization for GMM Comp344 Tutorial Kai Zhang.
Computer vision: models, learning and inference Chapter 3 Common probability distributions.

Computer vision: models, learning and inference Chapter 3 Common probability distributions.
Analysis of Covariance Goals: 1)Reduce error variance. 2)Remove sources of bias from experiment. 3)Obtain adjusted estimates of population means.

Analysis of Covariance Goals: 1)Reduce error variance. 2)Remove sources of bias from experiment. 3)Obtain adjusted estimates of population means.
Classification and Prediction: Regression Analysis

Classification and Prediction: Regression Analysis
Computer vision: models, learning and inference Chapter 5 The Normal Distribution.

Computer vision: models, learning and inference Chapter 5 The Normal Distribution.

Similar presentations

Ads by Google