data driven concerns in privacy
play

Data-driven concerns in privacy Graham Cormode graham@cormode.org - PowerPoint PPT Presentation

Jun 05, 2023 •90 likes •456 views

Data-driven concerns in privacy Graham Cormode graham@cormode.org graham@cormode.org Joint work with Magda Procopiuc (AT&T) Entong Shen (NCSU) Divesh Srivastava (AT&T) Thanh Tran (UMass Amherst) Grigory Yaroslavtsev (Penn State)

  1. Data-driven concerns in privacy Graham Cormode graham@cormode.org graham@cormode.org Joint work with Magda Procopiuc (AT&T) Entong Shen (NCSU) Divesh Srivastava (AT&T) Thanh Tran (UMass Amherst) Grigory Yaroslavtsev (Penn State) Ting Yu (NCSU)

  2. Outline ♦ Anonymization and Privacy models ♦ Non-uniformity of data ♦ Optimizing linear queries ♦ Predictability in data 2

  3. The anonymization scenario 3

  4. Data-driven privacy ♦ Much interest in private data release – Practical: release of AOL, Netflix data etc. – Research: hundreds of papers ♦ In practice, many data-driven concerns arise: – Efficiency / practicality of algorithms as data scales – Efficiency / practicality of algorithms as data scales – How to interpret privacy guarantees – Handling of common data features, e.g. sparsity – Ability to optimize for known query workload – Usability of output for general processing ♦ This talk: outline some efforts to address these issues 4

  5. Differential Privacy [Dwork 06] ♦ Principle: released info reveals little about any individual – Even if adversary knows (almost) everything about everyone else! ♦ Thus, individuals should be secure about contributing their data – What is learnt about them is about the same either way ♦ Much work on providing differential privacy – Simple recipe for some data types e.g. numeric answers – Simple rules allow us to reason about composition of results – More complex for arbitrary data (exponential mechanism) ♦ Adopted and used by several organizations: – US Census, Common Data Project, Facebook (?)

  6. Differential Privacy The output distribution of a differentially private algorithm changes very little whether or not any individual’s data is included in the input – so you should contribute your data A randomized algorithm K satisfies ε-differential privacy if: Given any pair of neighboring data sets, D 1 and D 2 , and S in Range(K): Pr[K(D 1 ) = S] ≤ e ε Pr[K(D 2 ) = S]

  7. Achieving ε -Differential Privacy (Global) Sensitivity of publishing: s = max x,x’ |F(x) – F(x’)|, x, x’ differ by 1 individual E.g., count individuals satisfying property P: one individual changing info affects answer by at most 1; hence s = 1 For every value that is output: � Add Laplacian noise, Lap(ε/s): Or Geometric noise for discrete case: � Simple rules for composition of differentially private outputs: Given output O 1 that is ε 1 private and O 2 that is ε 2 private � (Sequential composition) If inputs overlap, result is ε 1 + ε 2 private � (Parallel composition) If inputs disjoint, result is max( ε 1 , ε 2 ) private

  8. Outline ♦ Anonymization and Privacy models ♦ Non-uniformity of data ♦ Optimizing linear queries ♦ Predictability in data 8

  9. Sparse Spatial Data [ICDE 2012] ♦ Consider location data of many individuals – Some dense areas (towns and cities), some sparse (rural) ♦ Applying DP naively simply generates noise – lay down a fine grid, signal overwhelmed by noise ♦ Instead: compact regions with sufficient number of points 9

  10. Private Spatial decompositions quadtree kd-tree ♦ Build: adapt existing methods to have differential privacy ♦ Release: a private description of data distribution (in the form of bounding boxes and noisy counts) 10

  11. Building a Private kd-tree ♦ Process to build a private kd-tree � Input: maximum height h , minimum leaf size L, data set � Choose dimension to split � Get (private) median in this dimension � Create child nodes and add noise to the counts � Recurse until: � Max height is reached � Noisy count of this node less than L � Budget along the root-leaf path has used up ♦ The entire PSD satisfies DP by the composition property 11

