private equilibrium computation for analyst privacy
play

Private Equilibrium Computation for Analyst Privacy ?? ?? ?? ?? - PowerPoint PPT Presentation

Jan 16, 2024 •34 likes •1.01k views

Private Equilibrium Computation for Analyst Privacy ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? Justin Hsu, Aaron Roth, 1 Jonathan Ullman 2 1 University of Pennsylvania 2 Harvard University June 2, 2013 A market survey scenario A market

  1. Private Equilibrium Computation for Analyst Privacy ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? Justin Hsu, Aaron Roth, 1 Jonathan Ullman 2 1 University of Pennsylvania 2 Harvard University June 2, 2013

  2. A market survey scenario

  3. A market survey scenario ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  4. A market survey scenario ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  5. A market survey scenario ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? Requirements • Data privacy: protect the consumer’s privacy

  6. A market survey scenario ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? Requirements • Data privacy: protect the consumer’s privacy

  7. A market survey scenario ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? Requirements • Data privacy: protect the consumer’s privacy • Analyst privacy [DNV’12]: protect the analyst’s privacy

  8. (Standard) Differential privacy [DMNS’06] [Dwork-McSherry-Nissim-Smith 06] D Bob Chris Xavier Donna Ernie Alice Algorithm ratio bounded Pr [r]

  9. More formally Definition (DMNS’06) Let M be a randomized mechanism from databases to range R , and let D , D ′ be databases differing in one record. M is ǫ -differentially private if for every r ∈ R , Pr[ M ( D ) = r ] ≤ e ǫ · Pr[ M ( D ′ ) = r ] . Useful properties • Very strong, worst-case privacy guarantee • Well-behaved under composition, post-processing

  10. Many-to-one-analyst privacy [DNV’12] Intuition • A single analyst can’t tell if other analysts change their queries

  11. Many-to-one-analyst privacy [DNV’12] Intuition • A single analyst can’t tell if other analysts change their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  12. Many-to-one-analyst privacy [DNV’12] Intuition • A single analyst can’t tell if other analysts change their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  13. Many-to-one-analyst privacy [DNV’12] Intuition • A single analyst can’t tell if other analysts change their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  14. Many-to-one-analyst privacy [DNV’12] Intuition • A single analyst can’t tell if other analysts change their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  15. One-query-to-many-analyst privacy (Today) Intuition • All but one analyst (possibly colluding) can’t tell if last analyst changes one of their queries

  16. One-query-to-many-analyst privacy (Today) Intuition • All but one analyst (possibly colluding) can’t tell if last analyst changes one of their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  17. One-query-to-many-analyst privacy (Today) Intuition • All but one analyst (possibly colluding) can’t tell if last analyst changes one of their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  18. One-query-to-many-analyst privacy (Today) Intuition • All but one analyst (possibly colluding) can’t tell if last analyst changes one of their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  19. One-query-to-many-analyst privacy (Today) Intuition • All but one analyst (possibly colluding) can’t tell if last analyst changes one of their queries ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ?? ??

  20. The query release problem Basic problem • Analysts want accurate answers to a large set Q of counting (linear) queries

  21. The query release problem Basic problem • Analysts want accurate answers to a large set Q of counting (linear) queries “What fraction of records satisfy P ?”

  22. The query release problem Basic problem • Analysts want accurate answers to a large set Q of counting (linear) queries “What fraction of records satisfy P ?” • Privately construct synthetic database to answer queries

  23. The query release problem Basic problem • Analysts want accurate answers to a large set Q of counting (linear) queries “What fraction of records satisfy P ?” • Privately construct synthetic database to answer queries Prior work • Long line of work [BLR’08, RR’09, HR’10,. . . ], data privacy

  24. The query release problem Basic problem • Analysts want accurate answers to a large set Q of counting (linear) queries “What fraction of records satisfy P ?” • Privately construct synthetic database to answer queries Prior work • Long line of work [BLR’08, RR’09, HR’10,. . . ], data privacy • Stateful mechanisms: not analyst private

  25. Accuracy Theorem Suppose the analysts ask queries Q , and let the database have n records from X . There exists an ǫ analyst and data private mechanism which achieves error α on all queries in Q , where � polylog ( |X| , |Q| ) � α = O ǫ √ n .

