We consider a federated data analytics problem in which a server coordinates the collaborative data analysis of multiple users with privacy concerns and limited communication capability. The commonly adopted compression schemes introduce information loss into local data while improving communication efficiency, and it remains an open question whether such discrete-valued mechanisms provide any privacy protection. Considering that differential privacy has become the gold standard for privacy measures due to its simple implementation and rigorous theoretical foundation, in this paper, we study the privacy guarantees of discrete-valued mechanisms with finite output space in the lens of $f$-differential privacy (DP). By interpreting the privacy leakage as a hypothesis testing problem, we derive the closed-form expression of the tradeoff between type I and type II error rates, based on which the $f$-DP guarantees of a variety of discrete-valued mechanisms, including binomial mechanisms, sign-based methods, and ternary-based compressors, are characterized. We further investigate the Byzantine resilience of binomial mechanisms and ternary compressors and characterize the tradeoff among differential privacy, Byzantine resilience, and communication efficiency. Finally, we discuss the application of the proposed method to differentially private stochastic gradient descent in federated learning.
翻译:我们认为,一个服务器协调对具有隐私关切和通信能力有限的多个用户进行的合作数据分析是一个联合数据分析问题。通常采用的压缩计划将信息损失引入当地数据,同时提高通信效率,这种独立价值机制是否提供了任何隐私保护仍然是一个未决问题。考虑到由于实施简便和严格的理论基础,差异隐私权已成为隐私措施的黄金标准,我们在本文件中研究了在美元差异隐私权的镜头中具有有限输出空间的离散价值机制的隐私保障。通过将隐私渗漏解释为假设测试问题,我们得出了第一类和第二类误差率之间的封闭式权衡,据此,美元-DP对各种独立价值机制的担保,包括二元机制、基于标志的方法和基于永恒的压缩机。我们进一步调查了双调机制和永恒压缩机的比赞蒂纳弹性机制的隐私保障,并将差异隐私权、比赞提耐受力和通信效率之间的交易定性。最后,我们讨论了将拟议采用渐变法的私人差异化方法的保密化方法。