Articles producció científicaEnginyeria Informàtica i Matemàtiques

A Critical Review on the Use (and Misuse) of Differential Privacy in Machine Learning

  • Identification data

    Identifier:  imarina:9289126
    Handlehttps://hdl.handle.net/20.500.11797/imarina9289126
    Authors:  Blanco-Justicia, A; Sánchez, D; Domingo-Ferrer, J; Muralidhar, K
    Abstract:
    We review the use of differential privacy (DP) for privacy protection in machine learning (ML). We show that, driven by the aim of preserving the accuracy of the learned models, DP-based ML implementations are so loose that they do not offer the ex ante privacy guarantees of DP. Instead, what they deliver is basically noise addition similar to the traditional (and often criticized) statistical disclosure control approach. Due to the lack of formal privacy guarantees, the actual level of privacy offered must be experimentally assessed ex post , which is done very seldom. In this respect, we present empirical results showing that standard anti-overfitting techniques in ML can achieve a better utility/privacy/efficiency tradeoff than DP.

  • Others:

    Link to the original source: https://dl.acm.org/doi/10.1145/3547139
    APA: Blanco-Justicia, A; Sánchez, D; Domingo-Ferrer, J; Muralidhar, K (2023). A Critical Review on the Use (and Misuse) of Differential Privacy in Machine Learning. Acm Computing Surveys, 55(8), 1-16. DOI: 10.1145/3547139
    Paper original source: Acm Computing Surveys. 55 (8): 1-16
    Article's DOI: 10.1145/3547139
    Journal publication year: 2023-08-01
    Entity: Universitat Rovira i Virgili
    Paper version: info:eu-repo/semantics/acceptedVersion
    Record's date: 2026-05-09
    URV's Author/s: Blanco Justicia, Alberto / Domingo Ferrer, Josep / Sánchez Ruenes, David
    Department: Enginyeria Informàtica i Matemàtiques
    Licence document URL: https://repositori.urv.cat/ca/proteccio-de-dades/
    Publication Type: Journal Publications
    Author, as appears in the article.: Blanco-Justicia, A; Sánchez, D; Domingo-Ferrer, J; Muralidhar, K
    licence for use: https://creativecommons.org/licenses/by/3.0/es/
    Thematic Areas: Theoretical computer science, General computer science, Computer science, theory & methods, Computer science (miscellaneous), Computer science (all), Ciência da computação
    Author's mail: alberto.blanco@urv.cat, alberto.blanco@urv.cat, david.sanchez@urv.cat, david.sanchez@urv.cat, alberto.blanco@urv.cat, josep.domingo@urv.cat, josep.domingo@urv.cat, josep.domingo@urv.cat, josep.domingo@urv.cat

  • Keywords:

    Machine learning
    Federated learning
    Differential privacy
    Data utility
    Computer Science (Miscellaneous)
    Computer Science
    Theory & Methods
    Theoretical Computer Science
    General computer science
    Computer science (all)
    Ciência da computação

  • Documents:

    DocumentPrincipal

  • Cerca a google

    Search to google scholar