2020 disclosure avoidance system das
play

2020 Disclosure Avoidance System (DAS) Presenter: John L. El?nge - PowerPoint PPT Presentation

Jan 10, 2023 •173 likes •640 views

2020 Disclosure Avoidance System (DAS) Presenter: John L. El?nge Assistant Director for Research and Methodology Presen?ng materials originally from: Simson L. Garfinkel Senior Computer Scien:st for Confiden:ality and Data Access John M. Abowd

  1. 2020 Disclosure Avoidance System (DAS) Presenter: John L. El?nge Assistant Director for Research and Methodology Presen?ng materials originally from: Simson L. Garfinkel Senior Computer Scien:st for Confiden:ality and Data Access John M. Abowd Chief Scien:st and Associate Director for Research and Methodology (ADRM) 1

  2. Acknowledgements and Disclaimer Almost all of the materials covered in the slides were originally prepared by Simson Garfinkel and John Abowd of the United States Census Bureau. The views expressed in this presenta:on are those of the authors and speaker, and do not necessarily represent the policies of the United States Census Bureau. 2

  3. General Background Essen?ally All Large-Scale Sta?s?cal Programs Require a Complex Balance of Mul?ple Dimensions of: - Quality - Risk (Including Disclosure Risk) - Cost 3

  4. Disclosure Avoidance System Purpose • The Disclosure Avoidance System (DAS) assures that the 2020 Census data products meet the legal requirements of Title 13, Sec:on 9 of the U.S. Code. • The DAS is designed to prevent improper disclosures of data about individuals and establishments in the 2020 census data products. • Stakeholders: All users of data from the 2020 Census. 4

  5. Disclosure Avoidance System Agenda Project purpose — Why do we need a new DAS? • CONTROLLED Noise injec:on and differen:al privacy — A brief tutorial • NOISE State of the project • Looking forward and conclusion • 5

  6. Project purpose: Why we need a new disclosure avoidance system 6

  7. We create sta:s:cs by collec:ng data, processing and publishing PUBLISHED RESPONDENT SUMMARY PROCESSING DATA DATA 7

  8. Database reconstruc:on is a mathema:cal process that reverses this process. PUBLISHED RESPONDENT SUMMARY PROCESSING DATA DATA 8

  9. Database reconstruc:on is a mathema:cal process that reverses this process. PUBLISHED RESPONDENT SUMMARY PROCESSING DATA DATA 9

  10. PUBLISHED DATA Consider a census block: Counts Age < 18 4 Age >= 18 6 Race 1 4 Race 2 4 Race 3 2 68

  11. PUBLISHED DATA RECONSTRUCTED DATA Counts Race 1 Race 2 Race 3 Age < 18 4 Age >= 18 6 R1 Race 1 4 Race 2 4 Race 3 2 69

  12. PUBLISHED DATA RECONSTRUCTED DATA Counts Race 1 Race 2 Race 3 Age < 18 4 Age >= 18 6 R1 Race 1 4 Race 2 4 R2 Race 3 2 70

  13. Race 1 Race 2 Race 3 71

  14. AGE + RACE AGE >=18 72

  15. RACE RACE RACE RACE RACE RACE RACE RACE RACE RACE + AGE + AGE + AGE + AGE + AGE + AGE + AGE + AGE + AGE + AGE 73

  16. RACE RACE RACE RACE RACE RACE RACE RACE RACE RACE + AGE + AGE + AGE + AGE + AGE + AGE + AGE + AGE + AGE + AGE TWENTY CONFIDENTIAL VALUES 74

  17. PUBLISHED DATA Counts Age < 18 4 Age >= 18 6 Race 1 4 Race 2 4 TWENTY CONFIDENTIAL VALUES Race 3 2 FIVE PUBLISHED STATISTICS 75

  18. 18

  19. “This is the official form for all the “It is quick people at this and easy, and address.” your answers are protected by law.” 19

  20. 2010 Census of Popula:on and Housing Total popula?on 308,745,538 Pieces of informa:on per person: 6 Total pieces of informa:on: 1,852,473,228 20

  21. 2010 Census Publica:on Schedule PL94-171 Redistric?ng Balance of Summary File 1 Summary File 2 2,771,998,263 2,806,899,669 2,093,683,376 21

