Differentially Private SQL with Bounded User Contribution

Royce J Wilson, Celia Yuxin Zhang, William H. K. Lam, Damien Desfontaines, Daniel Simmons-Marengo, Bryant Gipson

Type: Article

Publication Date: 2020-04-01

Citations: 99

DOI: https://doi.org/10.2478/popets-2020-0025

Abstract

Abstract Differential privacy (DP) provides formal guarantees that the output of a database query does not reveal too much information about any individual present in the database. While many differentially private algorithms have been proposed in the scientific literature, there are only a few end-to-end implementations of differentially private query engines. Crucially, existing systems assume that each individual is associated with at most one database record, which is unrealistic in practice. We propose a generic and scalable method to perform differentially private aggregations on databases, even when individuals can each be associated with arbitrarily many rows. We express this method as an operator in relational algebra, and implement it in an SQL engine. To validate this system, we test the utility of typical queries on industry benchmarks, and verify its correctness with a stochastic test framework we developed. We highlight the promises and pitfalls learned when deploying such a system in practice, and we publish its core components as open-source software.

Locations

Proceedings on Privacy Enhancing Technologies - View - PDF
arXiv (Cornell University) - View - PDF
DOAJ (DOAJ: Directory of Open Access Journals) - View
Repository for Publications and Research Data (ETH Zurich) - View - PDF

Similar Works

Action	Title	Year	Authors
+	Differentially Private SQL with Bounded User Contribution	2019	Royce J Wilson Celia Yuxin Zhang William H. K. Lam Damien Desfontaines Daniel Simmons-Marengo Bryant Gipson
+	Differentially Private SQL with Bounded User Contribution	2019	Royce J Wilson Celia Yuxin Zhang William H. K. Lam Damien Desfontaines Daniel Simmons-Marengo Bryant Gipson
+ PDF Chat	Towards practical differential privacy for SQL queries	2018	Noah M. Johnson Joseph P. Near Dawn Song
+ PDF Chat	Optimizing error of high-dimensional statistical queries under differential privacy	2018	Ryan McKenna Gerome Miklau Michael Hay Ashwin Machanavajjhala
+ PDF Chat	Chorus: a Programming Framework for Building Scalable Differential Privacy Mechanisms	2020	Noah M. Johnson Joseph P. Near Joseph M. Hellerstein Dawn Song
+	Low-Rank Mechanism: Optimizing Batch Queries under Differential Privacy	2012	Ganzhao Yuan Zhenjie Zhang Marianne Winslett Xiaokui Xiao Yin Yang Zhifeng Hao
+	One-sided Differential Privacy	2017	Stelios Doudalis Ios Kotsogiannis Samuel Haney Ashwin Machanavajjhala Sharad Mehrotra
+	One-sided Differential Privacy	2017	Stelios Doudalis Ios Kotsogiannis Samuel Haney Ashwin Machanavajjhala Sharad Mehrotra
+ PDF Chat	Principled Evaluation of Differentially Private Algorithms using DPBench	2016	Michael Hay Ashwin Machanavajjhala Gerome Miklau Yan Chen Dan Zhang
+	HDMM: Optimizing error of high-dimensional statistical queries under differential privacy	2021	Ryan McKenna Gerome Miklau Michael Hay Ashwin Machanavajjhala
+	Chorus: Differential Privacy via Query Rewriting.	2018	Noah M. Johnson Joseph P. Near Joseph M. Hellerstein Dawn Song
+	Plume: Differential Privacy at Scale	2022	Kareem Amin Jennifer Gillenwater Matthew Joseph Alex Kulesza Sergei Vassilvitskii
+	Low Rank Mechanism for Optimizing Batch Queries under Differential Privacy	2012	Ganzhao Yuan Zhenjie Zhang Marianne Winslett Xiaokui Xiao Yin Yang Zhifeng Hao
+ PDF Chat	Optimizing Error of High-Dimensional Statistical Queries Under Differential Privacy	2023	Ryan McKenna Gerome Miklau Michael Hay Ashwin Machanavajjhala
+	Differentially Private Publication of Sparse Data	2011	Graham Cormode Magda Procopiuc Divesh Srivastava Thanh T. L. Tran
+	Principled Evaluation of Differentially Private Algorithms using DPBench	2015	Michael Hay Ashwin Machanavajjhala Gerome Miklau Yan Chen Dan Zhang
+	Differentially Private Data Release over Multiple Tables	2023	Badih Ghazi Xiao Hu Ravi Kumar Pasin Manurangsi
+	Towards Practical Differential Privacy for SQL Queries	2017	Noah M. Johnson Joseph P. Near Dawn Song
+	Reconstruction Attacks on Aggressive Relaxations of Differential Privacy	2024	Prottay Protivash John Durrell Daniel Kifer Zeyu Ding Danfeng Zhang
+	Optimizing Batch Linear Queries under Exact and Approximate Differential Privacy	2015	Ganzhao Yuan Zhenjie Zhang Marianne Winslett Xiaokui Xiao Yin Yang Zhifeng Hao

