We consider protocols where users communicate with multiple servers to perform a computation on the users' data. An adversary exerts semi-honest control over many of the parties but its view is differentially private with respect to honest users. Prior work described protocols that required multiple rounds of interaction or offered privacy against a computationally bounded adversary. Our work presents limitations of non-interactive protocols that offer privacy against unbounded adversaries. We show these protocols demand exponentially more samples for some learning and estimation tasks than centrally private counterparts. This means performing as well as the central model requires interactivity or computational differential privacy, or both.
翻译:我们考虑的是用户与多个服务器进行通信以计算用户数据的协议。对手对许多当事人行使半诚实的控制,但对于诚实的用户,其观点是不同的。先前的工作描述的协议要求进行多轮互动,或者对计算上的对手提供隐私。我们的工作对非互动协议提出了限制,这些协议为不受约束的对手提供隐私。我们展示了这些协议对一些学习和估算任务要求的样本数量比中央私人对口单位要多得多。这意味着运行和中心模式都需要互动或计算上的差异隐私,或者两者兼而有之。
相关内容
微信扫码咨询专知VIP会员