Differentially private aggregate classifier for multiple databases
First Claim
1. A method for determining a differentially private aggregate classifier for a set of databases, wherein each database in the set of databases is associated with a classifier and a noise value, wherein the classifier and the noise value are determined locally for each database, such that a combination of the classifier and the noise value ensure a differential data privacy of the database, and wherein the differentially private aggregate classifier preserves the differential data privacy of each database, comprising the steps of:
- combining classifiers to determine an aggregate classifier;
modifying the aggregate classifier with a noise value corresponding to a smallest database in the set of databases to produce the differentially private aggregate classifier;
determining an obfuscated index of the smallest database resulting from a permutation of indexes of the set of databases;
selecting obliviously, from additive shares of all noise values, a first additive share of the noise value associated with the smallest database based on the obfuscated index, wherein a second additive share of the noise value is stored in one or more databases; and
determining the differentially private aggregate classifier by obliviously combining each classifier, the first and the second additive shares of the noise value, wherein the steps of the method are performed by a processor.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the invention disclose a system and a method for determining a differentially private aggregate classifier for a set of databases, wherein each database in the set of databases is associated with a classifier and a noise value, wherein the classifier and the noise value are determined locally for each database, such that a combination of the classifier and the noise value ensure a differential data privacy of the database, and wherein the differentially private aggregate classifier preserves the differential data privacy of each database. The differentially private aggregate classifier is a combination of the classifiers of the set of databases modified with the noise value corresponding to a smallest database in the set of databases.
-
Citations
12 Claims
-
1. A method for determining a differentially private aggregate classifier for a set of databases, wherein each database in the set of databases is associated with a classifier and a noise value, wherein the classifier and the noise value are determined locally for each database, such that a combination of the classifier and the noise value ensure a differential data privacy of the database, and wherein the differentially private aggregate classifier preserves the differential data privacy of each database, comprising the steps of:
-
combining classifiers to determine an aggregate classifier; modifying the aggregate classifier with a noise value corresponding to a smallest database in the set of databases to produce the differentially private aggregate classifier; determining an obfuscated index of the smallest database resulting from a permutation of indexes of the set of databases; selecting obliviously, from additive shares of all noise values, a first additive share of the noise value associated with the smallest database based on the obfuscated index, wherein a second additive share of the noise value is stored in one or more databases; and determining the differentially private aggregate classifier by obliviously combining each classifier, the first and the second additive shares of the noise value, wherein the steps of the method are performed by a processor. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for determining a differentially private aggregate classifier for a set of databases, wherein each database in the set of databases is associated with a classifier and a noise value, wherein the classifier and the noise value are determined locally for each database, such that a combination of the classifier and the noise value ensure a differential data privacy of the database, and wherein the differentially private aggregate classifier preserves the differential data privacy of each database, comprising:
a processor for combining classifiers to determine an aggregate classifier and for modifying the aggregate classifier with a noise value corresponding to a smallest database in the set of databases to produce the differentially private aggregate classifier, wherein the processor is further configured for determining an obfuscated index of the smallest database resulting from a permutation of indexes of the set of databases;
for selecting obliviously, from additive Shares of all noise values, a first additive share of the noise value associated with the smallest database based on the obfuscated index, wherein a second additive share of the noise value is stored in one or more databases; and
for determining, the differentially private aggregate classifier by obliviously combining each classifier, the first and the second additive shares of the noise value.- View Dependent Claims (10, 11, 12)
Specification