Not only masking of values, but distortion of values
goal: statistics run on the original dataset yield the same results as statistics run on the perturbed dataset
Explain the idea more
Select most relevant techniques (swapping, noise?); potentially shorten or delete others
Add examples to each
Techniques following Carvalho et al. (2023)
exchanging values on certain variables between participants
types of swapping
record swapping (also known as data swapping): for categorial variables; swapping the values on the variables (e.g., gender, country of residence); t-order equivalence means that the frequency tables for t variables are not changed (e.g., 1-order equivalence: same number of males and females as before, 2-order equivalence: same number of males and females from Switzerland and Germany respectively)
rank swapping: for continuous variables; swapping values only within certain range of the rank to limit distortion of data
advantages
removes relationship between record and individual
can be used in one or more sensitive variables without disturbing the non-sensitive variables
provides protection to rare and unique values
not limited to the type of variable
disadvantages
may produce number of cases with unusual combinations
non-random swapping means work
can severely distort statistics for subgroups
not useful against attribute disclosures
idea: create averages of independent samples
bootstrap independent samples
use average of first sample for first row, then average of second sample for second row…
check for correct understanding
also known as randomization
idea: add more or less random value (additive noise) or multiply by more or less random value (multiplicative noise)
noise can be correlated or uncorrelated with values
transformations after adding the noise are possible
differential privacy methods usually mean noise
adds noise to data, leading to plausible deniability for any individual
results of analysis stay the same independent of noise
results of analysis stay the same, independent if one person is in there or not
diffpriv: An R Package for Easy Differential Privacy
“Even if the attacker already suspects X is the only possible HIV case in the dataset, the data release should not confirm or deny that suspicion.”
idea: create groups of similar values and change these to an aggregate value (e.g., mean, median)
works better when groups are more homogeneous
Explain how to ensure that the statistics are the same (or reference utility section)
Add pro and con list
Perturbative techniques modify values rather than removing or generalising them. The data still looks complete and realistic, but individual values have been altered enough that re-identification becomes unreliable. Two common methods:
Both are available directly in sdcMicro.
Continue working with sdc_nonpert from the previous exercise.
Apply microaggregation to income using the default method ("mdav"). Use a group size of k = 5.
Add noise to income as an alternative — apply additive noise with a noise level of 0.1 (10% of the standard deviation). Compare the result to microaggregation: which distorts the data more?
Compare the information loss reported by sdcMicro after each step. Which method better balances risk and utility for this variable?
You cannot undo perturbation steps within the same sdc object. Create a fresh copy of sdc_nonpert before trying the second method so you can compare them side-by-side.
sdc_micro <- microaggregation(
obj = sdc_nonpert,
variables = "income",
aggr = 5, # group size k
method = "mdav" # Maximum Distance to Average Vector
)
print(sdc_micro, type = "numrisk")Numerical key variables: income, years_in_job
Disclosure risk is currently between [0.00%; 86.00%]
Current Information Loss:
- IL1: 885.42
- Difference of Eigenvalues: 0.150%
----------------------------------------------------------------------mdav groups records by their distance to the group centroid, then replaces each value with the group mean. With aggr = 5, at least 5 records share the same income value, so singling out an individual is harder.
sdc_noise <- addNoise(
obj = sdc_nonpert,
variables = "income",
noise = 0.1 # noise level as fraction of SD
)
print(sdc_noise, type = "numrisk")Numerical key variables: income, years_in_job
Disclosure risk is currently between [0.00%; 100.00%]
Current Information Loss:
- IL1: 8.64
- Difference of Eigenvalues: 0.010%
----------------------------------------------------------------------addNoise() draws from a normal distribution with mean 0 and standard deviation = noise × sd(income) and adds it to each value. Every record gets a unique (slightly wrong) income.
# Information loss after microaggregation
il_micro <- get.sdcMicroObj(sdc_micro, "utility")
# Information loss after noise addition
il_noise <- get.sdcMicroObj(sdc_noise, "utility")
il_micro$il1
[1] 885.4226
$il1s
[1] 5.423393
$eigen
[1] 0.001527126il_noise$il1
[1] 8.638875
$il1s
[1] 0.1086302
$eigen
[1] 0.0001205316Interpretation: Microaggregation typically produces lower IL1 (mean absolute deviation between original and perturbed values) because entire groups share one value — the average. Noise addition preserves individual-level variation better but introduces random error into every single record. For a dataset where income is used in regression analyses, noise addition is often preferable; for frequency tables or group comparisons, microaggregation is a safer choice.
Save objects
saveRDS(sdc_micro, "../sdc_micro.rds")
saveRDS(sdc_noise, "../sdc_noise.rds")sdcMicro R package