Towards statistical queries over distributed private user data

Authors:
Ruichuan Chen;Alexey Reznichenko;Paul Francis;Johannes Gehrke
Affiliations:
Max Planck Institute for Software Systems, Germany;Max Planck Institute for Software Systems, Germany;Max Planck Institute for Software Systems, Germany;Cornell University, Ithaca, NY
Venue:
NSDI'12 Proceedings of the 9th USENIX conference on Networked Systems Design and Implementation
Year:
2012

Citing 40
Cited 9

How to play ANY mental game

STOC '87 Proceedings of the nineteenth annual ACM symposium on Theory of computing
How to prove yourself: practical solutions to identification and signature problems

Proceedings on Advances in cryptology---CRYPTO '86
A binary algorithm for the Jacobi symbol

ACM SIGSAM Bulletin
Privacy-preserving data mining

SIGMOD '00 Proceedings of the 2000 ACM SIGMOD international conference on Management of data
On the design and quantification of privacy preserving data mining algorithms

PODS '01 Proceedings of the twentieth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
Practical multi-candidate election system

Proceedings of the twentieth annual ACM symposium on Principles of distributed computing
The Sybil Attack

IPTPS '01 Revised Papers from the First International Workshop on Peer-to-Peer Systems
Efficient Algorithms for Computing the Jacobi Symbol

ANTS-II Proceedings of the Second International Symposium on Algorithmic Number Theory
Limiting privacy breaches in privacy preserving data mining

Proceedings of the twenty-second ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
k-anonymity: a model for protecting privacy

International Journal of Uncertainty, Fuzziness and Knowledge-Based Systems
Privacy preserving mining of association rules

Proceedings of the eighth ACM SIGKDD international conference on Knowledge discovery and data mining
Probabilistic encryption & how to play mental poker keeping secret all partial information

STOC '82 Proceedings of the fourteenth annual ACM symposium on Theory of computing
Practical privacy: the SuLQ framework

Proceedings of the twenty-fourth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems
The devil and packet trace anonymization

ACM SIGCOMM Computer Communication Review
\ell -Diversity: Privacy Beyond \kappa -Anonymity

ICDE '06 Proceedings of the 22nd International Conference on Data Engineering
Linking remote attestation to secure tunnel endpoints

Proceedings of the first ACM workshop on Scalable trusted computing
Flicker: an execution infrastructure for tcb minimization

Proceedings of the 3rd ACM SIGOPS/EuroSys European Conference on Computer Systems 2008
A learning theory approach to non-interactive database privacy

STOC '08 Proceedings of the fortieth annual ACM symposium on Theory of computing
Protocols for secure computations

SFCS '82 Proceedings of the 23rd Annual Symposium on Foundations of Computer Science
Robust De-anonymization of Large Sparse Datasets

SP '08 Proceedings of the 2008 IEEE Symposium on Security and Privacy
Releasing search queries and clicks privately

Proceedings of the 18th international conference on World wide web
Differentially private recommender systems: building privacy into the net

Proceedings of the 15th ACM SIGKDD international conference on Knowledge discovery and data mining
Privacy integrated queries: an extensible platform for privacy-preserving data analysis

Proceedings of the 2009 ACM SIGMOD International Conference on Management of data
On the leakage of personally identifiable information via online social networks

Proceedings of the 2nd ACM workshop on Online social networks
Public-key cryptosystems based on composite degree residuosity classes

EUROCRYPT'99 Proceedings of the 17th international conference on Theory and application of cryptographic techniques
Differential privacy: a survey of results

TAMC'08 Proceedings of the 5th international conference on Theory and applications of models of computation
Differentially private aggregation of distributed time-series with transformation and encryption

Proceedings of the 2010 ACM SIGMOD International Conference on Management of data
Bootstrapping Trust in Commodity Computers

SP '10 Proceedings of the 2010 IEEE Symposium on Security and Privacy
Differentially-private network trace analysis

Proceedings of the ACM SIGCOMM 2010 conference
Airavat: security and privacy for MapReduce

NSDI'10 Proceedings of the 7th USENIX conference on Networked systems design and implementation
A firm foundation for private data analysis

Communications of the ACM
TaintDroid: an information-flow tracking system for realtime privacy monitoring on smartphones

OSDI'10 Proceedings of the 9th USENIX conference on Operating systems design and implementation
Straggler Identification in Round-Trip Data Streams via Newton's Identities and Invertible Bloom Filters

IEEE Transactions on Knowledge and Data Engineering
Privad: practical privacy in online advertising

Proceedings of the 8th USENIX conference on Networked systems design and implementation
Selling privacy at auction

Proceedings of the 12th ACM conference on Electronic commerce
Differential privacy under fire

SEC'11 Proceedings of the 20th USENIX conference on Security
Differential privacy

ICALP'06 Proceedings of the 33rd international conference on Automata, Languages and Programming - Volume Part II
Our data, ourselves: privacy via distributed noise generation

EUROCRYPT'06 Proceedings of the 24th annual international conference on The Theory and Applications of Cryptographic Techniques
Calibrating noise to sensitivity in private data analysis

TCC'06 Proceedings of the Third conference on Theory of Cryptography
ObliviAd: Provably Secure and Practical Online Behavioral Advertising

SP '12 Proceedings of the 2012 IEEE Symposium on Security and Privacy

Confidential carbon commuting: exploring a privacy-sensitive architecture for incentivising 'greener' commuting

Proceedings of the First Workshop on Measurement, Privacy, and Mobility
Privacy-aware personalization for mobile advertising

Proceedings of the 2012 ACM conference on Computer and communications security
Non-tracking web analytics

Proceedings of the 2012 ACM conference on Computer and communications security
DJoin: differentially private join queries over distributed databases

OSDI'12 Proceedings of the 10th USENIX conference on Operating Systems Design and Implementation
Act for affordable data care

Proceedings of the 11th ACM Workshop on Hot Topics in Networks
Differential privacy in intelligent transportation systems

Proceedings of the sixth ACM conference on Security and privacy in wireless and mobile networks
πBox: a platform for privacy-preserving apps

nsdi'13 Proceedings of the 10th USENIX conference on Networked Systems Design and Implementation
SplitX: high-performance private analytics

Proceedings of the ACM SIGCOMM 2013 conference on SIGCOMM
Exposing and mitigating privacy loss in crowdsourced survey platforms

Proceedings of the 2013 workshop on Student workhop

Quantified Score

Hi-index	0.00

Visualization

Abstract

To maintain the privacy of individual users' personal data, a growing number of researchers propose storing user data in client computers or personal data stores in the cloud, and allowing users to tightly control the release of that data. While this allows specific applications to use certain approved user data, it precludes broad statistical analysis of user data. Distributed differential privacy is one approach to enabling this analysis, but previous proposals are not practical in that they scale poorly, or that they require trusted clients. This paper proposes a design that overcomes these limitations. It places tight bounds on the extent to which malicious clients can distort answers, scales well, and tolerates churn among clients. This paper presents a detailed design and analysis, and gives performance results of a complete implementation based on the deployment of over 600 clients.