Randomize the Future: Asymptotically Optimal Locally Private Frequency Estimation Protocol for Longitudinal Data

@article{Ohrimenko2022RandomizeTF,
  title={Randomize the Future: Asymptotically Optimal Locally Private Frequency Estimation Protocol for Longitudinal Data},
  author={Olga Ohrimenko and Anthony Wirth and Hao Wu},
  journal={Proceedings of the 41st ACM SIGMOD-SIGACT-SIGAI Symposium on Principles of Database Systems},
  year={2022}
}
  • O. Ohrimenko, A. Wirth, Hao Wu
  • Published 22 December 2021
  • Computer Science, Mathematics
  • Proceedings of the 41st ACM SIGMOD-SIGACT-SIGAI Symposium on Principles of Database Systems
Longitudinal data tracking under Local Differential Privacy (LDP) is a challenging task. Baseline solutions that repeatedly invoke a protocol designed for one-time computation lead to linear decay in the privacy or utility guarantee with respect to the number of computations. To avoid this, the recent approach of Erlingsson et al. (2020) exploits the potential sparsity of user data that changes only infrequently. Their protocol targets the fundamental problem of frequency estimation for… 

Figures from this paper

References

SHOWING 1-10 OF 19 REFERENCES
Local Differential Privacy for Evolving Data
TLDR
A new technique for local differential privacy is introduced that makes it possible to maintain up-to-date statistics over time, with privacy guarantees that degrade only in the number of changes in the underlying distribution rather than thenumber of collection periods.
Amplification by Shuffling: From Local to Central Differential Privacy via Anonymity
TLDR
It is shown, via a new and general privacy amplification technique, that any permutation-invariant algorithm satisfying e-local differential privacy will satisfy [MATH HERE]-central differential privacy.
Collecting and Analyzing Data from Smart Device Users with Local Differential Privacy
TLDR
Harmony is a practical, accurate and efficient system for collecting and analyzing data from smart device users, while satisfying LDP, and applies to multi-dimensional data containing both numerical and categorical attributes.
Heavy Hitters and the Structure of Local Privacy
We present a new locally differentially private algorithm for the heavy hitters problem which achieves optimal worst-case error as a function of all standardly considered parameters. Prior work
Building a RAPPOR with the Unknown: Privacy-Preserving Learning of Associations and Data Dictionaries
TLDR
This paper proposes a novel decoding algorithm for the RAPPOR mechanism that enables the estimation of “unknown unknowns,” i.e., strings the authors do not know they should be estimating, to enable learning without explicit dictionary knowledge.
Locally Differentially Private Sparse Vector Aggregation
TLDR
The first to show matching upperand lower-bounds for the k-sparse vector mean estimation problem under local differential privacy and construct new mechanisms that achieve asymptotically optimal error as well as succinct communication, either under user-level-LDP or event-level -LDP are constructed.
Differential privacy under continual observation
TLDR
This work identifies the problem of maintaining a counter in a privacy preserving manner and shows its wide applicability to many different problems.
Collecting Telemetry Data Privately
TLDR
This paper develops new LDP mechanisms geared towards repeated collection of counter data, with formal privacy guarantees even after being executed for an arbitrarily long period of time, which have been deployed by Microsoft to collect telemetry across millions of devices.
RAPPOR: Randomized Aggregatable Privacy-Preserving Ordinal Response
TLDR
This paper describes and motivates RAPPOR, details its differential-privacy and utility guarantees, discusses its practical deployment and properties in the face of different attack models, and gives results of its application to both synthetic and real-world data.
The Algorithmic Foundations of Differential Privacy
TLDR
The preponderance of this monograph is devoted to fundamental techniques for achieving differential privacy, and application of these techniques in creative combinations, using the query-release problem as an ongoing example.
...
...