Damien Desfontaines’ Post

Resharing this interesting and valuable research. It would be dishonest to only share thoughts that support our anonymization approach at Subsalt, so here's a mathematically rigorous counterargument to the use of synthetic data for anonymization. While the attacks in the paper don't map precisely onto how our product works or how we measure re-identification risk, every synthetic data company needs to take this paper seriously and address the risks of record reconstruction from Reconsyn. But it's also worth highlighting that the paper's conclusions around compliance and empirical privacy metrics writ large are way overstated relative to the empirical findings of the paper -- which, again, are significant. To illustrate, we can look at the first two weaknesses listed in the paper for empirical privacy metrics: 1. "No theoretical guarantees" - so the main weakness is that empirical metrics are...empirical. This is a great example of starting with the conclusion -- in this case, "differential privacy is the only legitimate approach to privacy" -- and then working backward to supporting arguments. The paper proves that the empirical tests commonly used are not robust to this attack; that's woefully insufficient proof that theoretical guarantees are required. 2. "Privacy as a binary" - anonymization, as a legal concept, is a binary. This "weakness" represents the typical PET-centric mistake: mistaking technical evaluations for legal ones. The threshold question for anonymization is a legal question. Again, the paper provides a good argument that synthetic data doesn't satisfy the binary boundary condition. It's drastically overstating the findings to disclaim the legitimacy or existence of a boundary condition existing at all. The actionable findings of the paper are: - it's dangerous and likely empirically incorrect to assume that data synthesis is inherently an anonymizing process - even where vendors provide a set of privacy metrics to support anonymization claims, the specific metrics and rigor of the evaluation criteria are important (and the paper shows that those metrics can actually be a re-identification vector 🤯) - synthetic data vendors should protect against this new attack and re-evaluate how their products prevent record reconstruction via Reconsyn These findings come from the empirical results of the paper. The rest of the "analysis" is just naked advocacy for an alternative method of anonymization.

Raising the alarm on synthetic data privacy, a compelling new study reveals significant vulnerabilities, casting doubt on the reliability of "anonymous" synthetic datasets. It's a wakeup call for anyone in the field of data privacy, demonstrating that standard anonymization techniques are far from foolproof. The paper delves into the inherent flaws of empirical privacy metrics and serves as a crucial read for those seeking to understand and improve data privacy measures. #DataPrivacy #SyntheticData #Cybersecurity Emmanuel Benhamou Anik Bose Ash Tutika

Not all synthetic data is created equally private. Hazy’s Head of Research Georgi Ganev’s and Emiliano De Cristofaro’s latest paper explores the fundamental limitations of entirely relying on ad-hoc similarity based privacy metrics to measure and the guarantee the privacy of synthetic data. The main takeaway? Practitioners should rely on robust definitions of privacy with provable guarantees such as Differential Privacy. Read the full paper here: https://lnkd.in/eZaiJJ82 #privacy #differentialprivacy #ai #syntheticdata #data #anonymisation

Interesting paper by Ganev et al. on the Privacy leakage of Synthetic Data. Firstly, the importance of good privacy metrics is discussed as empirical evaluation methods based on similarity between Original and Synthetic data are not deemed sufficient. The need to add Differential Privacy (e.g. 'noise') to the generation process is underlined. Secondly, their proposed reconstruction attack ReconSyn is able to reconstruct most outliers in the original datasets. Based on the assumptions an attacker has many different Synthetic datasets and can perform privacy metrics on all these datasets. I have not encountered this situation yet. Under which circumstances would you think these assumptions could be realistic? For me it shows the importance of a) selecting the right model to generate synthetic data, b) good governance around accessibility when applying Synthetic data, and c) limit the amount of generated data sets severely.

Introduction to Data Privacy

Government agencies hold valuable information, but privacy concerns and #data breaches pose risks. A team at Urban Institute is developing synthetic data and an automated validation server to balance #privacy and #research needs. This #innovation aims to streamline access, allowing researchers to analyze confidential data without compromising privacy. Learn how these tools could revolutionize the future of policymaking and research. https://urbn.is/3wcZW8O

The Ethical Implications of Big Data Analytics: Balancing Privacy and Progress Title: The Ethical Implications of Big Data Analytics: Balancing Privacy and Progress Introduction In today’s digital age, the proliferation of data has become an integral part of our lives. With the advent of big data analytics, organizations can now harness vast amounts of information to gain valuable insights and make informed decisions. However, the ethical […] https://lnkd.in/dZDvSu8r

Data masking is an important part of how organizations comply with privacy regulations and still are able to mine #data for valuable insights. However, the ever-growing volume of structured and unstructured data that organizations collect has increased the complexity of #datamasking at scale.

Ethical Considerations in Data Science: Balancing Innovation with Privacy and Security Title: Ethical Considerations in Data Science: Balancing Innovation with Privacy and Security Introduction Data science has emerged as a powerful tool in the digital age, enabling organizations to extract valuable insights from vast amounts of data. However, as data collection and analysis become more pervasive, ethical considerations surrounding privacy and security have come to the […] https://lnkd.in/dvFw-EGB

Today I'll be representing the Mitigating Unauthorized Scraping Alliance as part of an IAPP - International Association of Privacy Professionals web conference panel discussing unlawful data scraping -- "A global initiative to elevate safeguards against data scraping" -- on May 30, 2024, from 07:00 to 08:00 PST, 10:00 to 11:00 EST, and 16:00 to 17:00 CET. You can register to watch this live panel here: https://lnkd.in/gdSHQA-h Description: Whether it represents the mass scraping of billions of facial images or scraping of publicly accessible information to drive artificial intelligence, data scraping has become a global risk. On 23 August 2023, 12 data protection authorities from the Global Privacy Assembly issued a joint statement on data scraping that called upon social media companies to ensure elevated safeguards for their customers’ personal information, which they are entrusted to protect. This panel will outline regulator safeguard expectations to protect against unlawful data scraping, including key takeaways from the joint statement, other independent enforcement initiatives and recent policy developments in Europe. It will highlight commitments and perspectives of social media companies on this initiative and underscore the benefits of less formal enforcement collaboration actions in promoting global compliance. What you will learn: (1) Publicly accessible information is still subject to privacy laws.  (2) Unlawful data scraping is a growing global concern, but safeguards to deter it exist.  (3) Social media companies have a role to play to combat unlawful scraping of their customers’ data. Moderator: Brent Homan, Commissioner, The Office of the Data Protection Authority (Guernsey) Panelists: Anna Colaps, Member of the Cabinet of the Supervisor, European Data Protection Supervisor David Patariu, CIPP/E, CIPP/US, CIPM, FIP, PLS, Attorney, Venable and representative of MUSA  Michael Maguire, Director, Private Sector Investigations, Office of Privacy Commissioner of Canada  Rachel Masterton, CIPP/E, Deputy Commissioner, The Office of the Data Protection Authority (Guernsey) Host Selena Lefebvre, Programming and Speaker Coordinator, IAPP Eligible CPEs: CIPP/A, CIPP/C, CIPP/E, CIPP/US, CIPM and CIPT. 1.0 CPE credit