| CPC G06F 21/60 (2013.01) [G06N 20/00 (2019.01)] | 20 Claims |
|
1. A computer-implemented method to enable privacy-preserving aggregation of data, the method comprising:
obtaining, by one or more computing devices, private data comprising a private value associated with a client device;
sampling, by the one or more computing devices, a first random value from a first sampling distribution associated with the client device, wherein the first sampling distribution is a base distribution of a first infinitely divisible distribution;
sampling, by the one or more computing devices, a second random value from a second sampling distribution, wherein the second sampling distribution is a base distribution of a second infinitely divisible distribution;
sampling, by the one or more computing devices, a third random value from a third sampling distribution, wherein the third sampling distribution is a base distribution of a third infinitely divisible distribution;
generating, by the one or more computing devices, a multiset of messages for the client device based at least in part on the private value, the first random value, the second random value, and the third random value, wherein the multiset of messages comprises a first number of increment messages equal to a sum of the private value, the first random value, and the third random value, and wherein the multiset of messages comprises a second number of decrement messages equal to a sum of the second random value and the third random value; and
transmitting, by the one or more computing devices over a network, the multiset of messages for differentially private aggregation with a plurality of additional multisets of messages respectively generated for a plurality of additional private values respectively associated with a plurality of additional client devices;
wherein the first infinitely divisible distribution is shared among the plurality of additional client devices.
|