Differential Privacy SGD

Differential Privacy Stochastic Gradient Descent (DP-SGD) aims to train machine learning models while guaranteeing differential privacy, protecting individual data points' privacy. Current research focuses on improving DP-SGD's efficiency and accuracy, particularly for large language models and deep learning architectures, exploring techniques like user-level privacy, adaptive clipping, and alternative optimization methods beyond standard SGD. These advancements address the significant computational cost and utility loss often associated with DP training, enabling the practical application of privacy-preserving machine learning in sensitive domains. The field is also actively investigating robust privacy accounting methods and developing tools for evaluating and auditing the privacy guarantees of trained models.

Papers

November 20, 2023

Can we infer the presence of Differential Privacy in Deep Learning models' weights? Towards more secure Deep Learning
Jiménez-López, Daniel, Rodríguez-Barroso, Nuria, Luzón, M. Victoria, Herrera, Francisco
Deep Learning Deep Learning Model Differential Privacy Speech Presence Balancing Weight Private Stochastic Gradient Descent Differential Privacy SGD Secure Deep

November 10, 2023

Does Differential Privacy Prevent Backdoor Attacks in Practice?
Fereshteh Razmi, Jian Lou, Li Xiong
Differential Privacy Backdoor Attack Practice Mode Differential Privacy SGD

October 24, 2023

Privacy Amplification for Matrix Mechanisms
Christopher A. Choquette-Choo, Arun Ganesh, Thomas Steinke, Abhradeep Thakurta
Privacy Utility Differential Privacy Guarantee Differential Privacy SGD Privacy Amplification

October 19, 2023

PrivImage: Differentially Private Synthetic Image Generation using Diffusion Models with Semantic-Aware Pretraining
Kecen Li, Chen Gong, Zhixiang Li, Yuzhong Zhao, Xinwen Hou, Tianhao Wang
Diffusion Model Differential Privacy Image Generation Private Stochastic Gradient Descent Differential Privacy SGD Semantic Aware

June 13, 2023

(Amplified) Banded Matrix Factorization: A unified approach to private training
Christopher A. Choquette-Choo, Arun Ganesh, Ryan McKenna, H. Brendan McMahan, Keith Rush, Abhradeep Thakurta, Zheng Xu
Differential Privacy Unified Framework Matrix Factorization Differential Privacy SGD Privacy Amplification Private Model Training

May 25, 2023

DP-SGD Without Clipping: The Lipschitz Neural Network Way
Louis Bethune, Thomas Massena, Thibaut Boissin, Yannick Prudent, Corentin Friedrich, Franck Mamalet, Aurelien Bellet, Mathieu Serrurier, David Vigouroux
Differential Privacy SGD Lipschitz Constant Clipped Stochastic Gradient Descent Lipschitz Network

May 10, 2023

DPMLBench: Holistic Evaluation of Differentially Private Machine Learning
Chengkun Wei, Minghu Zhao, Zhikun Zhang, Min Chen, Wenlong Meng, Bo Liu, Yuan Fan, Wenzhi Chen
Differential Privacy PRIvacy Leakage Differential Privacy SGD Differentially Private Private Machine Learning Holistic Evaluation Differential Analysis

February 24, 2023

From Noisy Fixed-Point Iterations to Private ADMM for Centralized and Federated Learning
Edwige Cyffers, Aurélien Bellet, Debabrota Basu
Industrial Disturbing Noise Differential Privacy SGD Private Gradient Private Optimization Centralized Control Iteration Head Fixed Point Iteration

December 12, 2022

Generalizing DP-SGD with Shuffling and Batch Clipping
Marten van Dijk, Phuong Ha Nguyen, Toan N. Nguyen, Lam M. Nguyen
Stochastic Gradient Descent Mini Batch Differential Privacy SGD Shuffle Model Dp SGD Adaptive Clipping

November 24, 2022

Differentially Private Image Classification from Features
Harsh Mehta, Walid Krichene, Abhradeep Thakurta, Alexey Kurakin, Ashok Cutkosky
Transfer Learning Differential Privacy Feature Wise Second Order Privacy Preserving Image Differential Privacy SGD

November 12, 2022

Multi-Epoch Matrix Factorization Mechanisms for Private Machine Learning
Christopher A. Choquette-Choo, H. Brendan McMahan, Keith Rush, Abhradeep Thakurta
Gradient Based Differential Privacy SGD Private Machine Learning Nonnegative Matrix Factorization

October 28, 2022

DPVIm: Differentially Private Variational Inference Improved
Joonas Jälkö, Lukas Prediger, Antti Honkela, Samuel Kaski
Variational Inference Differential Privacy SGD Variational Parameter Private Variational

October 18, 2022

August 26, 2022

DiVa: An Accelerator for Differentially Private Machine Learning
Beomsik Park, Ranggi Hwang, Dongho Yoon, Yoonhyuk Choi, Minsoo Rhu
Differential Privacy Differential Privacy SGD Private Machine Learning Phantom 2D Accelerator Diva 360

June 14, 2022

Automatic Clipping: Differentially Private Deep Learning Made Easier and Stronger
Zhiqi Bu, Yu-Xiang Wang, Sheng Zha, George Karypis
Private Stochastic Differential Privacy SGD High Dimensional Clipping Gradient Clipping Private Hyperparameter

May 6, 2022

Large Scale Transfer Learning for Differentially Private Image Classification
Harsh Mehta, Abhradeep Thakurta, Alexey Kurakin, Ashok Cutkosky
Differential Privacy Private Stochastic Gradient Descent Privacy Preserving Image Differential Privacy SGD Non Private Private Learning Algorithm

April 28, 2022

Unlocking High-Accuracy Differentially Private Image Classification through Scale
Soham De, Leonard Berrada, Jamie Hayes, Samuel L. Smith, Borja Balle
Deep Learning Differential Privacy Visual Analogue Scale Private Stochastic Gradient Descent Privacy Preserving Image Differential Privacy SGD Enhancing Accuracy

April 12, 2022

Optimal Membership Inference Bounds for Adaptive Composition of Sampled Gaussian Mechanisms
Saeed Mahloujifar, Alexandre Sablayrolles, Graham Cormode, Somesh Jha
Differential Privacy Membership Inference Differential Privacy SGD Gaussian Mechanism

April 3, 2022

A Differentially Private Framework for Deep Learning with Convexified Loss Functions
Zhigang Lu, Hassan Jameel Asghar, Mohamed Ali Kaafar, Darren Webb, Peter Dickinson
Deep Learning Differential Privacy Private Stochastic Differential Privacy SGD Convex Loss Function Agentive Permission