Calibrating Noise to Sensitivity in Private Data Analysis

Cynthia Dwork; Frank McSherry; Kobbi Nissim; Adam Smith

doi:10.29012/jpc.v7i3.405

PDF

Published: May 30, 2017

DOI: https://doi.org/10.29012/jpc.v7i3.405

Keywords:

private data analysis, statistical data privacy, differential privacy, noise addition

Cynthia Dwork

Harvard University

Frank McSherry

Microsoft Research SVC

Kobbi Nissim

Georgetown University; This work was done while the author was at the Department of Computer Science, Ben-Gurion University

https://orcid.org/0000-0002-6632-8645

Adam Smith

Penn State University

Abstract

We continue a line of research initiated in Dinur and Nissim (2003); Dwork and Nissim (2004); and Blum et al. (2005) on privacy-preserving statistical databases.

Consider a trusted server that holds a database of sensitive information. Given a query function $f$ mapping databases to reals, the so-called {\em true answer} is the result of applying $f$ to the database. To protect privacy, the true answer is perturbed by the addition of random noise generated according to a carefully chosen distribution, and this response, the true answer plus noise, is returned to the user.

Previous work focused on the case of noisy sums, in which $f = \sum_i g(x_i)$, where $x_i$ denotes the $i$th row of the database and $g$ maps database rows to $[0,1]$. We extend the study to general functions $f$, proving that privacy can be preserved by calibrating the standard deviation of the noise according to the {\em sensitivity} of the function $f$. Roughly speaking, this is the amount that any single argument to $f$ can change its output. The new analysis shows that for several particular applications substantially less noise is needed than was previously understood to be the case.

The first step is a very clean definition of privacy---now known as differential privacy---and measure of its loss. We also provide a set of tools for designing and combining differentially private algorithms, permitting the construction of complex differentially private analytical tools from simple differentially private primitives.

Finally, we obtain separation results showing the increased value of interactive statistical release mechanisms over non-interactive ones.

How to Cite

Dwork, Cynthia, Frank McSherry, Kobbi Nissim, and Adam Smith. 2017. “Calibrating Noise to Sensitivity in Private Data Analysis”. Journal of Privacy and Confidentiality 7 (3):17-51. https://doi.org/10.29012/jpc.v7i3.405.

Issue

Vol. 7 No. 3 (2016)

Section

Articles

Copyright is retained by the authors. By submitting to this journal, the author(s) license the article under the Creative Commons License – Attribution-NonCommercial-NoDerivatives 4.0 International (CC BY-NC-ND 4.0), unless choosing a more lenient license (for instance, public domain). For situations not allowed under CC BY-NC-ND, short sections of text, not to exceed two paragraphs, may be quoted without explicit permission provided that full credit, including © notice, is given to the source.

Authors of articles published by the journal grant the journal the right to store the articles in its databases for an unlimited period of time and to distribute and reproduce the articles electronically.

Funding data

National Science Foundation
Grant numbers IIS-1447700
Alfred P. Sloan Foundation
Google

Most read articles by the same author(s)

Cynthia Dwork, Reminiscences , Journal of Privacy and Confidentiality: Vol. 8 No. 1 (2018): Commemorating Stephen Fienberg
Uri Stemmer, Kobbi Nissim, Concentration Bounds for High Sensitivity Functions Through Differential Privacy , Journal of Privacy and Confidentiality: Vol. 9 No. 1 (2019): Special Issue: Theory and Practice of Differential Privacy (TPDP2016)
Cynthia Dwork, Weijie Su, Li Zhang, Differentially private false discovery rate control , Journal of Privacy and Confidentiality: Vol. 11 No. 2 (2021)
Aleksandra B. Slavkovic, Adam Smith, Special Issue on Statistical and Learning-Theoretic Challenges in Data Privacy , Journal of Privacy and Confidentiality: Vol. 4 No. 1 (2012)
Adam Smith, Reminiscences about Steve Fienberg , Journal of Privacy and Confidentiality: Vol. 8 No. 1 (2018): Commemorating Stephen Fienberg
John M. Abowd, Cynthia Dwork, Alan F. Karr, Kobbi Nissim, Jerome Reiter, Aleksandra Slavković, Lars Vilhuber, Launching the Society for Privacy and Confidentiality Research to Own the Journal of Privacy and Confidentiality , Journal of Privacy and Confidentiality: Vol. 14 No. 3 (2024): Regular issue, including articles from the Noisy Measurements Workshop 2022
Kobbi Nissim, Chao Yan, The Sample Complexity of Distribution-Free Parity Learning in the Robust Shuffle Model , Journal of Privacy and Confidentiality: Vol. 12 No. 2 (2022): Regular issue, including articles based on presentations at TPDP 2021

<< < 1 2

Make a Submission

about2

The Journal of Privacy and Confidentiality is an open-access multi-disciplinary journal whose purpose is to facilitate the coalescence of research methodologies and activities in the areas of privacy, confidentiality, and disclosure limitation. The JPC seeks to publish a wide range of research and review papers, not only from academia, but also from government (especially official statistical agencies) and industry, and to serve as a forum for exchange of views, discussion, and news. For more information, see the About the Journal page.