Papers
Topics
Authors
Recent
Gemini 2.5 Flash
Gemini 2.5 Flash
41 tokens/sec
GPT-4o
59 tokens/sec
Gemini 2.5 Pro Pro
41 tokens/sec
o3 Pro
7 tokens/sec
GPT-4.1 Pro
50 tokens/sec
DeepSeek R1 via Azure Pro
28 tokens/sec
2000 character limit reached

FLAIM: AIM-based Synthetic Data Generation in the Federated Setting (2310.03447v3)

Published 5 Oct 2023 in cs.CR and cs.LG

Abstract: Preserving individual privacy while enabling collaborative data sharing is crucial for organizations. Synthetic data generation is one solution, producing artificial data that mirrors the statistical properties of private data. While numerous techniques have been devised under differential privacy, they predominantly assume data is centralized. However, data is often distributed across multiple clients in a federated manner. In this work, we initiate the study of federated synthetic tabular data generation. Building upon a SOTA central method known as AIM, we present DistAIM and FLAIM. We first show that it is straightforward to distribute AIM, extending a recent approach based on secure multi-party computation which necessitates additional overhead, making it less suited to federated scenarios. We then demonstrate that naively federating AIM can lead to substantial degradation in utility under the presence of heterogeneity. To mitigate both issues, we propose an augmented FLAIM approach that maintains a private proxy of heterogeneity. We simulate our methods across a range of benchmark datasets under different degrees of heterogeneity and show we can improve utility while reducing overhead.

