Gaussian Mechanisms Against Statistical Inference: Synthesis Tools

Haleh Hayati; Carlos Murguia; Nathan van de Wouw

doi:10.48550/arXiv.2111.15307

Gaussian Mechanisms Against Statistical Inference: Synthesis Tools

Research output: Contribution to journal › Article › Academic

59 Downloads (Pure)

Abstract

In this manuscript, we provide a set of tools (in terms of semidefinite programs) to synthesize Gaussian mechanisms to maximize privacy of databases. Information about the database is disclosed through queries requested by (potentially) adversarial users. We aim to keep part of the database private (private sensitive information); however, disclosed data could be used to estimate private information. To avoid an accurate estimation by the adversaries, we pass the requested data through distorting (privacy-preserving) mechanisms before transmission and send the distorted data to the user. These mechanisms consist of a coordinate transformation and an additive dependent Gaussian vector. We formulate the synthesis of distorting mechanisms in terms of semidefinite programs in which we seek to minimize the mutual information (our privacy metric) between private data and the disclosed distorted data given a desired distortion level -- how different actual and distorted data are allowed to be.

Original language	English
Article number	2111.15307
Number of pages	8
Journal	arXiv
Volume	2021
DOIs	https://doi.org/10.48550/arXiv.2111.15307
Publication status	Published - 30 Nov 2021

Keywords

Electrical Engineering and Systems Science - Systems and Control

Access to Document

10.48550/arXiv.2111.15307

pdfFinal published version, 23.2 MB

https://arxiv.org/abs/2111.15307

Cite this

@article{aa427c9e190648a6888f3b15bddacd4d,

title = "Gaussian Mechanisms Against Statistical Inference: Synthesis Tools",

abstract = "In this manuscript, we provide a set of tools (in terms of semidefinite programs) to synthesize Gaussian mechanisms to maximize privacy of databases. Information about the database is disclosed through queries requested by (potentially) adversarial users. We aim to keep part of the database private (private sensitive information); however, disclosed data could be used to estimate private information. To avoid an accurate estimation by the adversaries, we pass the requested data through distorting (privacy-preserving) mechanisms before transmission and send the distorted data to the user. These mechanisms consist of a coordinate transformation and an additive dependent Gaussian vector. We formulate the synthesis of distorting mechanisms in terms of semidefinite programs in which we seek to minimize the mutual information (our privacy metric) between private data and the disclosed distorted data given a desired distortion level -- how different actual and distorted data are allowed to be.",

keywords = "Electrical Engineering and Systems Science - Systems and Control",

author = "Haleh Hayati and Carlos Murguia and \{van de Wouw\}, Nathan",

year = "2021",

month = nov,

day = "30",

doi = "10.48550/arXiv.2111.15307",

language = "English",

volume = "2021",

journal = "arXiv",

publisher = "Cornell University Library",

}

TY - JOUR

T1 - Gaussian Mechanisms Against Statistical Inference

T2 - Synthesis Tools

AU - Hayati, Haleh

AU - Murguia, Carlos

AU - van de Wouw, Nathan

PY - 2021/11/30

Y1 - 2021/11/30

N2 - In this manuscript, we provide a set of tools (in terms of semidefinite programs) to synthesize Gaussian mechanisms to maximize privacy of databases. Information about the database is disclosed through queries requested by (potentially) adversarial users. We aim to keep part of the database private (private sensitive information); however, disclosed data could be used to estimate private information. To avoid an accurate estimation by the adversaries, we pass the requested data through distorting (privacy-preserving) mechanisms before transmission and send the distorted data to the user. These mechanisms consist of a coordinate transformation and an additive dependent Gaussian vector. We formulate the synthesis of distorting mechanisms in terms of semidefinite programs in which we seek to minimize the mutual information (our privacy metric) between private data and the disclosed distorted data given a desired distortion level -- how different actual and distorted data are allowed to be.

AB - In this manuscript, we provide a set of tools (in terms of semidefinite programs) to synthesize Gaussian mechanisms to maximize privacy of databases. Information about the database is disclosed through queries requested by (potentially) adversarial users. We aim to keep part of the database private (private sensitive information); however, disclosed data could be used to estimate private information. To avoid an accurate estimation by the adversaries, we pass the requested data through distorting (privacy-preserving) mechanisms before transmission and send the distorted data to the user. These mechanisms consist of a coordinate transformation and an additive dependent Gaussian vector. We formulate the synthesis of distorting mechanisms in terms of semidefinite programs in which we seek to minimize the mutual information (our privacy metric) between private data and the disclosed distorted data given a desired distortion level -- how different actual and distorted data are allowed to be.

KW - Electrical Engineering and Systems Science - Systems and Control

U2 - 10.48550/arXiv.2111.15307

DO - 10.48550/arXiv.2111.15307

M3 - Article

VL - 2021

JO - arXiv

JF - arXiv

M1 - 2111.15307

ER -

Gaussian Mechanisms Against Statistical Inference: Synthesis Tools

Abstract

Keywords

Access to Document

Fingerprint

Cite this