Tudor Cebere @tcebere - Bluesky Profile

Latest posts by tcebere.bsky.social on Bluesky

$Beyond Laplace and Gaussian: Exploring the Generalized Gaussian Mechanism for Private Machine Learning Roy Rinberg, Ilia Shumailov, Vikrant Singhal, Rachel Cummings, Nicolas Papernot http://arxiv.org/abs/2506.12553 Differential privacy (DP) is obtained by randomizing a data analysis algorithm, which necessarily introduces a tradeoff between its utility and privacy. Many DP mechanisms are built upon one of two underlying tools: Laplace and Gaussian additive noise mechanisms. We expand the search space of algorithms by investigating the Generalized Gaussian mechanism, which samples the additive noise term $x$ with probability proportional to $e^{-\frac{| x |}{\sigma}^{\beta} }$ for some $\beta \geq 1$. The Laplace and Gaussian mechanisms are special cases of GG for $\beta=1$ and $\beta=2$, respectively. In this work, we prove that all members of the GG family satisfy differential privacy, and provide an extension of an existing numerical accountant (the PRV accountant) for these mechanisms. We show that privacy accounting for the GG Mechanism and its variants is dimension independent, which substantially improves computational costs of privacy accounting. We apply the GG mechanism to two canonical tools for private machine learning, PATE and DP-SGD; we show empirically that $\beta$ has a weak relationship with test-accuracy, and that generally $\beta=2$ (Gaussian) is nearly optimal. This provides justification for the widespread adoption of the Gaussian mechanism in DP learning, and can be interpreted as a negative result, that optimizing over $\beta$ does not lead to meaningful improvements in performance.$

Beyond Laplace and Gaussian: Exploring the Generalized Gaussian Mechanism for Private Machine Learning Roy Rinberg, Ilia Shumailov, Vikrant Singhal, Rachel Cummings, Nicolas Papernot http://arxiv.org/abs/2506.12553 Differential privacy (DP) is obtained by randomizing a data analysis algorithm, which necessarily introduces a tradeoff between its utility and privacy. Many DP mechanisms are built upon one of two underlying tools: Laplace and Gaussian additive noise mechanisms. We expand the search space of algorithms by investigating the Generalized Gaussian mechanism, which samples the additive noise term $x$ with probability proportional to $e^{-\frac{| x |}{\sigma}^{\beta} }$ for some $\beta \geq 1$. The Laplace and Gaussian mechanisms are special cases of GG for $\beta=1$ and $\beta=2$, respectively. In this work, we prove that all members of the GG family satisfy differential privacy, and provide an extension of an existing numerical accountant (the PRV accountant) for these mechanisms. We show that privacy accounting for the GG Mechanism and its variants is dimension independent, which substantially improves computational costs of privacy accounting. We apply the GG mechanism to two canonical tools for private machine learning, PATE and DP-SGD; we show empirically that $\beta$ has a weak relationship with test-accuracy, and that generally $\beta=2$ (Gaussian) is nearly optimal. This provides justification for the widespread adoption of the Gaussian mechanism in DP learning, and can be interpreted as a negative result, that optimizing over $\beta$ does not lead to meaningful improvements in performance.

17.06.2025 03:49 — 👍 6 🔁 1 💬 0 📌 0

Tighter Privacy Auditing of DP-SGD in the Hidden State Threat Model Machine learning models can be trained with formal privacy guarantees via differentially private optimizers such as DP-SGD. In this work, we focus on a threat model where the adversary has access...

Excited to be in Singapore for ICLR, presenting our work on privacy auditing (w/ Aurélien & @nicolaspapernot.bsky.social). If you are interested in differential privacy/privacy auditing/security for ML, drop by (#497 26 Apr 10-12:30 pm) or let's grab a coffee! ☕

openreview.net/forum?id=xzK...