  26. Plan for rest of the talk Outline • Interpretation of query release as a game • Privately solving the query release game • Analyst private query release

  27. The query release game

  28. The query release game Record r

  29. The query release game Record r Query q

  30. The query release game Record r Query q Loss q ( r ) − q ( D ) ( D is true database)

  31. The query release game Record r Query q Loss q ( r ) − q ( D ) Loss − ( q ( r ) − q ( D )) ( D is true database)

  32. From strategies to query release Database as a distribution • Think of true database D as a distribution over records • ˆ D is data player’s distribution over records

  33. From strategies to query release Database as a distribution • Think of true database D as a distribution over records • ˆ D is data player’s distribution over records Mixed strategy

  34. From strategies to query release Database as a distribution • Think of true database D as a distribution over records • ˆ D is data player’s distribution over records Mixed strategy • Versus a counting query q , data player’s expected loss: D [ q ( r ) − q ( D )] = q ( ˆ D ) − q ( D ) E r ∼ ˆ

  35. From strategies to query release Database as a distribution • Think of true database D as a distribution over records • ˆ D is data player’s distribution over records Mixed strategy • Versus a counting query q , data player’s expected loss: D [ q ( r ) − q ( D )] = q ( ˆ D ) − q ( D ) E r ∼ ˆ • D is mixed strategy with zero loss Equilibrium strategy

  36. From strategies to query release What if small expected loss? • Suppose data player’s expected loss less than α for all queries

  37. From strategies to query release α -approximate equilibrium What if small expected loss? • Suppose data player’s expected loss less than α for all queries

  38. From strategies to query release α -approximate equilibrium What if small expected loss? • Suppose data player’s expected loss less than α for all queries • Data distribution answers all queries with error at most α

  39. From strategies to query release α -approximate equilibrium What if small expected loss? • Suppose data player’s expected loss less than α for all queries • Data distribution answers all queries with error at most α Query release!

  40. From strategies to query release α -approximate equilibrium What if small expected loss? • Suppose data player’s expected loss less than α for all queries • Data distribution answers all queries with error at most α Synthetic Query release! database

  41. From strategies to query release α -approximate equilibrium What if small expected loss? • Suppose data player’s expected loss less than α for all queries • Data distribution answers all queries with error at most α Synthetic Query release! database • But how to compute this?

  42. Computing the equilibrium privately Known approach: repeated game • Players maintain distributions over actions

  43. Computing the equilibrium privately Known approach: repeated game • Players maintain distributions over actions • Loop: • Sample and play action

  44. Computing the equilibrium privately Known approach: repeated game • Players maintain distributions over actions • Loop: • Sample and play action • Receive loss for all actions

  45. Computing the equilibrium privately Known approach: repeated game • Players maintain distributions over actions • Loop: • Sample and play action • Receive loss for all actions • Update distribution: increase probability of better actions

  46. Computing the equilibrium privately Known approach: repeated game • Players maintain distributions over actions • Loop: • Sample and play action • Receive loss for all actions • Update distribution: increase probability of better actions Multiplicative weights (MW)

  47. Computing equilibrium strategy privately Query q Record r Loss q ( r ) − q ( D ) Loss − ( q ( r ) − q ( D ))

  48. Computing equilibrium strategy privately MW MW Loss q ( r ) − q ( D ) Loss − ( q ( r ) − q ( D ))

  49. Computing equilibrium strategy privately Query q Record r MW MW

  50. Computing equilibrium strategy privately Idea: use distribution over plays [FS’96] • Both players use multiplicative weights • MW distributions converge to approximate equilibrium

  51. Computing equilibrium strategy privately Idea: use distribution over plays [FS’96] • Both players use multiplicative weights Not private • MW distributions converge to approximate equilibrium

Recommend

Private Computation with Individual and Joint Privacy Anoosheh Heidarzadeh (Texas A&M

Private Computation with Individual and Joint Privacy Anoosheh Heidarzadeh (Texas A&M

Private Computation with Individual and Joint Privacy Anoosheh Heidarzadeh (Texas A&M University) Joint with: Alex Sprintson (Texas A&M University) ISIT 2020 This material is based upon work supported by the National Science Foundation

615 views • 26 slides
Approximate Nash Equilibrium Computation Paul W. Goldberg 1 1 Department of Computer Science

Approximate Nash Equilibrium Computation Paul W. Goldberg 1 1 Department of Computer Science

