Differential Privacy
@differentialprivacy.org
470 followers
0 following
850 posts
🤖
new arXiv preprints mentioning "differential privacy" or "differentially private" in the title/abstract/metadata
+ updates from https://differentialprivacy.org
[Under construction.]
Posts
Media
Videos
Starter Packs
![DP-SNP-TIHMM: Differentially Private, Time-Inhomogeneous Hidden Markov Models for Synthesizing Genome-Wide Association Datasets
Shadi Rahimian, Mario Fritz
http://arxiv.org/abs/2510.05777
Single nucleotide polymorphism (SNP) datasets are fundamental to genetic
studies but pose significant privacy risks when shared. The correlation of SNPs
with each other makes strong adversarial attacks such as masked-value
reconstruction, kin, and membership inference attacks possible. Existing
privacy-preserving approaches either apply differential privacy to statistical
summaries of these datasets or offer complex methods that require
post-processing and the usage of a publicly available dataset to suppress or
selectively share SNPs.
In this study, we introduce an innovative framework for generating synthetic
SNP sequence datasets using samples derived from time-inhomogeneous hidden
Markov models (TIHMMs). To preserve the privacy of the training data, we ensure
that each SNP sequence contributes only a bounded influence during training,
enabling strong differential privacy guarantees. Crucially, by operating on
full SNP sequences and bounding their gradient contributions, our method
directly addresses the privacy risks introduced by their inherent correlations.
Through experiments conducted on the real-world 1000 Genomes dataset, we
demonstrate the efficacy of our method using privacy budgets of $\varepsilon
\in [1, 10]$ at $\delta=10^{-4}$. Notably, by allowing the transition models of
the HMM to be dependent on the location in the sequence, we significantly
enhance performance, enabling the synthetic datasets to closely replicate the
statistical properties of non-private datasets. This framework facilitates the
private sharing of genomic data while offering researchers exceptional
flexibility and utility.](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:bvdt4psvley2chbqednjkkw2/bafkreia5bvtw3e7raxbmji43xt2he6tv2jn45uj7gzlwxhs5lrwlb32ck4@jpeg)
![Private Learning of Littlestone Classes, Revisited
Xin Lyu
http://arxiv.org/abs/2510.00076
We consider online and PAC learning of Littlestone classes subject to the
constraint of approximate differential privacy. Our main result is a private
learner to online-learn a Littlestone class with a mistake bound of
$\tilde{O}(d^{9.5}\cdot \log(T))$ in the realizable case, where $d$ denotes the
Littlestone dimension and $T$ the time horizon. This is a doubly-exponential
improvement over the state-of-the-art [GL'21] and comes polynomially close to
the lower bound for this task.
The advancement is made possible by a couple of ingredients. The first is a
clean and refined interpretation of the ``irreducibility'' technique from the
state-of-the-art private PAC-learner for Littlestone classes [GGKM'21]. Our new
perspective also allows us to improve the PAC-learner of [GGKM'21] and give a
sample complexity upper bound of $\widetilde{O}(\frac{d^5
\log(1/\delta\beta)}{\varepsilon \alpha})$ where $\alpha$ and $\beta$ denote
the accuracy and confidence of the PAC learner, respectively. This improves
over [GGKM'21] by factors of $\frac{d}{\alpha}$ and attains an optimal
dependence on $\alpha$.
Our algorithm uses a private sparse selection algorithm to \emph{sample} from
a pool of strongly input-dependent candidates. However, unlike most previous
uses of sparse selection algorithms, where one only cares about the utility of
output, our algorithm requires understanding and manipulating the actual
distribution from which an output is drawn. In the proof, we use a sparse
version of the Exponential Mechanism from [GKM'21] which behaves nicely under
our framework and is amenable to a very easy utility proof.](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:bvdt4psvley2chbqednjkkw2/bafkreifwvskea4jjdrpqnkpl2wjwvzhjgbizfcmatmiinasd2nis7dswoa@jpeg)
![Private Online Learning against an Adaptive Adversary: Realizable and Agnostic Settings
Bo Li, Wei Wang, Peng Ye
http://arxiv.org/abs/2510.00574
We revisit the problem of private online learning, in which a learner
receives a sequence of $T$ data points and has to respond at each time-step a
hypothesis. It is required that the entire stream of output hypotheses should
satisfy differential privacy. Prior work of Golowich and Livni [2021]
established that every concept class $\mathcal{H}$ with finite Littlestone
dimension $d$ is privately online learnable in the realizable setting. In
particular, they proposed an algorithm that achieves an $O_{d}(\log T)$ mistake
bound against an oblivious adversary. However, their approach yields a
suboptimal $\tilde{O}_{d}(\sqrt{T})$ bound against an adaptive adversary. In
this work, we present a new algorithm with a mistake bound of $O_{d}(\log T)$
against an adaptive adversary, closing this gap. We further investigate the
problem in the agnostic setting, which is more general than the realizable
setting as it does not impose any assumptions on the data. We give an algorithm
that obtains a sublinear regret of $\tilde{O}_d(\sqrt{T})$ for generic
Littlestone classes, demonstrating that they are also privately online
learnable in the agnostic setting.](https://cdn.bsky.app/img/feed_thumbnail/plain/did:plc:bvdt4psvley2chbqednjkkw2/bafkreiedzzpnsx7jf7dmpjgucavpab6fqswkis5riyv24kesz62cjragri@jpeg)