21.04.2025 14:57 — 👍 4 🔁 1 💬 0 📌 0

Postdoc opportunity: if interested in a postdoc related to sketching starting Summer/Fall'25, especially applied to more efficient foundation model architectures (e.g. faster approx attention), please follow the instructions on the left column of theory.cs.berkeley.edu/postdoc.html by Jan 31

07.01.2025 11:25 — 👍 3 🔁 2 💬 0 📌 0

@tcebere is following 19 prominent accounts

Ted
@desfontain.es

A little pinch of randomness here and there and poof, your data is now protected. Magic! ✨ (I don't read DMs. Send me an email instead.) 🌉 bridged from ⁂ https://hachyderm.io/@tedted, follow @ap.brid.gy to interact

Nick (Hengrui) Jia
@nickjia

Researching Trustworthy Machine Learning advised by Prof. Nicolas Papernot PhD student at University of Toronto and Vector Institute

Elena Burceanu
@ilarele

Interested in OOD Generalization problems of AI, in our awesome Theoretical Research team at Bitdefender http://bit-ml.github.io

George Kaissis
@g-k.ai

Professor for Human-Centred Transformative AI @ Hasso-Plattner-Institut. Previously @ Google DeepMind, Imperial College London, TU Munich. 🇪🇺 🏳️‍🌈 https://www.g-k.ai

Anshuman Suri
@iamgroot42

Postdoc @ Khoury | Previously Ph.D. @ UVA (David Evans) | IIITD Alum | Interested in machine learning privacy & security.

Vasilios Mavroudis
@mavroudisv

Principal Research Scientist, Alan Turing Institute Autonomous Cyberdefence 🤖 and AI cyber risks ⚡ https://mavroud.is

Christian Lebeda
@christianlebeda

@msundarmsa

Ana-Maria Cretu
@ana-mariacretu

Post-doc at EPFL studying privacy and safety harms in data-driven systems. PhD in data privacy from Imperial College London. https://ana-mariacretu.github.io/

Yves-Alexandre de Montjoye
@yvesalexandre

Professor of Applied Mathematics and CS at Imperial College London (🇬🇧). MIT PhD. I'm working on automated privacy attacks, LLM memorization, and AI Safety. Road cyclist 🚴 and former EU Special Adviser (🇪🇺).

Jascha Sohl-Dickstein
@jascha.sohldickstein.com

Recently a principal scientist at Google DeepMind. Joining Anthropic. Most (in)famous for inventing diffusion models. AI + physics + neuroscience + dynamical systems.

Yo Shavit
@yonashav

policy for v smart things @openai. Past: PhD @HarvardSEAS/@SchmidtFutures/@MIT_CSAIL. Posts my own; on my head be it

Edoardo Debenedetti @NeurIPS
@edebenedetti

PhD student at ETH Zurich | Student Researcher at Google | Agents Security and more in general ML Security and Privacy edoardo.science spylab.ai

Santiago Zanella-Beguelin
@xefffffff

AI Security & Privacy Researcher at Microsoft. Opinions are my own. https://aka.ms/sz

Maksym Andriushchenko
@maksym-andr

Faculty at ‪the ELLIS Institute Tübingen and Max Planck Institute for Intelligent Systems. Leading the AI Safety and Alignment group. PhD from EPFL supported by Google & OpenPhil PhD fellowships. More details: https://www.andriushchenko.me/

Christopher Manning
@chrmanning

Stanford Linguistics and Computer Science. Director, Stanford AI Lab. Founder of @stanfordnlp.bsky.social . #NLP https://nlp.stanford.edu/~manning/

Jakob Foerster
@jfoerst

Jakob

Sanjeev Arora
@profsanjeevarora

Director, Princeton Language and Intelligence. Professor of CS.

Somesh Jha
@someshjha

I am a professor in the computer sciences at UW-Madison. My technical interests in trustworthy ML, formal methods, and security. My other interests are Indian classical music, mindfulness, tennis, and pickleball.