  22. 2010 Census: Summary of Publica:ons (approximate counts) Publica?on Released counts (including zeros) PL94-171 Redistric:ng 2,771,998,263 Balance of Summary File 1 2,806,899,669 Summary File 2 2,093,683,376 Public-use micro data sample 30,874,554 Lower bound on published sta:s:cs 7,703,455,862 Sta:s:cs/person 25 22

  23. The threat of database reconstruc:on 2010 Census Sta?s?cs/person collected: 6 2010 Census Sta:s:cs/person published: 25 Lower bound on collected sta:s:cs: 1,852,473,228 (308,745,538 x 6) Lower bound on published sta:s:cs 7,703,455,862 (25 sta:s:cs per person) 23

  24. Two privacy mechanisms for the 2010 Census Aggrega?on 24

  25. Two privacy mechanisms for the 2010 Census Aggrega?on Swapping 25

  26. Noise injec=on and CONTROLLED NOISE differen=al privacy 26

  27. Database reconstruc:on and noise injec:on Counts Counts Age < 18 4 5 Age >= 18 6 5 NOISE Race 1 4 3 Race 2 4 5 Race 3 2 2 27

  28. The more noise, the more privacy — and the less accuracy Counts Counts Age < 18 4 5 Age >= 18 6 5 Lille Noise Race 1 4 3 Race 2 4 5 Race 3 2 2 28

  29. The more noise, the more privacy — and the less accuracy Counts Counts Counts 2 Age < 18 4 5 8 Age >= 18 6 5 BIG Lille Noise NOISE 8 Race 1 4 3 1 Race 2 4 5 1 Race 3 2 2 29

  30. POSSIBILITY 2 Counts The more noise, the more privacy Age < 18 8 — and the less accuracy Age >= 2 Counts 18 Counts Age < 18 4 2 Counts Age >= 18 6 Race 1 3 8 BIG Age < 18 3 Race 2 2 NOISE Age >= 18 7 Race 1 4 Race 3 5 8 Race 2 4 1 Race 1 5 Race 3 2 1 Race 2 2 POSSIBILITY 1 Race 3 3 30 POSSIBILITY 3

  31. Differen:al privacy is a tool for controlling the noise/accuracy trade-off 31

  32. In 2017, the Census Bureau announced that it would use differen:al privacy for the 2020 Census. • Differen:al privacy provides: • Provable bounds on the maximum privacy loss Less Noise • Algorithms that allow policy makers to manage the trade-off between accuracy and privacy loss. MORE NOISE Final privacy-loss budget determined by the Data Stewardship Execu:ve Policy Commilee (DSEP) with recommenda:ons from the Disclosure Review Board (DRB) 92

  33. State of the project 33

  34. The “Disclosure Avoidance System” is part of the Census data processing pipeline Red = Confiden:al Data Blue = Priva:zed Data Global Confiden,ality Protec,on Pre-specified tabular summaries: Process PL94-171, SF1, SF2 Disclosure Decennial Census Census Microdata Avoidance Response Unedited Edited Detail File File File File System Special tabula?ons and post-census accuracy ε research trade-offs Privacy-loss Budget, Accuracy Decisions 34

  35. Differen:al privacy has many advantages to swapping • Advantages : • Privacy guarantees are tunable and provable • Privacy guarantees are future-proof • Privacy guarantees are public and explainable Global Confiden:ality Protec:on Process • Protects against database reconstruc,on • Disadvantages : Disclosure Avoidance System • En:re country must be processed at once for best accuracy • Every use of private data must be tallied in the privacy-loss budget 35

  36. We will make the DAS public! • Open source system • Source code published on the Internet • Testable with data from 1940 Census 36

  37. Communica:ons Strategy Differen:al privacy is not widely known or • understood outside academia Most data users expect the same accuracy • regardless of the level of detail In 2000 and 2010 we used swapping with an • undisclosed swap rate – The Census Bureau did not quan:fy the error rate 37

  38. State of the DAS Project(s): Engineering & Science • ENGINEERING PROJECT – Building a Turnkey Batch-Oriented System Crea:ng a produc:on system that runs within the 2018 End-to-End Census Test and 2020 Census • produc:on environments – Resource intensive, but only when ac:vely in use – Based on Amazon Elas:c Map Reduce technology – Reads CEF from the Census Data Lake – Processes using DAS algorithms and a commercial op:mizer – Creates the Microdata Detail File – Saves results in the Census Data Lake 38

