Separating Computational and Statistical Differential Privacy in the Client-Server Model

Bun, Mark; Chen, Yi-Hsiu; Vadhan, Salil

doi:10.1007/978-3-662-53641-4_23

Cited by 5 publications

(4 citation statements)

References 30 publications

(26 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The IND-CDP notion allows much more accurate functionalities in the two-party setting [12]; in the traditional client-server setup there is a natural class of functionalities where the gap between IND-CDP and (ǫ, δ)-DP is minimal [13], and there are (contrived) examples where the computational relaxation permits tasks that are infeasible under information-theoretic definitions [14].…”

Section: Differential Privacy and Its Flavorsmentioning

confidence: 99%

“…Under the indistinguishability-based Computational Differential Privacy (IND-CDP) definition [3], the test of closeness between distributions on adjacent inputs is computationally bounded (all other definitions considered in this paper hold against an unbounded, information-theoretic adversary). The IND-CDP notion allows much more accurate functionalities in the two-party setting [12]; in the traditional client-server setup there is a natural class of functionalities where the gap between IND-CDP and (ǫ, δ)-DP is minimal [13], and there are (contrived) examples where the computational relaxation permits tasks that are infeasible under information-theoretic definitions [14].…”

Section: Definition 1 (ǫ-Dp) a Randomized Mechanismmentioning

confidence: 99%

See 1 more Smart Citation

Rényi Differential Privacy

Mironov

2017

2017 IEEE 30th Computer Security Foundations Symposium (CSF)

864

1,023

View full text Add to dashboard Cite

Abstract-We propose a natural relaxation of differential privacy based on the Rényi divergence. Closely related notions have appeared in several recent papers that analyzed composition of differentially private mechanisms. We argue that the useful analytical tool can be used as a privacy definition, compactly and accurately representing guarantees on the tails of the privacy loss.We demonstrate that the new definition shares many important properties with the standard definition of differential privacy, while additionally allowing tighter analysis of composite heterogeneous mechanisms.

show abstract

Section: Differential Privacy and Its Flavorsmentioning

confidence: 99%

Section: Definition 1 (ǫ-Dp) a Randomized Mechanismmentioning

confidence: 99%

Rényi Differential Privacy

Mironov

2017

2017 IEEE 30th Computer Security Foundations Symposium (CSF)

864

1,023

View full text Add to dashboard Cite

show abstract

“…Indeed, Groce, Katz, and Yerukhimovich [18] showed that a wide range of CDP mechanisms can be converted into an (information-theoretic) DP mechanism. Bun, Chen, and Vadhan [4] showed that under (unnatural) cryptographic assumptions, there exists a (single-party) task that can be efficiently solved using CDP, but is infeasible (not impossible) for information-theoretic DP. Yet, the existence of a stronger separation (i.e., one that implies the impossibility for information-theoretic DP) remains open (in particular, under more standard cryptographic assumptions).…”

Section: Additional Related Work On Computational Differential Privacymentioning

confidence: 99%

“…they showed that any two-party ε-differentially private protocol for the inner product, must incur an additive error of Ω( √ n/(e ε • log n)). 4 Computational Differential Privacy (CDP). Motivated by the above limitations on multiparty differential privacy, Beimel, Nissim, and Omri [2] and Mironov, Pandey, Reingold, and Vadhan [31] considered protocols that only guarantee a computational analog of differential privacy.…”

Section: Introductionmentioning

confidence: 99%

On the Complexity of Two-Party Differential Privacy

Haitner¹,

Mazor²,

Silbak³

et al. 2021

Preprint

View full text Add to dashboard Cite

In distributed differential privacy, the parties perform analysis over their joint data while preserving the privacy for both datasets. Interestingly, for a few fundamental two-party functions such as inner product and Hamming distance, the accuracy of the distributed solution lags way behind what is achievable in the client-server setting. McGregor, Mironov, Pitassi, Reingold, Talwar, and Vadhan [FOCS '10] proved that this gap is inherent, showing upper bounds on the accuracy of (any) distributed solution for these functions. These limitations can be bypassed when settling for computational differential privacy, where the data is differentially private only in the eyes of a computationally bounded observer, using public-key cryptography primitives.We prove that the use of public-key cryptography is necessary for bypassing the limitation of McGregor et al., showing that a non-trivial solution for the inner-product, or the Hamming distance, implies the existence of a key-agreement protocol. Our bound implies a combinatorial proof for the fact that non-Boolean inner product of independent (strong) Santha-Vazirani sources is a good condenser. We obtain our main result by showing that the inner-product of a (single, strong) SV source with a uniformly random seed is a good condenser, even when the seed and source are dependent.

show abstract