  12. Building PSDs – privacy budget allocation ♦ Data owner specifies a total budget reflecting the level of anonymization desired ♦ Budget is split between medians and counts – Tradeoff accuracy of division with accuracy of counts ♦ Budget is split across levels of the tree ♦ Budget is split across levels of the tree – Privacy budget used along any root-leaf path should total ε Sequential composition Parallel composition 12

  13. Privacy budget allocation ♦ How to set an ε i for each level? – Compute the number of nodes touched by a ‘typical’ query – Minimize variance of such queries – Optimization: min ∑ i 2 h-i / ε i 2 s.t. ∑ i ε i = ε – Solved by ε ∝ ( 2 (h-i) ) 1/3 ε : more to leaves – Solved by ε i ∝ ( 2 ε : more to leaves ) – Total error (variance) goes as 2 h / ε 2 ♦ Tradeoff between noise error and spatial uncertainty – Reducing h drops the noise error – But lower h increases the size of leaves, more uncertainty 13

  14. Post-processing of noisy counts ♦ Can do additional post-processing of the noisy counts – To improve query accuracy and achieve consistency ♦ Intuition: we have count estimate for a node and for its children – Combine these independent estimates to get better accuracy – Make consistent with some true set of leaf counts – Make consistent with some true set of leaf counts ♦ Formulate as a linear system in n unknowns – Avoid explicitly solving the system – Expresses optimal estimate for node v in terms of estimates of ancestors and noisy counts in subtree of v – Use the tree-structure to solve in three passes over the tree – Linear time to find optimal, consistent estimates

  15. Experimental study ♦ 1.63 million coordinates from US TIGER/Line dataset – Road intersections of US States ♦ Queries of different shapes, e.g. square, skinny ♦ Measured median relative error of 600 queries for each shape 15

  16. Experimental study ♦ Effectiveness of geometric budget and post-processing – Relative error reduced by up to an order of magnitude – Most effective when limited privacy budget 16

  17. Outline ♦ Anonymization and Privacy models ♦ Non-uniformity of data ♦ Optimizing linear queries ♦ Predictability in data 17

  18. Optimizing Linear Queries [ICDE 2013] ♦ Linear queries capture many common cases for data release – Data is represented as a vector x – Want to release answers to linear combinations of entries of x – E.g. contingency tables in statistics – Model queries as matrix Q, want to know y=Qx – Model queries as matrix Q, want to know y=Qx 3 5 1 1 1 1 0 0 0 0 7 0 0 0 0 1 1 1 1 0 1 1 0 0 0 0 0 0 x= Q= 1 0 0 1 1 0 0 0 0 4 0 0 0 0 1 1 0 0 9 0 0 0 0 0 0 1 1 2 18

  19. Answering Linear Queries ♦ Basic approach: – Answer each query in Q directly, and add uniform noise ♦ Basic approach is suboptimal – Especially when some queries overlap and others are disjoint ♦ Several opportunities for optimization: – Can assign different scales of noise to different queries – Can combine results to improve accuracy – Can ask different queries, and recombine to answer Q ( ) 1 1 1 1 0 0 0 0 0 0 0 0 1 1 1 1 1 1 0 0 0 0 0 0 Q= 0 0 1 1 0 0 0 0 0 0 0 0 1 1 0 0 0 0 0 0 0 0 1 1 19

  20. The Strategy/Recovery Approach ♦ Pick a strategy matrix S – Compute z = Sx + v noise vector strategy on data – Find R so that Q = RS – Return y = Rz = Qx + Rv as the set of answers – Return y = Rz = Qx + Rv as the set of answers – Measure accuracy based on var(y) = var(Rv) ♦ Common strategies used in prior work: I: Identity Matrix C: Selected Marginals Q: Query Matrix H: Haar Wavelets F: Fourier Matrix P: Random projections 20

  21. Step 1: Error Minimization ♦ Given Q, R, S, ε want to find a set of values { ε i } – Noise vector v has noise in entry i with variance 1/ ε i 2 ♦ Yields an optimization problem of the form: – Minimize ∑ i b i / ε i 2 (minimize variance) – Subject to ∑ |S | ε ≤ ε – Subject to ∑ i |S i,j | ε i ≤ ε (guarantee ε differential privacy) (guarantee ε differential privacy) ♦ The optimization is convex, can solve via interior point methods – Costly when S is large – We seek an efficient closed form for common strategies 21

