TY - GEN
T1 - Curie
T2 - 9th ACM Conference on Data and Application Security and Privacy, CODASPY 2019
AU - Celik, Z. Berkay
AU - Acar, Abbas
AU - Aksu, Hidayet
AU - Sheatsley, Ryan
AU - McDaniel, Patrick
AU - Uluagac, A. Selcuk
N1 - Publisher Copyright:
© 2019 Association for Computing Machinery.
PY - 2019/3/13
Y1 - 2019/3/13
N2 - Data sharing among partners—users, companies, organizations—is crucial for the advancement of collaborative machine learning in many domains such as healthcare, finance, and security. Sharing through secure computation and other means allow these partners to perform privacy-preserving computations on their private data in controlled ways. However, in reality, there exist complex relationships among members (partners). Politics, regulations, interest, trust, data demands and needs prevent members from sharing their complete data. Thus, there is a need for a mechanism to meet these conflicting relationships on data sharing. This paper presents Curie1, an approach to exchange data among members who have complex relationships. A novel policy language, CPL, that allows members to define the specifications of data exchange requirements is introduced. With CPL, members can easily assert who and what to exchange through their local policies and negotiate a global sharing agreement. The agreement is implemented in a distributed privacy-preserving model that guarantees sharing among members will comply with the policy as negotiated. The use of Curie is validated through an example healthcare application built on recently introduced secure multi-party computation and differential privacy frameworks, and policy and performance trade-offs are explored.
AB - Data sharing among partners—users, companies, organizations—is crucial for the advancement of collaborative machine learning in many domains such as healthcare, finance, and security. Sharing through secure computation and other means allow these partners to perform privacy-preserving computations on their private data in controlled ways. However, in reality, there exist complex relationships among members (partners). Politics, regulations, interest, trust, data demands and needs prevent members from sharing their complete data. Thus, there is a need for a mechanism to meet these conflicting relationships on data sharing. This paper presents Curie1, an approach to exchange data among members who have complex relationships. A novel policy language, CPL, that allows members to define the specifications of data exchange requirements is introduced. With CPL, members can easily assert who and what to exchange through their local policies and negotiate a global sharing agreement. The agreement is implemented in a distributed privacy-preserving model that guarantees sharing among members will comply with the policy as negotiated. The use of Curie is validated through an example healthcare application built on recently introduced secure multi-party computation and differential privacy frameworks, and policy and performance trade-offs are explored.
UR - http://www.scopus.com/inward/record.url?scp=85063873129&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85063873129&partnerID=8YFLogxK
U2 - 10.1145/3292006.3300042
DO - 10.1145/3292006.3300042
M3 - Conference contribution
AN - SCOPUS:85063873129
T3 - CODASPY 2019 - Proceedings of the 9th ACM Conference on Data and Application Security and Privacy
SP - 121
EP - 132
BT - CODASPY 2019 - Proceedings of the 9th ACM Conference on Data and Application Security and Privacy
PB - Association for Computing Machinery, Inc
Y2 - 25 March 2019 through 27 March 2019
ER -