  39. State of the DAS Project(s): Engineering & Science • SCIENCE PROJECT — Improving the differen?al privacy algorithms We are steadily improving the accuracy/ • privacy trade-off Progress requires interac:ve access to • microdata from the 2010 Census, and By block con:nued access to high-performance compu:ng on demand. By block 39

  40. Looking forward 40

  41. DAS Highlights --- Good news! The current “top-down” algorithm handles the PL94-171 queries and generates micro-data that meet the • requirements to publish test files. We’re sharing tables with Subject Maker Experts (SMEs) and discussing possible improvements • We will soon integrate the High-Dimensional Matrix Mechanism (HDMM) , into our top-down algorithm, • which will improve accuracy on requested tabula:ons The Census Bureau is collec:ng “use cases” from our data users • 41

  42. FRN No=ce We want users of 2020 Census Data Products to tell us how they use our data! First FRN: 83 FR 84111 7/19/2018 -> 9/17/2018 Second FRN: 83 FR 50636 10/09/2018 -> 11/08/2018 42

  43. DAS Science Highlights --- Challenges! We have not yet addressed household queries or person-household joins , although we have in-progress • research for both – Householder queries, e.g. “how many households are headed by someone aged 20-30?” – Person-household join, e.g. “how many children are in households headed by someone aged 20-30?” Lack of scien:sts and engineers trained in differen:al privacy • Many open ques:ons in mathema:cal sta:s:cs and methodology • 43

Recommend

Disclosure Avoidance At-Scale William Sexton, Mathematical Statistician Center for Enterprise

Disclosure Avoidance At-Scale William Sexton, Mathematical Statistician Center for Enterprise

Disclosure Avoidance At-Scale William Sexton, Mathematical Statistician Center for Enterprise Dissemination - Disclosure Avoidance United States Census Bureau william.n.sexton@census.gov JSM, Denver, CO July, 2019 This presentation is

491 views • 23 slides
How Modern Disclosure Avoidance Methods Could Change the Way Statistical Agencies Operate John M.

How Modern Disclosure Avoidance Methods Could Change the Way Statistical Agencies Operate John M.

How Modern Disclosure Avoidance Methods Could Change the Way Statistical Agencies Operate John M. Abowd Chief Scientist and Associate Director for Research and Methodology U.S. Census Bureau Federal Economic Statistics Advisory Committee December

216 views • 20 slides
PBE PAS Collision Avoidance/Proximity Detection System Adrian Barratt PBE European Headquarters

PBE PAS Collision Avoidance/Proximity Detection System Adrian Barratt PBE European Headquarters

PBE is the leading single source provider of safety and productivity solutions, technology and engineering expertise that gives your company the competitive edge. PBE PAS Collision Avoidance/Proximity Detection System Adrian Barratt PBE

415 views • 29 slides
Pattern avoidance Definitions in rook monoids Rook Monoids Avoidance 1d Avoidance All 0/No 0

Pattern avoidance Definitions in rook monoids Rook Monoids Avoidance 1d Avoidance All 0/No 0

Pattern avoidance in rook monoids Lara Pudwell Pattern avoidance Definitions in rook monoids Rook Monoids Avoidance 1d Avoidance All 0/No 0 Dan Daly (Southeast Missouri State University) patterns Other patterns Lara Pudwell (Valparaiso

890 views • 32 slides
But I Dont Wanna go to School!: Strategies for Addressing School Avoidance Objectives

But I Dont Wanna go to School!: Strategies for Addressing School Avoidance Objectives

But I Dont Wanna go to School!: Strategies for Addressing School Avoidance Objectives Define school avoidance as a target problem Review of interventions for school avoidance Tips from the trenches SCH School Avoidance Group

557 views • 27 slides
Deadlocks Detection and Avoidance Prof. Sirer CS 4410 Cornell University System Model There

Deadlocks Detection and Avoidance Prof. Sirer CS 4410 Cornell University System Model There

Deadlocks Detection and Avoidance Prof. Sirer CS 4410 Cornell University System Model There are non-shared computer resources Maybe more than one instance Printers, Semaphores, Tape drives, CPU Processes need access to these

996 views • 62 slides
CS 557 Congestion Avoidance Congestion Avoidance and Control Jacobson and Karels, 1988 Spring

CS 557 Congestion Avoidance Congestion Avoidance and Control Jacobson and Karels, 1988 Spring