Works That Cite This (59)

Action	Title	Year	Authors
+	Assessing the Effect of Global Travel and Contact Restrictions on Mitigating the COVID-19 Pandemic	2021	Shengjie Lai Nick Ruktanonchai Alessandra Carioli Corrine W. Ruktanonchai Jessica Floyd Olivia Prosper Chi Zhang Xiangjun Du Weizhong Yang Andrew J. Tatem
+ PDF Chat	Chorus: a Programming Framework for Building Scalable Differential Privacy Mechanisms	2020	Noah M. Johnson Joseph P. Near Joseph M. Hellerstein Dawn Song
+ PDF Chat	HDPView	2022	Fumiyuki Kato Tsubasa Takahashi Shun Takagi Yang Cao Seng Pei Liew Masatoshi Yoshikawa
+	Curator Attack: When Blackbox Differential Privacy Auditing Loses Its Power	2024	S.-Y. Wang Liyao Xiang B. C. P. Cheng Zhe Ji Tongxiao Sun Xinbing Wang
+ PDF Chat	Advances in Differential Privacy and Differentially Private Machine Learning	2024	Saswat Das Subhankar Mishra
+ PDF Chat	DP-starJ: A Differential Private Scheme towards Analytical Star-Join Queries	2023	Congcong Fu Hui Li Jian Lou Huizhen Li Jiangtao Cui
+ PDF Chat	Impacts on Human Movement in Australian Cities Related to the COVID-19 Pandemic	2023	Daniel J. Weiss Tara F. Boyhan Mark Connell Kefyalew Addis Alene Paulina A. Dzianach Tasmin L. Symons Camilo Vargas-Ruiz Peter W. Gething Ewan Cameron
+ PDF Chat	Continuous Release of Data Streams under both Centralized and Local Differential Privacy	2021	Tianhao Wang Joann Qiongna Chen Zhikun Zhang Dong Su Yueqiang Cheng Zhou Li Ninghui Li Somesh Jha
+	Uncovering the socioeconomic facets of human mobility	2020	Hugo Barbosa Surendra Hazarie Brian P. Dickinson Aleix Bassolas Adam Frank Henry Kautz Adam Sadilek José J. Ramasco Gourab Ghoshal
+ PDF Chat	Towards mobility reports with user-level privacy	2022	Alexandra Kapp Saskia Nuñez von Voigt Helena Mihaljević Florian Tschorsch

Works Cited by This (12)

Action	Title	Year	Authors
+	All of Statistics: A Concise Course in Statistical Inference	2012	Larry Wasserman
+ PDF Chat	A data- and workload-aware algorithm for range queries under differential privacy	2014	Chao Li Michael Hay Gerome Miklau Yue Wang
+ PDF Chat	Algorithm 247: Radical-inverse quasi-random point sequence	1964	John H. Halton
+	Differential Privacy: An Economic Method for Choosing Epsilon	2014	Justin Hsu Marco Gaboardi Andreas Haeberlen Sanjeev Khanna Arjun Narayan Benjamin C. Pierce Aaron Roth
+ PDF Chat	Plausible deniability for privacy-preserving data synthesis	2017	Vincent Bindschaedler Reza Shokri Carl A. Gunter
+ PDF Chat	Rényi Differential Privacy	2017	Ilya Mironov
+	Shrinkwrap: Differentially-Private Query Processing in Private Data Federations	2018	Johes Bater Xi He William Ehrich Ashwin Machanavajjhala Jennie Rogers
+	The Composition Theorem for Differential Privacy	2017	Peter Kairouz Sewoong Oh Pramod Viswanath
+ PDF Chat	Concentrated Differential Privacy: Simplifications, Extensions, and Lower Bounds	2016	Mark Bun Thomas Steinke
+ PDF Chat	SoK: Differential privacies	2020	Damien Desfontaines Balázs Pejó