weakly private information retrieval under the maximal
play

Weakly Private Information Retrieval Under the Maximal Leakage Metric - PowerPoint PPT Presentation

Sep 02, 2022 •335 likes •653 views

Weakly Private Information Retrieval Under the Maximal Leakage Metric Ruida Zhou, Tao Guo, Chao Tian Texas A&M University ISIT 2020 R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 1 / 20 Private Information Retrieval

  1. Weakly Private Information Retrieval Under the Maximal Leakage Metric Ruida Zhou, Tao Guo, Chao Tian Texas A&M University ISIT 2020 R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 1 / 20

  2. Private Information Retrieval (PIR) ( N , K ) non-colluding PIR: server 0 server 1 server 2 server N-1 ...... N servers: server 0, server 1, . . . , server N-1; K messages: W 0 , W 1 , . . . , W K − 1 ; R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 2 / 20

  3. Private Information Retrieval (PIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 3 / 20

  4. Private Information Retrieval (PIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . When M = k , server 0 server 1 server 2 server N-1 ...... R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 3 / 20

  5. Private Information Retrieval (PIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . When M = k , server 0 server 1 server 2 server N-1 ...... User: uses a random key F to generate queries Q [ k ] n ; R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 3 / 20

  6. Private Information Retrieval (PIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . When M = k , server 0 server 1 server 2 server N-1 ...... User: uses a random key F to generate queries Q [ k ] n ; Server n : return answer A [ k ] after receiving the query; n R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 3 / 20

  7. Private Information Retrieval (PIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . When M = k , server 0 server 1 server 2 server N-1 ...... User: uses a random key F to generate queries Q [ k ] n ; Server n : return answer A [ k ] after receiving the query; n W k = ψ ( A [ k ] User: recovers ˆ 0: N − 1 , k , F ). R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 3 / 20

  8. Private Information Retrieval (PIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . When M = k , server 0 server 1 server 2 server N-1 ...... User: uses a random key F to generate queries Q [ k ] n ; Server n : return answer A [ k ] after receiving the query; n W k = ψ ( A [ k ] User: recovers ˆ 0: N − 1 , k , F ). Requirements: Correctness: ˆ W k = W k ; Privacy: the query distribution Pr ( Q [ k ] = q ) = Pr ( Q [ k ′ ] = q ). n n R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 3 / 20

  9. Private Information Retrieval (PIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . When M = k , server 0 server 1 server 2 server N-1 ...... Requirements: Correctness: ˆ W k = W k ; Privacy: for any n , Q [ M ] does not leak the privacy of M . n R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 4 / 20

  10. How do we measure privacy leakage? Privacy: for any n , Q [ M ] does not leak any privacy of M . n R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 5 / 20

  11. How do we measure privacy leakage? Privacy: for any n , Q [ M ] does not leak any privacy of M . n Mutual information; Differential privacy; Maximal leakage metric; etc. R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 5 / 20

  12. How do we measure privacy leakage? Privacy: for any n , Q [ M ] does not leak any privacy of M . n Mutual information; Differential privacy; Maximal leakage metric; etc. Use a metric to quantify the leakage of identity privacy; If allow certain amount of the leakage, we have the weakly private information retrieval. R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 5 / 20

  13. Weakly Private Information Retrieval (WPIR) User wants the message W M , where M is a random variable in { 0 , 1 , . . . , K − 1 } . When M = k , server 0 server 1 server 2 server N-1 ...... Requirements: Correctness: ˆ W k = W k ; ρ -Privacy: Leak ( M → Q [ M ] ) ≤ ρ n R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 6 / 20

  14. Performance measure – download cost Message size L – length of the message L := H ( W 0 ) = H ( W 1 ) = · · · = H ( W K − 1 ); Answer length ℓ n – number of symbols downloaded from server n Download cost D � N − 1 � D := 1 � E ( ℓ n ) . L n =0 We aim to have lower download cost. R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 7 / 20

  15. Review of WPIR By the type of leakage metric Leak ( M → Q [ M ] ) n Lin et al (ISIT 2019) : mutual information is used to measure leakage Samy-Tandon-Lazos (ISIT 2019): differential privacy is used to measure leakage Jia (MS Thesis 2019): conditional entropy is used to measure leakage R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 8 / 20

  16. Review of WPIR By the type of leakage metric Leak ( M → Q [ M ] ) n Lin et al (ISIT 2019) : mutual information is used to measure leakage Samy-Tandon-Lazos (ISIT 2019): differential privacy is used to measure leakage Jia (MS Thesis 2019): conditional entropy is used to measure leakage In this work, we use the maximal leakage metric L . R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 8 / 20

