DIFFERENTIALLY PRIVATE PROCESSING AND DATABASE STORAGE

摘要

A hardware database privacy device is communicatively coupled to a private database system. The hardware database privacy device receives a request from a client device to perform a query of the private database system and identifies a level of differential privacy corresponding to the request. The identified level of differential privacy includes privacy parameters (ε,δ) indicating the degree of information released about the private database system. The hardware database privacy device identifies a set of operations to be performed on the set of data that corresponds to the requested query. After the set of data is accessed, the set of operations is modified based on the identified level of differential privacy such that a performance of the modified set of operations produces a result set that is (ε,δ)-differentially private.

主权项

1. A hardware database privacy device, the hardware database privacy device communicatively coupled to a private database system, and configured to:
receive a request from a client device to perform a query of the private database system and identifying a level of differential privacy corresponding to the request, the identified level of differential privacy comprising privacy parameters c and 6; identify a set of data stored in the private database system and a set of operations to be performed on the set of data corresponding to the requested query; access the set of data from the private database system; modify the set of operations based on the identified level of differential privacy such that a performance of the modified set of operations produces a result set that is (ε,δ)-differentially private; perform the modified set of operations on the accessed set of data to produce the differentially private result set; and provide the differentially private result set to the client device for display on a hardware display of the client device.