Your browser doesn't support javascript.
loading
An in-depth examination of requirements for disclosure risk assessment.
Jarmin, Ron S; Abowd, John M; Ashmead, Robert; Cumings-Menon, Ryan; Goldschlag, Nathan; Hawes, Michael B; Keller, Sallie Ann; Kifer, Daniel; Leclerc, Philip; Reiter, Jerome P; Rodríguez, Rolando A; Schmutte, Ian; Velkoff, Victoria A; Zhuravlev, Pavel.
Afiliación
  • Jarmin RS; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Abowd JM; Department of Economics, Cornell University, Ithaca, NY 14853.
  • Ashmead R; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Cumings-Menon R; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Goldschlag N; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Hawes MB; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Keller SA; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Kifer D; Biocomplexity Institute, University of Virginia, Charlottesville, VA 22904.
  • Leclerc P; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Reiter JP; Department of Computer Science and Engineering, Penn State University, University Park, PA 16802.
  • Rodríguez RA; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Schmutte I; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
  • Velkoff VA; Department of Statistical Science, Duke University, Durham, NC 27708.
  • Zhuravlev P; U.S. Census Bureau, Office of the Deputy Director, Washington, DC 20233.
Proc Natl Acad Sci U S A ; 120(43): e2220558120, 2023 Oct 24.
Article en En | MEDLINE | ID: mdl-37831744
The use of formal privacy to protect the confidentiality of responses in the 2020 Decennial Census of Population and Housing has triggered renewed interest and debate over how to measure the disclosure risks and societal benefits of the published data products. We argue that any proposal for quantifying disclosure risk should be based on prespecified, objective criteria. We illustrate this approach to evaluate the absolute disclosure risk framework, the counterfactual framework underlying differential privacy, and prior-to-posterior comparisons. We conclude that satisfying all the desiderata is impossible, but counterfactual comparisons satisfy the most while absolute disclosure risk satisfies the fewest. Furthermore, we explain that many of the criticisms levied against differential privacy would be levied against any technology that is not equivalent to direct, unrestricted access to confidential data. More research is needed, but in the near term, the counterfactual approach appears best-suited for privacy versus utility analysis.
Asunto(s)
Palabras clave
Texto completo
Imprimir
XML
PubMed Links
Buscar en Google

Texto completo: 1 Colección: 01-internacional Banco de datos: MEDLINE Asunto principal: Confidencialidad / Revelación Idioma: En Revista: Proc Natl Acad Sci U S A Año: 2023 Tipo del documento: Article
Texto completo
Imprimir
XML
PubMed Links
Buscar en Google

Texto completo: 1 Colección: 01-internacional Banco de datos: MEDLINE Asunto principal: Confidencialidad / Revelación Idioma: En Revista: Proc Natl Acad Sci U S A Año: 2023 Tipo del documento: Article