  17. Maximal Leakage Metric Operational meaning of L ( X → Y ): When guessing a function of X upon observing Y , the leakage is the logarithm of the ratio of the probability of a correct guess when Y is observed, to the probability of a correct guess when Y is not observed. log Pr( U = ˆ U ) L ( X → Y ) = sup max u P U ( u ) U − X − Y − ˆ U R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 9 / 20

  18. Maximal Leakage Metric Operational meaning of L ( X → Y ): When guessing a function of X upon observing Y , the leakage is the logarithm of the ratio of the probability of a correct guess when Y is observed, to the probability of a correct guess when Y is not observed. log Pr( U = ˆ U ) L ( X → Y ) = sup max u P U ( u ) U − X − Y − ˆ U Math formula: � L ( X → Y ) = log P Y | X ( y | x ) . max x ∈ X : y ∈ Y P X ( x ) > 0 R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 9 / 20

  19. Maximal Leakage Metric Operational meaning of L ( X → Y ): When guessing a function of X upon observing Y , the leakage is the logarithm of the ratio of the probability of a correct guess when Y is observed, to the probability of a correct guess when Y is not observed. log Pr( U = ˆ U ) L ( X → Y ) = sup max u P U ( u ) U − X − Y − ˆ U Math formula: � L ( X → Y ) = log P Y | X ( y | x ) . max x ∈ X : y ∈ Y P X ( x ) > 0 For WPIR system L ( M → Q [ M ] � ) = log max P Q [ M ] | M ( q | M = k ) n k ∈ [0: K − 1]: n q ∈ Q n P M ( k ) > 0 The distribution of M is unknown, and also not required for calculating L ( M → Q [ M ] ). n R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 9 / 20

  20. Extreme cases Define the worst case maximal leakage – maximum privacy leakage of all servers n ∈ [0: N − 1] L ( M → Q [ M ] ρ = max ) . n R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 10 / 20

  21. Extreme cases Define the worst case maximal leakage – maximum privacy leakage of all servers n ∈ [0: N − 1] L ( M → Q [ M ] ρ = max ) . n Two extreme cases ρ ? D Perfect privacy: No privacy: Sun-Jafar’s scheme[TIT17]; Tian-Sun-Chen’s scheme[TIT19] “direct download” D pir = 1 + 1 1 1 N + N 2 + · · · + N K − 1 , ρ = 0 . D = 1 , ρ = log K . R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 10 / 20

  22. Gentle Start: WPIR ( N , K , ρ ) = (2 , 2 , 0) Review of TSC’s scheme server 0 server 1 a 1 a 1 b 1 b 1 Coding scheme: �� �� �� �� � � � � 0 1 server 0 server 1 0 1 server 0 server 1 F ∈ F ∈ , ; , 0 1 ∅ a 1 0 1 a 1 + b 1 b 1 Use random code structure to maintain privacy; R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 11 / 20

  23. Gentle Start: WPIR ( N , K , ρ ) = (2 , 2 , 0) Review of TSC’s scheme server 0 server 1 a 1 a 1 b 1 b 1 Coding scheme: �� �� �� �� � � � � 0 1 server 0 server 1 0 1 server 0 server 1 F ∈ , ; F ∈ , 0 1 ∅ a 1 0 1 a 1 + b 1 b 1 Some choice of F may lead to “direct download” code structure; R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 12 / 20

  24. From no privacy to perfect privacy p F p F p F ? F · · · F F · · · · · · (a) (b) (c) Figure: Between the extreme case of (a) where download cost is minimized and the other extreme case of (c) where the privacy is prefect, we can adjust the probability distribution to achieve the tradeoff between ρ and D . What is the optimal behavior of TSC’ code in between the two extreme cases? R. Zhou, T. Guo, C. Tian Weakly PIR Under the Maximal Leakage Metric 13 / 20

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Heterogenous Private Information Retrieval Hamid Mozaffari, Amir Houmansadr University of

Heterogenous Private Information Retrieval Hamid Mozaffari, Amir Houmansadr University of

Heterogenous Private Information Retrieval Hamid Mozaffari, Amir Houmansadr University of Massachusetts Amherst Pr Private Information Retrieval u Private information retrieval (PIR) enables clients to query and retrieve data from untrusted

415 views • 25 slides
Private Information Retrieval Over Gaussian MAC Ori Shmuel Joint Work with Asaf Cohen Ben

Private Information Retrieval Over Gaussian MAC Ori Shmuel Joint Work with Asaf Cohen Ben

Private Information Retrieval PIR for Gaussian Multiple Access Channels Private Information Retrieval Over Gaussian MAC Ori Shmuel Joint Work with Asaf Cohen Ben Gurion University of the Negev shmuelor@bgu.ac.il IEEE International Symposium

