A new Framework for Measuring Re-Identification Risk


Compact user representations (such as embeddings) form the backbone of personalization services. In this work, we present a new theoretical framework to measure re-identification risk in such user representations. Our framework, based on hypothesis testing, formally bounds the probability that an attacker may be able to obtain the identity of a user from their representation. As an application, we show how our framework is general enough to model important real-world applications such as the Chrome’s Topics API for interest-based advertising. We complement our theoretical bounds by showing provably good attack algorithms for re-identification that we use to estimate the re-identification risk in the Topics API. We believe this work provides a rigorous and interpretable notion of re-identification risk and a framework to measure it that can be used to inform real-world applications.

Workshop on Regulatable Machine Learning at the 37th Conference on Neural Information Processing Systems
Gabriel H. Nunes
Gabriel H. Nunes
PhD candidate in Computer Science

Physicist and Computer Scientist