The Bounded Gaussian Mechanism for Differential Privacy
Bo Chen, Matthew Hale
TL;DR
This paper introduces a bounded Gaussian mechanism for differential privacy that restricts outputs to valid ranges, reducing variance and improving accuracy over traditional unbounded Gaussian methods.
Contribution
The paper proposes a new bounded Gaussian mechanism for differential privacy, addressing the issue of invalid outputs and reducing variance compared to existing methods.
Findings
Significant variance reduction over existing mechanisms
Effective for both univariate and multivariate data
Improves accuracy in private data queries
Abstract
The Gaussian mechanism is one differential privacy mechanism commonly used to protect numerical data. However, it may be ill-suited to some applications because it has unbounded support and thus can produce invalid numerical answers to queries, such as negative ages or human heights in the tens of meters. One can project such private values onto valid ranges of data, though such projections lead to the accumulation of private query responses at the boundaries of such ranges, thereby harming accuracy. Motivated by the need for both privacy and accuracy over bounded domains, we present a bounded Gaussian mechanism for differential privacy, which has support only on a given region. We present both univariate and multivariate versions of this mechanism and illustrate a significant reduction in variance relative to comparable existing work.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsPrivacy-Preserving Technologies in Data · Cryptography and Data Security · Vehicular Ad Hoc Networks (VANETs)