CS 557 Congestion Avoidance Congestion Avoidance and Control Jacobson and Karels, 1988 Spring 2013 The Story So Far . Some Essential Apps: DNS (naming) and NTP (time). Transport layer: End to End communication, Multiplexing,

929 views • 39 slides
Autonomous Sprinkler System with Object Avoidance Group 4: Yuri Shnirman Brian Tai Jared Frank

Autonomous Sprinkler System with Object Avoidance Group 4: Yuri Shnirman Brian Tai Jared Frank

Autonomous Sprinkler System with Object Avoidance Group 4: Yuri Shnirman Brian Tai Jared Frank Overview Recognition of the Need Functions and Features Preliminary Research Sensor and Actuator Selection Mechanical Design

461 views • 31 slides
Automatic Collision Avoidance System based on Geometric Approach applied to Multiple Aircraft

Automatic Collision Avoidance System based on Geometric Approach applied to Multiple Aircraft

6th International Conference on Research in Air Transportation May 26-30, 2014 - Istambul Technical University, Turkey Automatic Collision Avoidance System based on Geometric Approach applied to Multiple Aircraft Paulo Machado University of

719 views • 36 slides
Energy Forum: Demand Side Management &amp; DSE2 Avoidance DSE2 Avoidance May 6, 2010 Ohio

Energy Forum: Demand Side Management &amp; DSE2 Avoidance DSE2 Avoidance May 6, 2010 Ohio

Energy Forum: Demand Side Management &amp; DSE2 Avoidance DSE2 Avoidance May 6, 2010 Ohio Legislation S.B. 221 responds to concerns about rising electricity prices seen in states with expiring price caps S.B. 221 became effective in

645 views • 26 slides
Tax Fraud: W hen is Tax Avoidance a Crim inal Offence? By Craig Elliffe 2 July 2 0 1 0 Tax

Tax Fraud: W hen is Tax Avoidance a Crim inal Offence? By Craig Elliffe 2 July 2 0 1 0 Tax

Tax Fraud: W hen is Tax Avoidance a Crim inal Offence? By Craig Elliffe 2 July 2 0 1 0 Tax Avoidance and Crim inal Acts The difference between tax avoidance and tax evasion is the thickness of a prison wall. Denis Healey, former

313 views • 14 slides
2020 Decennial Census: Formal Privacy Implementation Update Philip Leclerc, Stephen Clark, and

2020 Decennial Census: Formal Privacy Implementation Update Philip Leclerc, Stephen Clark, and

2020 Decennial Census: Formal Privacy Implementation Update Philip Leclerc, Stephen Clark, and William Sexton Center for Disclosure Avoidance Research U.S. Census Bureau Presented at the DIMACS/Northeast Big Data Hub Workshop on Overcoming

581 views • 30 slides
DECLARATION OF CONFLICT OF INTEREST Disclosure: None Disclosure: None Independent study founded

DECLARATION OF CONFLICT OF INTEREST Disclosure: None Disclosure: None Independent study founded

DECLARATION OF CONFLICT OF INTEREST Disclosure: None Disclosure: None Independent study founded and performed within the Italian National Healthcare System. Approval by the relevant institutional ethical review boards, written informed

641 views • 21 slides
Deadlocks: Detection &amp; Avoidance (Chapter 6) CS 4410 Operating Systems The slides are the

Deadlocks: Detection &amp; Avoidance (Chapter 6) CS 4410 Operating Systems The slides are the

Deadlocks: Detection &amp; Avoidance (Chapter 6) CS 4410 Operating Systems The slides are the product of many rounds of teaching CS 4410 by Professors Agarwal, Bracy, George, Sirer, and Van Renesse. System Model There are non-shared computer

611 views • 35 slides
Deadlocks: Detection &amp; Avoidance (Chapter 32) CS 4410 Operating Systems The slides are the

Deadlocks: Detection &amp; Avoidance (Chapter 32) CS 4410 Operating Systems The slides are the

Deadlocks: Detection &amp; Avoidance (Chapter 32) CS 4410 Operating Systems The slides are the product of many rounds of teaching CS 4410 by Professors Agarwal, Bracy, George, Sirer, and Van Renesse. System Model Exclusive (one-at-a-time)

645 views • 35 slides
Hospital Avoidance Sharon Madden Oak Ward Manager and Hospital Avoidance Lead Denise Walker

