Privacy Protection from Sampling and Perturbation in Survey Microdata
Shlomo, Natalie and Skinner, Chris (2010) Privacy Protection from Sampling and Perturbation in Survey Microdata. Southampton, GB, Southampton Statistical Sciences Research Institute, 15pp. (S3RI Methodology Working Papers, M10/14).
We consider the assessment of disclosure risk in the release of microdata from social surveys as public-use files. We consider both identification risk and the notion of differential privacy introduced in the computer science literature. We show that sampling, as a disclosure limitation technique, does not guarantee differential privacy. However, threats to differential privacy, i.e. 'leakage', may have small probability and sampling can provide protection under a broader definition of privacy. Moreover, the occurrence of conditions when such a threat can occur may be unknown to the adversary and require statistical inference. Disclosure limitation techniques that perturb variables in the microdata according to misclassification probabilities guarantee differential privacy provided that there are no zero elements in the misclassification mechanism. Combining sampling and perturbation, especially for rare combinations of identifying variables, will reduce the 'leakage'.
|Item Type:||Monograph (Working Paper)|
|Keywords:||identification disclosure, attribute disclosure, differential privacy, misclassification|
|Subjects:||H Social Sciences > HA Statistics|
|Divisions:||University Structure - Pre August 2011 > Southampton Statistical Sciences Research Institute
|Date Deposited:||19 Oct 2010 09:08|
|Last Modified:||03 Mar 2012 01:40|
|Contributors:||Shlomo, Natalie (Author)
Skinner, Chris (Author)
|Date:||18 October 2010|
|Publisher:||Southampton Statistical Sciences Research Institute|
|RDF:||RDF+N-Triples, RDF+N3, RDF+XML, Browse.|
Actions (login required)