Approximate Nash Equilibrium Computation Paul W. Goldberg 1 1 Department of Computer Science University of Oxford, U. K. Invited talk, WINE conference 12th Dec. 2015 Goldberg Approximate Nash Equilibrium Computation The computational challenge

812 views • 56 slides
Equilibrium Computation in Normal Form Games Costis Daskalakis & Kevin Leyton-Brown Part 1(a)

Equilibrium Computation in Normal Form Games Costis Daskalakis & Kevin Leyton-Brown Part 1(a)

Tutorial Overview Game Theory Refresher Solution Concepts Computational Formulations Equilibrium Computation in Normal Form Games Costis Daskalakis & Kevin Leyton-Brown Part 1(a) Equilibrium Computation in Normal Form Games Costis

2.33k views • 190 slides
INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE,

INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE,

INTEGRAL PRIVACY COMPLIANT STATISTICS COMPUTATION NAVODA SENAVIRATHNE UNIVERSITY OF SKVDE, SWEDEN VICENTORRA UNIVERSITY OF MAYNOOTH, IRELAND CONTENT Privacy Preserving Data Analysis Integral Privacy Differential privacy

814 views • 29 slides
Fisher information and thermodynamic cost of near-equilibrium computation (collaborators:

Fisher information and thermodynamic cost of near-equilibrium computation (collaborators:

Fisher information and thermodynamic cost of near-equilibrium computation (collaborators: Emanuele Crosato, Joseph Lizier Ramil Nigmatullin, Richard Spinney) Prof. Mikhail Prokopenko Centre for Complex Systems Faculty of Engineering

543 views • 23 slides
Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi

Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi

Privacy-Preserving Search of Similar Patients in Genomic Data Gilad Asharov Shai Halevi Yehuda Lindell Tal Rabin Secure Computation Computation on private inputs without revealing anything but the output Applications :

299 views • 25 slides
Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh

Privacy-Preserving Computation with Trusted Computing via Scramble-then-Compute Hung Dang, Anh Dinh, Ee-Chien Chang, Beng Chin Ooi School of Computing National University of Singapore PETS 2017 Privacy-Preserving Computation with Trusted

477 views • 34 slides
Mailfence Reclaim your email privacy A SECURE AND PRIVATE EMAIL Mohammad Salman Nadeem

Mailfence Reclaim your email privacy A SECURE AND PRIVATE EMAIL Mohammad Salman Nadeem

Mailfence Reclaim your email privacy A SECURE AND PRIVATE EMAIL Mohammad Salman Nadeem Information security analyst Mailfence 31 March 2017 Why did email encryption never take off? Why email data needs to be protected? Email

362 views • 10 slides
Crowdsourcing and HCI 2: Privacy and Latency Crowdsourcing and Human Computation Instructor:

Crowdsourcing and HCI 2: Privacy and Latency Crowdsourcing and Human Computation Instructor:

Crowdsourcing and HCI 2: Privacy and Latency Crowdsourcing and Human Computation Instructor: Chris Callison-Burch Website: crowdsourcing-class.org Privacy Would you let crowd workers read your email? Problems with email as a task management

786 views • 59 slides
On the Security and Privacy of delegated computation Anca Nitulescu DI ENS - Cascade Outline

On the Security and Privacy of delegated computation Anca Nitulescu DI ENS - Cascade Outline

On the Security and Privacy of delegated computation Anca Nitulescu DI ENS - Cascade Outline Directions SNARKs Motivation Introduction Quantum SNARKs Arguments of Difficulties Knowledge Cloud Applications Computation SNARK Open

746 views • 61 slides
Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li

CS573 Data Privacy and Security Secure Multiparty Computation Introduction to Privacy Preserving Distributed Data Mining Li Xiong Slides credit: Chris Clifton, Purdue University; Murat Kantarcioglu, UT Dallas Outline Overview Data

901 views • 42 slides
Privacy Preservation through Secure Multi-party Computation: Towards Implementation Paolo

Privacy Preservation through Secure Multi-party Computation: Towards Implementation Paolo

Privacy Preservation through Secure Multi-party Computation: Towards Implementation Paolo Palmieri , Olivier Pereira UCL Crypto Group Universit e Catholique de Louvain (Belgium) Provable Privacy Workshop July 2012 UCL Crypto Group

