Skip to main content
SpringerLink
Log in

Differential Privacy with Variant-Noise for Gaussian Processes Classification

  • Conference paper
  • First Online:
PRICAI 2019: Trends in Artificial Intelligence (PRICAI 2019)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 11672))

Included in the following conference series:

Abstract

Incredible capacity of machine learning models to mine the underlying information has led to concerns of privacy disclosure. This makes privacy-preserving learning algorithms become a hot spot. In this paper, we focus on Gaussian processes classification (GPC) with a provable secure and feasible privacy model, differential privacy (DP). First we apply a functional mechanism to design a basic privacy-preserving GP classifier. This involves finding the sensitivity of the outputs, and adding a Gaussian process noise proportional to the sensitivity to the trained classifier. Then we propose a variant-noise mechanism to perturb the classifier with different scaled noise based on the density of dataset. We show that this method can significantly reduce the added noise, whilst sufficiently maintaining the accuracy of the classifier both in theory and experiments.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 84.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 109.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Notes

  1. 1.

    When we say a datapoint is of high density, that means in its neighbourhood of a given radius, there are a relatively larger amount of data points than that of a datapoint with low density.

  2. 2.

    http://www.aston.ac.uk/eas/research/groups/ncrg.

References

  1. Abadi, M., et al.: Deep learning with differential privacy. In: ACM Conference on Computer and Communications Security (CCS) (2016)

    Google Scholar 

  2. Bishop, C.M.: Pattern Recognition and Machine Learning. Springer, New York (2006)

    MATH  Google Scholar 

  3. Quiñonero Candela, J., Rasmussen, C.E.: A unifying view of sparse approximate Gaussian process regression. J. Mach. Learn. Res. 6, 1939–1959 (2005)

    MathSciNet  MATH  Google Scholar 

  4. Chaudhuri, K., Monteleoni, C.: Privacy-preserving logistic regression. In: Advances in Neural Information Processing Systems (NIPS) (2008)

    Google Scholar 

  5. Chaudhuri, K., Monteleoni, C., Sarwate, A.D.: Differentially private empirical risk minimization. J. Mach. Learn. Res. 12, 1069–1109 (2011)

    MathSciNet  MATH  Google Scholar 

  6. Damianou, A., Lawrence, N.: Deep Gaussian processes. In: International Conference on Artificial Intelligence and Statistics (AISTATS) (2013)

    Google Scholar 

  7. Dwork, C.: Differential privacy. In: Bugliesi, M., Preneel, B., Sassone, V., Wegener, I. (eds.) ICALP 2006. LNCS, vol. 4052, pp. 1–12. Springer, Heidelberg (2006). https://doi.org/10.1007/11787006_1

    Chapter  Google Scholar 

  8. Dwork, C., Roth, A.: The algorithmic foundations of differential privacy. Found. Trends Theor. Comput. Sci. 9(3–4), 211–407 (2014)

    MathSciNet  MATH  Google Scholar 

  9. Ganta, S.R., Kasiviswanathan, S.P., Smith, A.: Composition attacks and auxiliary information in data privacy. In: ACM Conference on Knowledge Discovery and Data Mining (SIGKDD) (2008)

    Google Scholar 

  10. Hall, R., Rinaldo, A., Wasserman, L.A.: Differential privacy for functions and functional data. J. Mach. Learn. Res. 14(1), 703–727 (2013)

    MathSciNet  MATH  Google Scholar 

  11. Lawrence, N.D.: Gaussian process latent variable models for visualisation of high dimensional data. In: Advances in Neural Information Processing Systems (NIPS) (2004)

    Google Scholar 

  12. Lawrence, N.D., Seeger, M., Herbrich, R.: Fast sparse Gaussian process methods: the informative vector machine. In: Advances in Neural Information Processing Systems (NIPS) (2002)

    Google Scholar 

  13. Lee, J., Sohl-dickstein, J., Pennington, J., Novak, R., Schoenholz, S., Bahri, Y.: Deep neural networks as Gaussian processes. In: International Conference on Learning Representations (ICLR) (2018)

    Google Scholar 

  14. Park, M., Foulds, J.R., Chaudhuri, K., Welling, M.: DP-EM: differentially private expectation maximization. In: International Conference on Artificial Intelligence and Statistics (AISTATS) (2017)

    Google Scholar 

  15. Rasmussen, C.E., Williams, C.K.I.: Gaussian Processes for Machine Learning. MIT Press, Cambridge (2005)

    Book  Google Scholar 

  16. Smith, M.T., Álvarez, M., Zwiessele, M., Lawrence, N.D.: Differentially private regression with Gaussian processes. In: International Conference on Artificial Intelligence and Statistics (AISTATS) (2018)

    Google Scholar 

  17. Steffan, J., Schumacher, M.: Collaborative attack modeling. In: ACM Symposium on Applied Computing (SAC) (2002)

    Google Scholar 

Download references

Acknowledgements

This work is supported by National Key Research and Development Program of China (No. 2018YFC0830400) and Shanghai Electric Vehicle Public Data Center.

Author information

Authors and Affiliations

  1. State Key Lab of Advanced Optical Communication System and Network, Shanghai Jiao Tong University, Shanghai, China

    Zhili Xiong, Longyuan Li, Haiyang Wang, Hao He & Yaohui Jin

  2. Artificial Intelligence Institute, Shanghai Jiao Tong University, Shanghai, China

    Zhili Xiong, Longyuan Li, Junchi Yan, Haiyang Wang, Hao He & Yaohui Jin

Authors
  1. Zhili Xiong
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Longyuan Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Junchi Yan
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Haiyang Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Hao He
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Yaohui Jin
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Zhili Xiong .

Editor information

Editors and Affiliations

  1. Department of Computing, Macquarie University, Sydney, NSW, Australia

    Abhaya C. Nayak

  2. RIKEN Center for Integrative Medical Sciences, Yokohama, Japan

    Alok Sharma

Rights and permissions

Reprints and permissions

Copyright information

© 2019 Springer Nature Switzerland AG

About this paper

Check for updates. Verify currency and authenticity via CrossMark

Cite this paper

Xiong, Z., Li, L., Yan, J., Wang, H., He, H., Jin, Y. (2019). Differential Privacy with Variant-Noise for Gaussian Processes Classification. In: Nayak, A., Sharma, A. (eds) PRICAI 2019: Trends in Artificial Intelligence. PRICAI 2019. Lecture Notes in Computer Science(), vol 11672. Springer, Cham. https://doi.org/10.1007/978-3-030-29894-4_9

Download citation

  • DOI: https://doi.org/10.1007/978-3-030-29894-4_9

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-030-29893-7

  • Online ISBN: 978-3-030-29894-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation