Lessons Learned: Surveying the Practicality of Differential Privacy in the Industry

Garrido, Gonzalo Munilla; Liu, Xiaoyuan; Matthes, Floria; Song, Dawn

doi:10.56553/popets-2023-0045

Cited by 7 publications

(6 citation statements)

References 62 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Concurrent work by Munilla Garrido et al [27] investigates the 'academic-industrial DP utilization gap' through interviews with data analysts and data stewards in major companies that have not yet deployed DP. Their findings about the barriers to adoption of DP, as well as the promises of using DP, support the findings in this paper.…”

Section: Defining Users Of Privacy Toolsmentioning

confidence: 99%

Don't Look at the Data! How Differential Privacy Reconfigures the Practices of Data Science

Sarathy,

Song,

Haque

et al. 2023

Preprint

View full text Add to dashboard Cite

Across academia, government, and industry, data stewards are facing increasing pressure to make datasets more openly accessible for researchers while also protecting the privacy of data subjects. Differential privacy (DP) is one promising way to offer privacy along with open access, but further inquiry is needed into the tensions between DP and data science. In this study, we conduct interviews with 19 data practitioners who are non-experts in DP as they use a DP data analysis prototype to release privacy-preserving statistics about sensitive data, in order to understand perceptions, challenges, and opportunities around using DP. We find that while DP is promising for providing wider access to sensitive datasets, it also introduces challenges into every stage of the data science workflow. We identify ethics and governance questions that arise when socializing data scientists around new privacy constraints and offer suggestions to better integrate DP and data science. CCS CONCEPTS• Security and privacy → Social aspects of security and privacy; Usability in security and privacy; Privacy-preserving protocols.

show abstract

Section: Defining Users Of Privacy Toolsmentioning

confidence: 99%

Don't Look at the Data! How Differential Privacy Reconfigures the Practices of Data Science

Sarathy,

Song,

Haque

et al. 2023

Preprint

View full text Add to dashboard Cite

show abstract

“…By integrating differential privacy techniques into the data generation process, synthetic datasets can be created with privacy assurances (10; 11; 13; 21). However, it's important to note that although differential privacy provides statistical privacy guarantees, the addition of significant noise can reduce the usefulness of the data for ML development, especially when the original data itself may be inherently noisy (22). Moreover, the absence of a standardized approach or metric for implementing differential privacy in ML poses challenges in terms of implementation, evaluation, and practical deployment.…”

Section: Related Workmentioning

confidence: 99%

Geometrically-aggregated training samples: Leveraging summary statistics to enable healthcare data democratization

Yang,

Thakur,

Soltan

et al. 2023

Preprint

View full text Add to dashboard Cite

Healthcare data is highly sensitive and confidential, with strict regulations and laws to protect patient privacy and security. However, these regulations impede the access of healthcare data to a wider AI research community. As a result, AI healthcare research is often dominated by organisations with access to larger datasets or limited to silo-based development, where models are trained and evaluated on a limited population. Taking inspiration from the non-sensitive nature of the summary statistics (mean, variance, etc.) of healthcare data, this paper proposes geometrically-aggregated training samples (GATS) where each training sample is a convex combination of multiple patients' characteristics. Thus, mappings from patients to any constructed sample are highly convoluted, preserving patient privacy. We demonstrate that these "summary training units" provide effective training on different tabular and time-series datasets (CURIAL, UCI Adult, and eICU), and indeed behave as a summary of the original training datasets. This approach takes important steps towards data accessibility and democratization.

show abstract

“…Because virtual reality devices generate a stream of data relating to the motion of a user, and people are known to subconsciously reveal information about themselves via their motion, it is natural to question the extent to which personal attributes are inferable in VR. According to popular literature reviews of the field [10,14,16,19,23,24,34,39,42,50,61,70], the vast majority of existing VR privacy research has focused on passive observation.…”

Section: Related Workmentioning

confidence: 99%

“…It has long been understood that individuals exhibit distinct biomechanical motion patterns that can be used to identify them or infer their personal attributes [13,27,31,33,48,53], which researchers have shown can be exploited to identify and profile users in VR [23,35,41,44]. While existing work has largely focused on passive observation of VR users, the success of games specifically designed to harvest user data [25] on conventional social platforms motivates us to investigate similar active attacks in VR.…”

Section: Introductionmentioning

confidence: 99%

Exploring the Privacy Risks of Adversarial VR Game Design

Nair

Garrido²,

Song

et al. 2023

PoPETs

View full text Add to dashboard Cite

Fifty study participants playtested an innocent-looking "escape room" game in virtual reality (VR). Within just a few minutes, an adversarial program had accurately inferred over 25 of their personal data attributes, from anthropometrics like height and wingspan to demographics like age and gender. As notoriously data-hungry companies become increasingly involved in VR development, this experimental scenario may soon represent a typical VR user experience. Since the Cambridge Analytica scandal of 2018, adversarially-designed gamified elements have been known to constitute a significant privacy threat in conventional social platforms. In this work, we present a case study of how metaverse environments can similarly be adversarially constructed to covertly infer dozens of personal data attributes from seemingly-anonymous users. While existing VR privacy research largely focuses on passive observation, we argue that because individuals subconsciously reveal personal information via their motion in response to specific stimuli, active attacks pose an outsized risk in VR environments.

show abstract

Lessons Learned: Surveying the Practicality of Differential Privacy in the Industry

Cited by 7 publications

References 62 publications

Don't Look at the Data! How Differential Privacy Reconfigures the Practices of Data Science

Don't Look at the Data! How Differential Privacy Reconfigures the Practices of Data Science

Geometrically-aggregated training samples: Leveraging summary statistics to enable healthcare data democratization

Exploring the Privacy Risks of Adversarial VR Game Design

Contact Info

Product

Resources

About