On the Meaning and Limits of Empirical Differential Privacy

Main Article Content

Anne-Sophie Charest
Yiwei Hou

Abstract

Empirical differential privacy (EDP) has been proposed as an alternative to differential privacy (DP), with the important advantages that the procedure can be applied to any bayesian model and requires less technical work from the part of the user. While EDP has been shown to be easy to implement, little is known of its theoretical underpinnings. This paper proposes a careful investigation of the meaning and limits of EDP as a measure of privacy. We show that EDP can not simply be considered an empirical version of DP, and that it could instead be thought of as a sensitivity measure on posterior distributions. We also show that EDP is not well-defined, in that its value depends crucially on the choice of discretization used in the procedure, and that it can be very computationnaly intensive to apply in practice. We illustrate these limitations with two simple conjugate bayesian model: the beta-binomial model and the normal-normal model.

Article Details

How to Cite
Charest, Anne-Sophie, and Yiwei Hou. 2017. “On the Meaning and Limits of Empirical Differential Privacy”. Journal of Privacy and Confidentiality 7 (3):53-66. https://doi.org/10.29012/jpc.v7i3.406.
Section
Articles

Funding data