skip to main content
US FlagAn official website of the United States government
dot gov icon
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
https lock icon
Secure .gov websites use HTTPS
A lock ( lock ) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Explore Research Products in the PAR
It may take a few hours for recently added research products to appear in PAR search results.


Title: Private Sampling: A Noiseless Approach for Generating Differentially Private Synthetic Data
Award ID(s):
2140592 1954233 2027299 1934568 2031883
PAR ID:
10356612
Author(s) / Creator(s):
; ;
Date Published:
Journal Name:
SIAM Journal on Mathematics of Data Science
Volume:
4
Issue:
3
ISSN:
2577-0187
Page Range / eLocation ID:
1082 to 1115
Format(s):
Medium: X
Sponsoring Org:
National Science Foundation
More Like this
  1. ; ; ; ; (, ACM)
  2. ; (, Proceedings of the ACM Symposium on Theory of Computing (STOC))
  3. ; ; (, Advances in Neural and Information Processing Systems)
    null (Ed.)
  4. ; (, Statistical Foundations of LLMs and Foundation Models (NeurIPS 2024 Workshop))
    Differential Privacy (DP) is a mathematical definition that enshrines a formal guarantee that the output of a query does not depend greatly on any individual in the dataset. DP does not formalize a notion of "background information" and does not provide a guarantee about how much an output can be identifying to someone who has background information about an individual. In this paper, we argue that privately fine-tuning a pre-trained machine learning model on a private dataset using differential privacy does not always yield meaningful notions of privacy. Simply offering differential privacy guarantees in terms of (ε, δ) is insufficient to ensure human notions privacy, when the original training data is correlated with the fine-tuning dataset. We emphasize that, alongside differential privacy assurances, it is essential to report measures of dataset similarity and model attackability (for which model-size can be a proxy). This is a work in progress; this work is primarily a position piece, arguing for how DP should be used in practice, and what future research needs to be conducted in order to better answer those questions. 
    more » « less
  5. ; (, IEEE Transactions on Information Theory)
  • Citation Formats
  • MLA
  • APA
  • Chicago
  • BibTeX
  • Text Encoded Conversion
  • XML
  • Save / Share this Record
  • Send to Email