PDF HTML Abstract
Ai Sparkles Streamline Icon: https://streamlinehq.com Summarize Bookmark Chat Bubble Oval Streamline Icon: https://streamlinehq.com Chat (Pro)
Definition Search Book Streamline Icon: https://streamlinehq.com
References (46)
  1. High-throughput semi-honest secure three-party computation with an honest majority. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security. ACM, 805–817.
  2. Generating synthetic data in finance: opportunities, challenges and pitfalls. In Proceedings of the First ACM International Conference on AI in Finance. ACM, 1–8.
  3. Differentially private query release through adaptive projection. In International Conference on Machine Learning. PMLR, PMLR, 457–467.
  4. Secure single-server aggregation with (poly) logarithmic overhead. In Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security. ACM, 1253–1269.
  5. Jock Blackard. 1998. Covertype. UCI Machine Learning Repository. DOI: https://doi.org/10.24432/C50K5N.
  6. R. Bock. 2007. MAGIC Gamma Telescope. UCI Machine Learning Repository. DOI: https://doi.org/10.24432/C52C8B.
  7. Mark Bun and Thomas Steinke. 2016. Concentrated differential privacy: Simplifications, extensions, and lower bounds. In Theory of Cryptography: 14th International Conference, TCC 2016-B, Beijing, China, October 31-November 3, 2016, Proceedings, Part I. Springer, Springer, 635–658.
  8. The discrete gaussian for differential privacy. Advances in Neural Information Processing Systems 33 (2020), 15676–15688.
  9. DARPA. 1999. Darpa intrusion detection evaluation,. https://www.ll.mit.edu/r-d/datasets/1999-darpa-intrusion-detection-evaluation-dataset
  10. Dheeru Dua and Casey Graff. 2017. UCI Machine Learning Repository. http://archive.ics.uci.edu/ml
  11. Calibrating noise to sensitivity in private data analysis. In Theory of cryptography conference. Springer, Springer, 265–284.
  12. Cynthia Dwork and Aaron Roth. 2014. The Algorithmic Foundations of Differential Privacy. Foundations and Trends in Theoretical Computer Science (2014).
  13. Understanding how Differentially Private Generative Models Spend their Privacy Budget. arXiv:2305.10994 [cs.LG]
  14. Generative adversarial networks. Commun. ACM 63, 11 (2020), 139–144.
  15. A simple and practical algorithm for differentially private data release. Advances in neural information processing systems 25 (2012).
  16. TAPAS: a Toolbox for Adversarial Privacy Auditing of Synthetic Data. arXiv preprint arXiv:2211.06550 (2022).
  17. Papaya: Practical, private, and scalable federated learning. Proceedings of Machine Learning and Systems 4 (2022), 814–832.
  18. Kaggle. 2017. Credit card fraud dataset. https://www.kaggle.com/datasets/mlg-ulb/creditcardfraud
  19. Practical and private (deep) learning without sampling or shuffling. In International Conference on Machine Learning. PMLR, PMLR, 5213–5225.
  20. Advances and Open Problems in Federated Learning. arXiv:1912.04977 [cs.LG]
  21. Marcel Keller. 2020. MP-SPDZ: A versatile framework for multi-party computation. In Proceedings of the 2020 ACM SIGSAC conference on computer and communications security. ACM, 1575–1590.
  22. An introduction to variational autoencoders. Foundations and Trends® in Machine Learning 12, 4 (2019), 307–392.
  23. Ronny Kohavi and Barry Becker. 1996. Adult dataset. UCI Machine Learning Repository. http://archive.ics.uci.edu/ml/nomao
  24. Federated learning on non-iid data silos: An experimental study. In 2022 IEEE 38th International Conference on Data Engineering (ICDE). IEEE, IEEE, 965–978.
  25. Iterative methods for private synthetic data: Unifying framework and new methods. Advances in Neural Information Processing Systems 34 (2021), 690–702.
  26. On the Utility Recovery Incapability of Neural Net-based Differential Private Tabular Training Data Synthesizer under Privacy Deregulation. arXiv:2211.15809 [cs.LG]
  27. Umap: Uniform manifold approximation and projection for dimension reduction. arXiv preprint arXiv:1802.03426 (2018).
  28. AIM: An Adaptive and Iterative Mechanism for Differentially Private Synthetic Data. arXiv preprint arXiv:2201.12677 (2022).
  29. Graphical-model based estimation and inference for differential privacy. In International Conference on Machine Learning. PMLR, PMLR, 4435–4444.
  30. Communication-efficient learning of deep networks from decentralized data. In Artificial intelligence and statistics. PMLR, PMLR, 1273–1282.
  31. Learning differentially private recurrent language models. arXiv preprint arXiv:1710.06963 (2017).
  32. Ofer Mendelevitch and Michael D Lesh. 2021. Fidelity and privacy of synthetic medical data. arXiv preprint arXiv:2101.08658 (2021).
  33. Bank Marketing. UCI Machine Learning Repository. DOI: https://doi.org/10.24432/C5K306.
  34. Quantifying the privacy risks of learning high-dimensional graphical models. In International Conference on Artificial Intelligence and Statistics. PMLR, PMLR, 2287–2295.
  35. OpenDP. 2021. smartnoise-sdk. https://github.com/opendp/smartnoise-sdk
  36. The Synthetic data vault. In IEEE International Conference on Data Science and Advanced Analytics (DSAA). IEEE, 399–410. https://doi.org/10.1109/DSAA.2016.49
  37. Secure Multiparty Computation for Synthetic Data Generation from Distributed Data. arXiv preprint arXiv:2210.07332 (2022).
  38. Facebook Research. 2021. FLSim. https://github.com/facebookresearch/FLSim
  39. Veegan: Reducing mode collapse in GANs using implicit variational learning. Advances in neural information processing systems 30 (2017).
  40. Synthetic data–anonymisation groundhog day. In 31st USENIX Security Symposium (USENIX Security 22). 1451–1468.
  41. Benchmarking differentially private synthetic data generation algorithms. arXiv preprint arXiv:2112.09238 (2021).
  42. Membership Inference Attacks against Synthetic Data through Overfitting Detection. arXiv preprint arXiv:2302.12580 (2023).
  43. Boris van Breugel and Mihaela van der Schaar. 2023. Beyond Privacy: Navigating the Opportunities and Challenges of Synthetic Data. arXiv preprint arXiv:2304.03722 (2023).
  44. Modeling tabular data using conditional gan. Advances in neural information processing systems 32 (2019).
  45. Using Bayesian networks to create synthetic data. Journal of Official Statistics 25, 4 (2009), 549.
  46. Privbayes: Private data release via bayesian networks. ACM Transactions on Database Systems (TODS) 42, 4 (2017), 1–41.
User Edit Pencil Streamline Icon: https://streamlinehq.com
Authors (3)
  1. Samuel Maddock (6 papers)
  2. Graham Cormode (69 papers)
  3. Carsten Maple (65 papers)
Citations (4)
View on Semantic Scholar
X Twitter Logo Streamline Icon: https://streamlinehq.com

Tweets