On connecting stochastic gradient MCMC and differential privacy

Bai Li; Changyou Chen; Hao Liu; Lawrence Carin

On connecting stochastic gradient MCMC and differential privacy

Bai Li
, Changyou Chen
, Hao Liu
, Lawrence Carin

Department of Computer Science and Engineering

University at Buffalo

Research output: Contribution to conference › Paper › peer-review

19 Scopus citations

Abstract

Concerns related to data security and confidentiality have been raised when applying machine learning to real-world applications. Differential privacy provides a principled and rigorous privacy guarantee for machine learning models. While it is common to inject noise to design a model satisfying a required differential-privacy property, it is generally hard to balance the trade-off between privacy and utility. We show that stochastic gradient Markov chain Monte Carlo (SG-MCMC) - a class of scalable Bayesian posterior sampling algorithms - satisfies strong differential privacy, when carefully chosen stepsizes are employed. We develop theory on the performance of the proposed differentially-private SG-MCMC method. We conduct experiments to support our analysis, and show that a standard SG-MCMC sampler with minor modification can reach state-of-the-art performance in terms of both privacy and utility on Bayesian learning.

Original language	English
State	Published - 2020
Event	22nd International Conference on Artificial Intelligence and Statistics, AISTATS 2019 - Naha, Japan Duration: Apr 16 2019 → Apr 18 2019

Conference

Conference	22nd International Conference on Artificial Intelligence and Statistics, AISTATS 2019
Country/Territory	Japan
City	Naha
Period	04/16/19 → 04/18/19

Cite this

@conference{b7a7f92d232643dcbd7b7121ca701298,

title = "On connecting stochastic gradient MCMC and differential privacy",

abstract = "Concerns related to data security and confidentiality have been raised when applying machine learning to real-world applications. Differential privacy provides a principled and rigorous privacy guarantee for machine learning models. While it is common to inject noise to design a model satisfying a required differential-privacy property, it is generally hard to balance the trade-off between privacy and utility. We show that stochastic gradient Markov chain Monte Carlo (SG-MCMC) - a class of scalable Bayesian posterior sampling algorithms - satisfies strong differential privacy, when carefully chosen stepsizes are employed. We develop theory on the performance of the proposed differentially-private SG-MCMC method. We conduct experiments to support our analysis, and show that a standard SG-MCMC sampler with minor modification can reach state-of-the-art performance in terms of both privacy and utility on Bayesian learning.",

author = "Bai Li and Changyou Chen and Hao Liu and Lawrence Carin",

note = "Publisher Copyright: {\textcopyright} 2019 by the author(s).; 22nd International Conference on Artificial Intelligence and Statistics, AISTATS 2019 ; Conference date: 16-04-2019 Through 18-04-2019",

year = "2020",

language = "English",

}

TY - CONF

T1 - On connecting stochastic gradient MCMC and differential privacy

AU - Li, Bai

AU - Chen, Changyou

AU - Liu, Hao

AU - Carin, Lawrence

PY - 2020

Y1 - 2020

N2 - Concerns related to data security and confidentiality have been raised when applying machine learning to real-world applications. Differential privacy provides a principled and rigorous privacy guarantee for machine learning models. While it is common to inject noise to design a model satisfying a required differential-privacy property, it is generally hard to balance the trade-off between privacy and utility. We show that stochastic gradient Markov chain Monte Carlo (SG-MCMC) - a class of scalable Bayesian posterior sampling algorithms - satisfies strong differential privacy, when carefully chosen stepsizes are employed. We develop theory on the performance of the proposed differentially-private SG-MCMC method. We conduct experiments to support our analysis, and show that a standard SG-MCMC sampler with minor modification can reach state-of-the-art performance in terms of both privacy and utility on Bayesian learning.

AB - Concerns related to data security and confidentiality have been raised when applying machine learning to real-world applications. Differential privacy provides a principled and rigorous privacy guarantee for machine learning models. While it is common to inject noise to design a model satisfying a required differential-privacy property, it is generally hard to balance the trade-off between privacy and utility. We show that stochastic gradient Markov chain Monte Carlo (SG-MCMC) - a class of scalable Bayesian posterior sampling algorithms - satisfies strong differential privacy, when carefully chosen stepsizes are employed. We develop theory on the performance of the proposed differentially-private SG-MCMC method. We conduct experiments to support our analysis, and show that a standard SG-MCMC sampler with minor modification can reach state-of-the-art performance in terms of both privacy and utility on Bayesian learning.

UR - https://www.scopus.com/pages/publications/85085012498

M3 - Paper

T2 - 22nd International Conference on Artificial Intelligence and Statistics, AISTATS 2019

Y2 - 16 April 2019 through 18 April 2019

ER -

On connecting stochastic gradient MCMC and differential privacy

Abstract

Conference

Other files and links

Fingerprint

Cite this