1.09k views • 73 slides
Computational Code-Based Single-Server Private Information Retrieval Lukas Holzbaur , Camilla

Computational Code-Based Single-Server Private Information Retrieval Lukas Holzbaur , Camilla

Computational Code-Based Single-Server Private Information Retrieval Lukas Holzbaur , Camilla Hollanti, Antonia Wachter-Zeh Technical University of Munich Institute for Communications Engineering Private Information Retrieval Goal: Retrieve

431 views • 28 slides
Information Retrieval Introducing Information Retrieval and Web Search Information Retrieval

Information Retrieval Introducing Information Retrieval and Web Search Information Retrieval

Introduction to Information Retrieval Introducing Information Retrieval and Web Search Information Retrieval Information Retrieval (IR) is finding material (usually documents) of an unstructured nature (usually text) that satisfies an

1.01k views • 57 slides
Private Information Retrieval over ICN Christian Tschudin University of Basel ,

Private Information Retrieval over ICN Christian Tschudin University of Basel ,

Private Information Retrieval over ICN Christian Tschudin University of Basel , Switzerland and Symphony.com , Palo Alto, USA /edu/ucla/cs/nom16/PIRoverICN/ndx sha256 MPHF PIR Overview How to lookup secrets over public NDN?

585 views • 12 slides
Single-Database Private Information Retrieval 07.11.2005 Aleksandr Grebennik Tartu University a

Single-Database Private Information Retrieval 07.11.2005 Aleksandr Grebennik Tartu University a

MTAT.07.006 Research Seminar in Cryptography Single-Database Private Information Retrieval 07.11.2005 Aleksandr Grebennik Tartu University a g@ut.ee Single-Database Private Information Retrieval Aleksandr Grebennik 1 Overview of the Lecture

626 views • 15 slides
Improved User-Private Information Retrieval via Finite Geometry RMIT Padraig O Cath ain

Improved User-Private Information Retrieval via Finite Geometry RMIT Padraig O Cath ain

Improved User-Private Information Retrieval via Finite Geometry RMIT Padraig O Cath ain (WPI) joint with Oliver W. Gnilke, Marcus Greferath, Camilla Hollanti, Guillermo Nu nez Ponasso, Eric Swartz 7th October 2019 Private

955 views • 62 slides
1 What is multimedia information retrieval? 1.1 Information retrieval 1.2 Multimedia 1.3

1 What is multimedia information retrieval? 1.1 Information retrieval 1.2 Multimedia 1.3

1 What is multimedia information retrieval? 1.1 Information retrieval 1.2 Multimedia 1.3 Semantic Gap? 1.4 Challenges of automated multimedia indexing 2 Basic multimedia search technologies 2.1 Meta-data driven retrieval 2.2 Piggy-back text

902 views • 56 slides
CS54701: Information Retrieval CS-54701 Information Retrieval Luo Si Department of Computer

CS54701: Information Retrieval CS-54701 Information Retrieval Luo Si Department of Computer

CS54701: Information Retrieval CS-54701 Information Retrieval Luo Si Department of Computer Science Purdue University Overview of Information Retrieval Why Information Retrieval: Information Overload: The world produces between 1 and 2

366 views • 33 slides
On Basing Private Information Retrieval on NP-Hardness Tianren Liu 1 Vinod Vaikuntanathan 1 1 MIT

On Basing Private Information Retrieval on NP-Hardness Tianren Liu 1 Vinod Vaikuntanathan 1 1 MIT

On Basing Private Information Retrieval on NP-Hardness Tianren Liu 1 Vinod Vaikuntanathan 1 1 MIT liutr@mit.edu , vinodv@csail.mit.edu Thirteenth IACR Theory of Cryptography Conference . . . . . . . . . . . . . . . . . . . . .

696 views • 56 slides
Private Information Retrieval Vesa Vaskelainen Helsinki University of Technology

Private Information Retrieval Vesa Vaskelainen Helsinki University of Technology

T-79.514 Special Course on Cryptology Private Information Retrieval Vesa Vaskelainen Helsinki University of Technology vvaskela@cc.hut.fi T-79.514 Special Course in Cryptology, Private Information Retrieval, Vesa Vaskelainen 1 Overview of

195 views • 18 slides
Extended Private Information Retrieval and its Application in Biometrics Authentications J.

Extended Private Information Retrieval and its Application in Biometrics Authentications J.