Hospital Avoidance Sharon Madden Oak Ward Manager and Hospital Avoidance Lead Denise Walker

Hospital Avoidance Sharon Madden Oak Ward Manager and Hospital Avoidance Lead Denise Walker Accreditation Project Co-ordinator mpftnhs @mpftnhs Together we are making life better for our communities @mpftnhs www.mpft.nhs.uk Background

509 views • 21 slides
Avoidance Coupling Ohad N. Feldheim Institute of Mathematics and its Applications, UMN Jan 2015

Avoidance Coupling Ohad N. Feldheim Institute of Mathematics and its Applications, UMN Jan 2015

Avoidance Coupling Ohad N. Feldheim Institute of Mathematics and its Applications, UMN Jan 2015 Ohad N. Feldheim Avoidance Coupling Avoidance Coupling Let G = ( V , E ) be a finite graph (loops and multi-edges are OK). k agents, a 0 , . . . ,

1.38k views • 113 slides
European parliament TAX3 - Special committee on financial crimes, tax evasion and tax avoidance

European parliament TAX3 - Special committee on financial crimes, tax evasion and tax avoidance

European parliament TAX3 - Special committee on financial crimes, tax evasion and tax avoidance Hearing on VAT fraud - Brussels June 28 th 2018 Alma Olofsdottir Chair of Eurofisc Swedish tax agency The VAT system in the EU is vulnerable to

1.96k views • 11 slides
Theo Keijzer a few slides with examples Article 6.1: tax avoidance term is used

Theo Keijzer a few slides with examples Article 6.1: tax avoidance term is used

Theo Keijzer a few slides with examples Article 6.1: tax avoidance term is used Expl.statement: para 80: no explanation, only says in French it is vitement fiscal The term tax avoidance for politicians is very broad. What is

68 views • 5 slides
Proofs in the Pilots Seat Toward Verified Simultaneous Maneuvers in the Next-Generation

Proofs in the Pilots Seat Toward Verified Simultaneous Maneuvers in the Next-Generation

Proofs in the Pilots Seat Toward Verified Simultaneous Maneuvers in the Next-Generation Airborne Collision Avoidance System Brandon Bohrer (bbohrer@cs.cmu.edu) Who Came Here By Plane? Want to Get Home Alive? Background: Collision Avoidance

315 views • 13 slides
Seminar on Anti-avoidance Provisions relating to Income Tax Analysis of the provisions of

Seminar on Anti-avoidance Provisions relating to Income Tax Analysis of the provisions of

Seminar on Anti-avoidance Provisions relating to Income Tax Analysis of the provisions of General Anti Avoidance Rule (GAAR) Presentation by: July 15, 2017 Gautam Doshi 2 Methods of Reducing Tax Liability Tax Evasion Unlawful and

760 views • 47 slides
avoidance and everyday theories of tax Sally Ruane sruane@dmu.ac.uk Crisis of confidence in tax

avoidance and everyday theories of tax Sally Ruane sruane@dmu.ac.uk Crisis of confidence in tax

Public perceptions of tax: Tax avoidance and everyday theories of tax Sally Ruane sruane@dmu.ac.uk Crisis of confidence in tax arrangements Perceived inadequacy of tax revenues Perceptions of unfairness of system and

346 views • 16 slides
iTAD 2 4th Year Capstone Project Date:2020/03/06 Systems iTAD 3 Date:2020/03/06 iTAD -

iTAD 2 4th Year Capstone Project Date:2020/03/06 Systems iTAD 3 Date:2020/03/06 iTAD -

iTAD 2 4th Year Capstone Project Date:2020/03/06 Systems iTAD 3 Date:2020/03/06 iTAD - Mobility System Mobility focuses on the systems of iTAD responsible for movement, including: - Sensor systems (obstacle avoidance, bumpers, safety

356 views • 13 slides
July 2020 2020 TSXV - EWK 1 FORWARD LOOKING STATEMENT Certain statements in this disclosure may

July 2020 2020 TSXV - EWK 1 FORWARD LOOKING STATEMENT Certain statements in this disclosure may

EARTHWORKS INDUSTRIES INC. Environmental/Material Management Corporate Presentation July 2020 2020 TSXV - EWK 1 FORWARD LOOKING STATEMENT Certain statements in this disclosure may constitute forward - looking statements which involve

488 views • 16 slides

More recommend