660 views • 34 slides
Access and Privacy Update Renee Barrette, Director of Policy Lauren Silver, Policy Analyst

Access and Privacy Update Renee Barrette, Director of Policy Lauren Silver, Policy Analyst

Access and Privacy Update Renee Barrette, Director of Policy Lauren Silver, Policy Analyst Information and Privacy Commissioner of Ontario AMCTO Zone 4 Spring Meeting May 2, 2017 Our Office The Information and Privacy Commissioner (IPC)

485 views • 46 slides
Satisfy Legal Definitions of Privacy? The Case of FERPA and Differential Privacy CS

Satisfy Legal Definitions of Privacy? The Case of FERPA and Differential Privacy CS

Do Computer Science Definitions of Privacy Satisfy Legal Definitions of Privacy? The Case of FERPA and Differential Privacy CS LAW Kobbi Nissim Ben-Gurion University Center for Research on Computation and Society

865 views • 62 slides
Participant Privacy Cannot be Ensured Survey Results are Not Safe and Private "What two

Participant Privacy Cannot be Ensured Survey Results are Not Safe and Private "What two

Participant Privacy Cannot be Ensured Survey Results are Not Safe and Private "What two people know is not private.". Any ranked Centralized structures store user profile data on private officer with a centralized server architecture

330 views • 18 slides
An Approximate Subgame-Perfect Equilibrium Computation Technique for Repeated Games Andriy Burkov

An Approximate Subgame-Perfect Equilibrium Computation Technique for Repeated Games Andriy Burkov

An Approximate Subgame-Perfect Equilibrium Computation Technique for Repeated Games Andriy Burkov Universit e Laval, Canada July 15, 2010 Andriy Burkov, Universit e Laval, Canada An Approximate Subgame-Perfect Equilibrium Computation

894 views • 60 slides
On the Privacy of Private Browsing Kiavash Satvat, Ma8

On the Privacy of Private Browsing Kiavash Satvat, Ma8

On the Privacy of Private Browsing Kiavash Satvat, Ma8 Forshaw, Feng Hao, Ehsan Toreini Newcastle University DPM13 IntroducGon 2005, Safari first

996 views • 19 slides
Privacy index metrics in digital communication Showing Caliopen's users how public their private

Privacy index metrics in digital communication Showing Caliopen's users how public their private

Privacy index metrics in digital communication Showing Caliopen's users how public their private messages are. Laurent Chemla, project owner Stanislas SABATIER, backend developer Caliopen handles all of your private exchanges Private

933 views • 9 slides
CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt //

CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt //

CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt // http://yxiao.info i i f Outline Outline What is Location Privacy Basic Techniques Private Information Retrieval Probabilistic

415 views • 24 slides
Modeling and Computation of Phase Equilibrium Using Interval Methods Mark A. Stadtherr

Modeling and Computation of Phase Equilibrium Using Interval Methods Mark A. Stadtherr

Modeling and Computation of Phase Equilibrium Using Interval Methods Mark A. Stadtherr Department of Chemical and Biomolecular Engineering, University of Notre Dame Notre Dame, IN, USA 2nd Scandinavian Workshop on Interval Methods And Their

506 views • 46 slides
The Concept of Privacy Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0

The Concept of Privacy Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0

The Concept of Privacy Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Early History of Privacy Aristotle: public sphere of politics ( polis ) vs. private/domestic sphere of the family ( oikos) Long practiced

583 views • 8 slides
Prio: Private, Robust, and Efficient Computation of Aggregate Statistics Henry Corrigan-Gibbs and

Prio: Private, Robust, and Efficient Computation of Aggregate Statistics Henry Corrigan-Gibbs and

Prio: Private, Robust, and Efficient Computation of Aggregate Statistics Henry Corrigan-Gibbs and Dan Boneh Stanford University NSDI 2017 Today: Non-private aggregation StressTracker Blood pressure Twitter usage Today: Non-private

1.92k views • 178 slides
Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No

Preserving the Privacy of Sensitive Relationships in Graph Data Motivation Valuable Data! No privacy breaches! Public Data Anonymization Data representation? Privacy breach? Value of data? Data publisher Privacy Analyst Work by: Elena

80 views • 3 slides
Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Privacy Legislation - History 1950 Art. 8 ECHR: Everyone has the right to respect for his private and family

413 views • 4 slides

More recommend