Deep Learning with Differential Privacy

被引：2980

作者：

Abadi, Martin ^{[1
]}

Chu, Andy ^{[1
]}

Goodfellow, Ian ^{[1
,2
]}

McMahan, H. Brendan ^{[1
]}

Mironov, Ilya ^{[1
]}

Talwar, Kunal ^{[1
]}

Zhang, Li ^{[1
]}

机构：

[1] Google, Mountain View, CA 94043 USA

[2] OpenAI, San Francisco, CA USA

来源：

CCS'16: PROCEEDINGS OF THE 2016 ACM SIGSAC CONFERENCE ON COMPUTER AND COMMUNICATIONS SECURITY | 2016年

关键词：

D O I：

10.1145/2976749.2978318

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Machine learning techniques based on neural networks are achieving remarkable results in a wide variety of domains. Often, the training of models requires large, representative datasets, which may be crowdsourced and contain sensitive information. The models should not expose private information in these datasets. Addressing this goal, we develop new algorithmic techniques for learning and a refined analysis of privacy costs within the framework of differential privacy. Our implementation and experiments demonstrate that we can train deep neural networks with non-convex objectives, under a modest privacy budget, and at a manageable cost in software complexity, training efficiency, and model quality.

引用

页码：308 / 318

页数：11

共 57 条

[21] Bun Mark., 2016, CoRR
[22] Chaudhuri K, 2011, J MACH LEARN RES, V12, P1069
[23] Cox D., 2011, Proceedings 2011 IEEE International Conference on Automatic Face & Gesture Recognition (FG 2011), P8, DOI 10.1109/FG.2011.5771385
[24] Duchi J, 2011, J MACH LEARN RES, V12, P2121
[25] Dwork C, 2006, LECT NOTES COMPUT SC, V4004, P486
[26] Calibrating noise to sensitivity in private data analysis
Dwork, Cynthia
McSherry, Frank
Nissim, Kobbi
Smith, Adam
[J]. THEORY OF CRYPTOGRAPHY, PROCEEDINGS, 2006, 3876 : 265 - 284
[27] Analyze Gauss: Optimal Bounds for Privacy-Preserving Principal Component Analysis
Dwork, Cynthia
Talwar, Kunal
Thakurta, Abhradeep
Zhang, Li
[J]. STOC'14: PROCEEDINGS OF THE 46TH ANNUAL 2014 ACM SYMPOSIUM ON THEORY OF COMPUTING, 2014, : 11 - 20
[28] The Algorithmic Foundations of Differential Privacy
Dwork, Cynthia
Roth, Aaron
[J]. FOUNDATIONS AND TRENDS IN THEORETICAL COMPUTER SCIENCE, 2013, 9 (3-4): : 211 - 406
[29] A Firm Foundation for Private Data Analysis
Dwork, Cynthia
[J]. COMMUNICATIONS OF THE ACM, 2011, 54 (01) : 86 - 95
[30] Boosting and Differential Privacy
Dwork, Cynthia
Rothblum, Guy N.
Vadhan, Salil
[J]. 2010 IEEE 51ST ANNUAL SYMPOSIUM ON FOUNDATIONS OF COMPUTER SCIENCE, 2010, : 51 - 60

← 1 2 3 4 5 6 →