Distributed Differential Privacy via Shuffling

Cheu, Albert; Smith, Adam; Ullman, Jonathan; Zeber, David; Zhilyaev, Maxim

doi:10.1007/978-3-030-17653-2_13

Cited by 221 publications

(280 citation statements)

References 31 publications

(77 reference statements)

Supporting

Mentioning

262

Contrasting

Order By: Relevance

“…We prove our lower bound for sequentially interactive (ε, 0)-locally private protocols. As previous work [9,12] has established that (ε, 0)-and (ε, δ)-local privacy are approximately equivalent for reasonable parameter ranges, our lower bound also holds for sequentially interactive (ε, δ)-locally private protocols. For an extended discussion of this equivalence, see Section 5.1.2.…”

Section: A Lower Bound For Sequentially Interactive Mechanismssupporting

confidence: 70%

See 1 more Smart Citation

The Role of Interactivity in Local Differential Privacy

Joseph

Mao

Neel

et al. 2019

2019 IEEE 60th Annual Symposium on Foundations of Computer Science (FOCS)

View full text Add to dashboard Cite

We study the power of interactivity in local differential privacy. First, we focus on the difference between fully interactive and sequentially interactive protocols. Sequentially interactive protocols may query users adaptively in sequence, but they cannot return to previously queried users. The vast majority of existing lower bounds for local differential privacy apply only to sequentially interactive protocols, and before this paper it was not known whether fully interactive protocols were more powerful.We resolve this question. First, we classify locally private protocols by their compositionality, the multiplicative factor k ≥ 1 by which the sum of a protocol's single-round privacy parameters exceeds its overall privacy guarantee. We then show how to efficiently transform any fully interactive k-compositional protocol into an equivalent sequentially interactive protocol with an O(k) blowup in sample complexity. Next, we show that our reduction is tight by exhibiting a family of problems such that for any k, there is a fully interactive k-compositional protocol which solves the problem, while no sequentially interactive protocol can solve the problem without at least anΩ(k) factor more examples.We then turn our attention to hypothesis testing problems. We show that for a large class of compound hypothesis testing problems -which include all simple hypothesis testing problems as a special case -a simple noninteractive test is optimal among the class of all (possibly fully interactive) tests.

show abstract

Section: A Lower Bound For Sequentially Interactive Mechanismssupporting

confidence: 70%

“…We now show that the folklore ε-private non-interactive test is optimal amongst all (ε, δ)-private fully interactive tests. First, combining (slightly modified versions of) Theorem 6.1 from Bun et al [9] and Theorem A.1 in Cheu et al [12], we get the following result 5 for j = 0, 1 do…”

Section: A Lower Bound For Arbitrarily Adaptive (ε δ)-Locally Privatmentioning

confidence: 86%

The Role of Interactivity in Local Differential Privacy

Joseph

Mao

Neel

et al. 2019

2019 IEEE 60th Annual Symposium on Foundations of Computer Science (FOCS)

View full text Add to dashboard Cite

show abstract

“…Together with our upper bound, this result shows that the single-message shuffle model sits strictly between the curator and the local models of differential privacy. This had been shown by Cheu et al [11] in a less direct way by showing that (i) the private selection problem can be solved more accurately in the curator model than the shuffle model, and (ii) the private summation problem can be solved more accurately in the shuffle model than in the local model. For (i) they rely on a generic translation from the shuffle to the local model and known lower bounds for private selection in the local model, while our lower bound operates directly in the shuffle model.…”

Section: A Lower Bound For Private Summationmentioning

confidence: 99%

“…To see the benefit of creating a privacy blanket, consider the recent shuffle model summation protocol by Cheu et al [11]. This protocol also applies randomized rounding.…”

Section: A Protocol For Private Summationmentioning

confidence: 99%

The Privacy Blanket of the Shuffle Model

Balle

Bell

Gascón

et al. 2019

Lecture Notes in Computer Science

168

227

View full text Add to dashboard Cite

This work studies differential privacy in the context of the recently proposed shuffle model. Unlike in the local model, where the server collecting privatized data from users can track back an input to a specific user, in the shuffle model users submit their privatized inputs to a server anonymously. This setup yields a trust model which sits in between the classical curator and local models for differential privacy. The shuffle model is the core idea in the Encode, Shuffle, Analyze (ESA) model introduced by Bittau et al. (SOPS 2017). Recent work by Cheu et al. (EUROCRYPT 2019) analyzes the differential privacy properties of the shuffle model and shows that in some cases shuffled protocols provide strictly better accuracy than local protocols. Additionally, Erlingsson et al. (SODA 2019) provide a privacy amplification bound quantifying the level of curator differential privacy achieved by the shuffle model in terms of the local differential privacy of the randomizer used by each user.In this context, we make three contributions. First, we provide an optimal single message protocol for summation of real numbers in the shuffle model. Our protocol is very simple and has better accuracy and communication than the protocols for this same problem proposed by Cheu et al. Optimality of this protocol follows from our second contribution, a new lower bound for the accuracy of private protocols for summation of real numbers in the shuffle model. The third contribution is a new amplification bound for analyzing the privacy of protocols in the shuffle model in terms of the privacy provided by the corresponding local randomizer. Our amplification bound generalizes the results by Erlingsson et al. to a wider range of parameters, and provides a whole family of methods to analyze privacy amplification in the shuffle model. * The Alan Turing Institute. jbell@posteo.net.

show abstract

“…Finally, for simplicity we state all of our results for pure ε-local privacy. However, for reasonable values of δ (roughly δ = o ε n log(n) ) they easily extend to (ε, δ)-local privacy using the approximateto-pure transformation described by Bun et al [9] and Cheu et al [10].…”

Section: Our Contributionsmentioning

confidence: 99%

Exponential Separations in Local Differential Privacy

Joseph¹,

Mao²,

Roth³

2020

Proceedings of the Fourteenth Annual ACM-SIAM Symposium on Discrete Algorithms

View full text Add to dashboard Cite

We prove a general connection between the communication complexity of two-player games and the sample complexity of their multi-player locally private analogues. We use this connection to prove sample complexity lower bounds for locally differentially private protocols as straightforward corollaries of results from communication complexity. In particular, we 1) use a communication lower bound for the hidden layers problem to prove an exponential sample complexity separation between sequentially and fully interactive locally private protocols, and 2) use a communication lower bound for the pointer chasing problem to prove an exponential sample complexity separation between k-round and (k + 1)-round sequentially interactive locally private protocols, for every k.

show abstract

Distributed Differential Privacy via Shuffling

Cited by 221 publications

References 31 publications

The Role of Interactivity in Local Differential Privacy

The Role of Interactivity in Local Differential Privacy

The Privacy Blanket of the Shuffle Model

Exponential Separations in Local Differential Privacy

Contact Info

Product

Resources

About