Tight Accounting in the Shuffle Model of Differential Privacy

Add code
Jun 01, 2021
Antti Koskela, Mikko A. Heikkilä, Antti Honkela
Figure 1 for Tight Accounting in the Shuffle Model of Differential Privacy
Figure 2 for Tight Accounting in the Shuffle Model of Differential Privacy
Figure 3 for Tight Accounting in the Shuffle Model of Differential Privacy
Figure 4 for Tight Accounting in the Shuffle Model of Differential Privacy

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon

Shuffle model of differential privacy is a novel distributed privacy model based on a combination of local privacy mechanisms and a trusted shuffler. It has been shown that the additional randomisation provided by the shuffler improves privacy bounds compared to the purely local mechanisms. Accounting tight bounds, especially for multi-message protocols, is complicated by the complexity brought by the shuffler. The recently proposed Fourier Accountant for evaluating $(\varepsilon,\delta)$-differential privacy guarantees has been shown to give tighter bounds than commonly used methods for non-adaptive compositions of various complex mechanisms. In this paper we show how to compute tight privacy bounds using the Fourier Accountant for multi-message versions of several ubiquitous mechanisms in the shuffle model and demonstrate looseness of the existing bounds in the literature.

* 24 pages, 10 figures  
View paper onarxiv iconopen_review iconOpenReview

Share this with someone who'll enjoy it:

Twitter IconFacebook IconLinkedin IconWhatsapp IconMessenger Icon