Search papers, labs, and topics across Lattice.
This paper introduces a Gaussian Differential Privacy (GDP)-based auditing framework to tightly measure the privacy guarantees of Differentially Private (DP) synthetic data generators, specifically MST and AIM. By analyzing the full false-positive/false-negative tradeoff, the framework provides tighter privacy audits, particularly in the strong-privacy regime, compared to existing methods. Empirical results on MST and AIM with $(\epsilon,\delta)=(1,10^{-2})$ demonstrate a small theory-practice gap, with $\mu_{emp}\approx0.43$ compared to the implied $\mu=0.45$.
Popular DP synthetic data generators like MST and AIM are less private than we thought, but this new auditing framework finally gives us a tight handle on their true privacy risks.
State-of-the-art Differentially Private (DP) synthetic data generators such as MST and AIM are widely used, yet tightly auditing their privacy guarantees remains challenging. We introduce a Gaussian Differential Privacy (GDP)-based auditing framework that measures privacy via the full false-positive/false-negative tradeoff. Applied to MST and AIM under worst-case settings, our method provides the first tight audits in the strong-privacy regime. For $(\epsilon,\delta)=(1,10^{-2})$, we obtain $\mu_{emp}\approx0.43$ vs. implied $\mu=0.45$, showing a small theory-practice gap. Our code is publicly available: https://github.com/sassoftware/dpmm.