Extended Private Information Retrieval and its Application in Biometrics Authentications J. Bringer and H. Chabanne D. Pointcheval and Q. Tang Sagem S ecurit Ecole normale sup e, France erieure, France CANS 2007 December 2007

372 views • 12 slides
Information Retrieval Introducing Information Retrieval and Web Search

Information Retrieval Introducing Information Retrieval and Web Search

Introduction to Information Retrieval Introducing Information Retrieval and Web Search Information Retrieval Information Retrieval (IR) is finding material (usually documents) of

585 views • 57 slides
Information Retrieval CS-7961: Topics in Information retrieval (IR) is finding material (usually

Information Retrieval CS-7961: Topics in Information retrieval (IR) is finding material (usually

Information Retrieval CS-7961: Topics in Information retrieval (IR) is finding material (usually documents) of an unstructured nature Information Retrieval (usually text) that satisfies an information need Seminar from within large

276 views • 4 slides
Information Retrieval CS276: Information Retrieval and Web Search

Information Retrieval CS276: Information Retrieval and Web Search

Introduction to Information Retrieval Introduction to Information Retrieval CS276: Information Retrieval and Web Search Christopher Manning, Pandu Nayak, and Prabhakar Raghavan

1.49k views • 50 slides
Information Retrieval CS276: Information Retrieval and Web Search

Information Retrieval CS276: Information Retrieval and Web Search

Introduction to Information Retrieval Introduction to Information Retrieval CS276: Information Retrieval and Web Search Christopher Manning and Prabhakar Raghavan Lecture 10: Text

736 views • 57 slides
The Objects of this course Don't forget the Python vs . Java comparison document in the

The Objects of this course Don't forget the Python vs . Java comparison document in the

The Objects of this course Don't forget the Python vs . Java comparison document in the Resources folder on the Web. You really should consider having a study partner or putting together a study group for this course. There is no

475 views • 6 slides
Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object

Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object

4/13/2017 OOP Object Oriented Object 3 Programming Object 1 Object 2 Object 4 For : COP 3330. Object oriented Programming (Using C++) ht t p: / / www. com pgeom . com / ~pi yush/ t each/ 3330 Objects: State (fields), Behavior (member

632 views • 6 slides
Chapter 6 Problem Solving and Algorithm Design Hofstra University Overview of 9/19/06

Chapter 6 Problem Solving and Algorithm Design Hofstra University Overview of 9/19/06

Chapter 6 Problem Solving and Algorithm Design Hofstra University Overview of 9/19/06 Computer Science, CSC005 1 Layers of a Computing System Communication Application Operating System Programming Hardware Information Hofstra

545 views • 37 slides
Java: Learning to Program with Robots Chapter 11: Building Quality Software Chapter Objectives

Java: Learning to Program with Robots Chapter 11: Building Quality Software Chapter Objectives

Java: Learning to Program with Robots Chapter 11: Building Quality Software Chapter Objectives After studying this chapter, you should be able to: Identify characteristics of quality software, both from the users and programmers

500 views • 23 slides
Algebraic Security Analysis of Key Generation with Physical Unclonable Functions Matthias Hiller 1

Algebraic Security Analysis of Key Generation with Physical Unclonable Functions Matthias Hiller 1

Algebraic Security Analysis of Key Generation with Physical Unclonable Functions Matthias Hiller 1 , Michael Pehl 1 , Gerhard Kramer 2 and Georg Sigl 1,3 1 Chair of Security in Information Technology 2 Chair of Communications Engineering 2

963 views • 19 slides
Dawn Song dawnsong@cs.berkeley.edu 1 The Problem How to ensure the execution of a given

Dawn Song dawnsong@cs.berkeley.edu 1 The Problem How to ensure the execution of a given

Analysis and Defense against Privacy- Breaching Code Dawn Song dawnsong@cs.berkeley.edu 1 The Problem How to ensure the execution of a given program will not leak private information? Why should we care? Users download/execute

300 views • 8 slides
Lea eakag age-Res Resilie ilient nt Crypt ptogra graphy phy -- -- for r symmetric

Lea eakag age-Res Resilie ilient nt Crypt ptogra graphy phy -- -- for r symmetric

Sebastian Faust Aarhus University, Denmark Lea eakag age-Res Resilie ilient nt Crypt ptogra graphy phy -- -- for r symmetric mmetric pr prim imit itives ives 1 How to construct cryptodevices? cryptographic device very secure

857 views • 58 slides
Information flow safety in multiparty sessions Sara Capecchi, Ilaria Castellani and Mariangiola

Information flow safety in multiparty sessions Sara Capecchi, Ilaria Castellani and Mariangiola

Information flow safety in multiparty sessions Sara Capecchi, Ilaria Castellani and Mariangiola Dezani-Ciancaglini (TORINO University and INRIA Sophia Antipolis Mditerrane) Behavioural Types Workshop Lisbon, 19-21 April 2011 T

432 views • 30 slides

More recommend