Explaining ∈ in local differential privacy through the lens of quantitative information flow

Research output: Chapter in Book/Report/Conference proceedingConference proceeding contributionpeer-review

Abstract

The study of leakage measures for privacy has been a subject of intensive research and is an important aspect of understanding how privacy leaks occur in computer systems. Differential privacy has been a focal point in the privacy community for some years and yet its leakage characteristics are not completely understood. In this paper we bring together two areas of research -information theory and the g-leakage framework of quantitative information flow (QIF)- to give an operational interpretation for the epsilon parameter of local differential privacy. We find that epsilon emerges as a capacity measure in both frameworks; via (log)-lift, a popular measure in information theory; and via max-case g-leakage, which we introduce to describe the leakage of any system to Bayesian adversaries modelled using 'worst-case' assumptions under the QIF framework. Our characterisation resolves an important question of interpretability of epsilon and consolidates a number of disparate results covering the literature of both information theory and Quantitative information flow.

Original languageEnglish
Title of host publication2024 IEEE 37th Computer Security Foundations Symposium CSF 2024
Subtitle of host publicationproceedings
Place of PublicationPiscataway, NJ
PublisherInstitute of Electrical and Electronics Engineers (IEEE)
Pages419-432
Number of pages14
ISBN (Electronic)9798350362039
ISBN (Print)9798350362046
DOIs
Publication statusPublished - 2024
Event37th IEEE Computer Security Foundations Symposium, CSF 2024 - Enschede, Netherlands
Duration: 8 Jul 202412 Jul 2024

Publication series

Name
ISSN (Print)1940-1434
ISSN (Electronic)2374-8303

Conference

Conference37th IEEE Computer Security Foundations Symposium, CSF 2024
Country/TerritoryNetherlands
CityEnschede
Period8/07/2412/07/24

Cite this