  22. Grouping Approach ♦ We observe that many strategies S can be broken into groups that behave in a symmetrical way – Rows in a group are disjoint (have zero inner product) – Non-zero values in group i have same magnitude C i ♦ All common strategies meet this grouping condition ♦ All common strategies meet this grouping condition – Identity (I), Fourier (F), Marginals (C), Projections (P), Wavelets (H) ♦ Simplifies the optimization: – A single constraint over the ε i ’s – New constraint: ∑ Groups i C i ε i = ε – Closed form solution via Lagrangian 22

  23. Step 2: Optimal Recovery Matrix ♦ Given Q, S, { ε i }, find R so that Q=RS – Minimize the variance Var(Rz) = Var(RSx + Rv) = Var(Rv) ♦ Find an optimal solution by adapting Least Squares method ♦ This finds x’ as an estimate of x given z = Sx + v – Define Σ = Cov(z) = diag(2/ ε i Σ ε 2 2 ) and U = Σ -1/2 S Σ -1/2 – – OLS solution is x’ = (U T U ) -1 U T Σ -1/2 z ♦ Then R = Q(S T Σ -1 S) -1 S T Σ -1 ♦ Result: y = Rz = Qx’ is consistent—corresponds to queries on x’ – R minimizes the variance – Special case: S is orthonormal basis (S T = S -1 ) then R=QS T 23

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy Architecture for Data-Driven Innovation Nishant Bhajaria What is privacy? Unlike

Privacy Architecture for Data-Driven Innovation Nishant Bhajaria What is privacy? Unlike

Privacy Architecture for Data-Driven Innovation Nishant Bhajaria What is privacy? Unlike Security, privacy can be hard to define. Confidential Intro - Nishant Bhajaria Staff Privacy Architect History: Nike Netflix

1.02k views • 83 slides
REL Data Work Group A Community Driven Project Concerns about REL data were initiated by a

REL Data Work Group A Community Driven Project Concerns about REL data were initiated by a

Collecting Race, Ethnicity, and Language (REL) Data in Minnesota Health Insurance Exchange August 29, 2012 REL Data Work Group A Community Driven Project Concerns about REL data were initiated by a group of leaders of communities affected

421 views • 6 slides
Explaining Privacy and Fairness Violations in Data-Driven Systems Matt Fredrikson Carnegie

Explaining Privacy and Fairness Violations in Data-Driven Systems Matt Fredrikson Carnegie

Explaining Privacy and Fairness Violations in Data-Driven Systems Matt Fredrikson Carnegie Mellon University Joint effort Emily Black Gihyuk Ko Klas Leino Anupam Datta Sam Yeom Piotr Mardziel Shayak Sen 2 Data-driven systems are

732 views • 45 slides
something to keep quiet about GDPR Compliance Concerns and Its Impacts on Investigations

something to keep quiet about GDPR Compliance Concerns and Its Impacts on Investigations

Privacy is no longer something to keep quiet about GDPR Compliance Concerns and Its Impacts on Investigations Statistics from EY Surveys Page 2 When is privacy not something to keep quiet about? Data protection and data privacy compliance

884 views • 24 slides
Beyond the Basics: Recent Developments in Global Data Privacy and Security David Bender Special

Beyond the Basics: Recent Developments in Global Data Privacy and Security David Bender Special

Beyond the Basics: Recent Developments in Global Data Privacy and Security David Bender Special Counsel, Data Privacy GTC Law Group Distinguished Fellow, Ponemon Institute The Universe of Current Privacy Concerns n The Privacy world is today

698 views • 40 slides
Commentary on Privacy, Utility, and Potential Application of Differential Privacy to Census Data

Commentary on Privacy, Utility, and Potential Application of Differential Privacy to Census Data

Commentary on Privacy, Utility, and Potential Application of Differential Privacy to Census Data Kirk Wolter, Federal Economic Statistics Advisory Committee December 14, 2018 Ill discuss A couple of preliminaries Four concerns

