SGD on Random Mixtures: Private Machine Learning under Data Breach Threats

Kangwook Lee, Kyungmin Lee, Hoon Kim, Changho Suh, Kannan Ramchandran

Feb 12, 2018 (modified: Feb 12, 2018) ICLR 2018 Workshop Submission readers: everyone
  • Abstract: We propose Stochastic Gradient Descent on Random Mixtures (SGDRM) as a simple way of protecting data under data breach threats. We show that SGDRM converges to the globally optimal point for deep neural networks with linear activations while being differentially private. We also train nonlinear neural networks with private mixtures as the training data, proving the practicality of SGDRM.
  • TL;DR: SGDRM is the SGD algorithm run on random mixtures; it is differentially private and has convergence guarantees.
  • Keywords: SGD on random mixtures, SGDRM, differential privacy