228 views • 18 slides
Motivation Dramatic increase in digital data Privacy-Preserving Data Mining World Wide

Motivation Dramatic increase in digital data Privacy-Preserving Data Mining World Wide

Motivation Dramatic increase in digital data Privacy-Preserving Data Mining World Wide Web Growing Privacy Concerns Rakesh Agrawal Ramakrishnan Srikant A Surveys of web users IBM Almaden Research Center 17%

369 views • 8 slides
Rigorous Foundations for Statistical Data Privacy Adam Smith Boston University CWI, Amsterdam

Rigorous Foundations for Statistical Data Privacy Adam Smith Boston University CWI, Amsterdam

Rigorous Foundations for Statistical Data Privacy Adam Smith Boston University CWI, Amsterdam November 15, 2018 Privacy is changing Data-driven systems guiding decisions in many areas Models increasingly complex Privacy

466 views • 34 slides
Data Driven Connectivity Junda Liu, Aurojit Panda , Ankit Singla, Brighten Godfrey, Michael

Data Driven Connectivity Junda Liu, Aurojit Panda , Ankit Singla, Brighten Godfrey, Michael

Data Driven Connectivity Junda Liu, Aurojit Panda , Ankit Singla, Brighten Godfrey, Michael Schapira, Scott Shenker Division of Concerns Division of Concerns Routing is a control plane operation. Operates in the order of milliseconds.

1.04k views • 71 slides
Subtleties of Location Privacy a special type of information privacy which concerns the

Subtleties of Location Privacy a special type of information privacy which concerns the

29.09.2007 Subtleties of Location Privacy a special type of information privacy which concerns the claim of individuals to determine for themselves when, how, and to what extent location information about them is communicated to others. A

197 views • 8 slides
UA-Driven Privacy Mechanism for SIP draft-ietf-sip-ua-privacy-02 Mayumi Munakata Shida Schubert

UA-Driven Privacy Mechanism for SIP draft-ietf-sip-ua-privacy-02 Mayumi Munakata Shida Schubert

IETF72 SIP - Jul. 31, 2008 UA-Driven Privacy Mechanism for SIP draft-ietf-sip-ua-privacy-02 Mayumi Munakata Shida Schubert Takumi Ohba UA-Driven Privacy (draft-ietf-sip-ua-privacy-02) Mayumi M. Changes from 01

432 views • 5 slides
Data-Driven Privacy Indicators Hamza Harkous , Rameez Rahman, Karl Aberer EPFL, Switzerland

Data-Driven Privacy Indicators Hamza Harkous , Rameez Rahman, Karl Aberer EPFL, Switzerland

Data-Driven Privacy Indicators Hamza Harkous , Rameez Rahman, Karl Aberer EPFL, Switzerland Workshop on Privacy Indicators, SOUPS 2016 Permissions in 3rd Party Apps Facebook Android 2 Permissions in 3rd Party Apps 11/26/2015 Request for

856 views • 52 slides
Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No privacy breaches! Public Data Anonymization Data representation? Privacy breach? Value of data? Data publisher Privacy Analyst Work by: Elena

80 views • 3 slides
EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

28/05/15 Outline Data privacy and the evolving regulation Privacy threats from LBS to geoSN EveryWare Lab Main (location) privacy protection techniques Data Management for Mobile Protecting geo-tagged resource publication

411 views • 7 slides
Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE

Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE

Data Privacy for IEEE Volunteer Data Managers 2 Overview Changes in Data Privacy IEEE Privacy Policy Terms & Conditions and Subscriptions Consent Structure and Preferences Meetings, Conferences, and Events

926 views • 36 slides
The politics of data-driven governance Lina Dencik @LinaDencik Data Justice Lab @DataJusticeLab

The politics of data-driven governance Lina Dencik @LinaDencik Data Justice Lab @DataJusticeLab

The politics of data-driven governance Lina Dencik @LinaDencik Data Justice Lab @DataJusticeLab Cardiff University, UK Structure 1. Data Justice Lab 2. The Snowden moment 3. Beyond privacy 4. Situating data in practice (a case study) 5.

171 views • 15 slides
The XENO NON1 N1T excess electron-re recoil events Guido Zavattini University of Ferrara and

The XENO NON1 N1T excess electron-re recoil events Guido Zavattini University of Ferrara and

The XENO NON1 N1T excess electron-re recoil events Guido Zavattini University of Ferrara and INFN Ferrara XENON Bologna group on behalf of the XENON collaboration. On-line seminar at the Birmingham Particle Physics group 1 Guido

474 views • 46 slides
Observational Cosmology (C. Porciani / K. Basu) Lecture 3 The Cosmic Microwave Background

Observational Cosmology (C. Porciani / K. Basu) Lecture 3 The Cosmic Microwave Background

Observational Cosmology (C. Porciani / K. Basu) Lecture 3 The Cosmic Microwave Background (Spectrum and Anisotropies) Course website: http://www.astro.uni-bonn.de/~kbasu/astro845.html Observational Cosmology Lecture 3 (K. Basu): CMB

966 views • 68 slides
PVMD Ren van Swaaij Delft University of Technology Learning objectives Identify three

PVMD Ren van Swaaij Delft University of Technology Learning objectives Identify three

Recombination Processes Radiative & Auger PVMD Ren van Swaaij Delft University of Technology Learning objectives Identify three recombination processes Learning objectives Identify three recombination processes

713 views • 57 slides
Solar Radio Astronomy CHRISTOPHE MARQU BASIC SIDC SEMINARS source: NASA History The

Solar Radio Astronomy CHRISTOPHE MARQU BASIC SIDC SEMINARS source: NASA History The

Solar Radio Astronomy CHRISTOPHE MARQU BASIC SIDC SEMINARS source: NASA History The beginning 1902 : First (failed) attempt to observe radio waves from the Sun by Charles Nordmann (1902) in the French Alps, near Chamonix 1933:

840 views • 81 slides
Lecture 17: Semiconductors - continued (Kittel Ch. 8) E Conduction Band Fermi Energy All

Lecture 17: Semiconductors - continued (Kittel Ch. 8) E Conduction Band Fermi Energy All

Lecture 17: Semiconductors - continued (Kittel Ch. 8) E Conduction Band Fermi Energy All bands have the form E - const |k| 2 near the band edge Valence Bands |k| L = (1,1,1) /a X = (2,0,0) /a 0 Physics 460 F 2006 Lect 17 1

637 views • 18 slides
Violation of bulk-edge correspondence in a hydrodynamic model Gian Michele Graf ETH Zurich PhD

Violation of bulk-edge correspondence in a hydrodynamic model Gian Michele Graf ETH Zurich PhD

Violation of bulk-edge correspondence in a hydrodynamic model Gian Michele Graf ETH Zurich PhD School: September 16-20, 2019 @Universit` a degli Studi Roma Tre Violation of bulk-edge correspondence in a hydrodynamic model Gian Michele Graf

1.39k views • 93 slides
Red-Edge Bands for Wetland Classification Gordana KAPLAN, PhD Assoc. Prof. Dr. Ugur AVDAN

Red-Edge Bands for Wetland Classification Gordana KAPLAN, PhD Assoc. Prof. Dr. Ugur AVDAN

Evaluating Sentinel-2 Red-Edge Bands for Wetland Classification Gordana KAPLAN, PhD Assoc. Prof. Dr. Ugur AVDAN Contents Introduction Aim of Study Data and Methods Results Discussion Conclusion 2 Introduction Wetlands

229 views • 11 slides
Lecture 02 Digital Modulation I-Hsiang Wang ihwang@ntu.edu.tw National Taiwan University

Lecture 02 Digital Modulation I-Hsiang Wang ihwang@ntu.edu.tw National Taiwan University

Principle of Communications, Fall 2017 Lecture 02 Digital Modulation I-Hsiang Wang ihwang@ntu.edu.tw National Taiwan University 2017/9/14, 9/21, 9/27 Outline Digital-to-analog and analog-to-digital: a signal space perspective

520 views • 50 slides

More recommend