[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays

To: tor-dev@xxxxxxxxxxxxxxxxxxxx
Subject: Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
From: "A. Johnson" <aaron.m.johnson@xxxxxxxxxxxx>
Date: Wed, 10 Dec 2014 09:37:59 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 10 Dec 2014 09:38:15 -0500
In-reply-to: <5488150F.2020409@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev/>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <8761e3uqoc.fsf@xxxxxxxxxx> <877fy2rnbz.fsf@xxxxxxxxxx> <CB690905-7F10-41FD-B037-E5E1CE66C62F@xxxxxxxxxxxx> <87lhmgfztc.fsf@xxxxxxxxxx> <99CBC25A-8809-4358-B398-603686F56FE4@xxxxxxxxxxxx> <5488150F.2020409@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-dev" <tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx>

> But I don't see the value of binning the result once more.  In a
> sense, we're already binning signal + noise by cutting off the float
> part.  I don't see what we gain by reducing resolution even more.  It
> seems just unnecessary.

In principle releasing the number could result in different differential-privacy guarantees than releasing the bin. However, the way I had in mind to set the Laplace parameters this wouldnât be an issue, because the Laplace distributions themselves would satisfy the desired differential privacy guarantee (and not just the resulting distribution on bins).

So I guess this could be viewed as a post-processing step that is useful for clarity rather than privacy: namely, that the output should be interpreted as a range. But we could leave this to the data consumer to apply without a privacy issue.

Also, I believe that the parameters we had discussed should change. To see why, observe that the Laplace distributions for two adjacent values that cross a bin barrier are now very far apart after being recentered within the appropriate bins. Thus, \delta_f should increase if it is smaller than the maximum number of bins that can be crossed within that \delta_f multiplied by the bin size. With our previous numbers, the new \delta_f for rendezvous cell counts doesnât change (still 2048), but the new \delta_f for HS descriptors counts is 8.

Aaron
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

Follow-Ups:
- Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
  - From: Karsten Loesing

References:
- Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
  - From: George Kadianakis
- Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
  - From: A. Johnson
- Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
  - From: George Kadianakis
- Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
  - From: A. Johnson
- Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
  - From: Karsten Loesing

Prev by Author: Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
Next by Author: Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
Previous by thread: Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
Next by thread: Re: [tor-dev] Proposal draft: Better hidden service stats from Tor relays
Index(es):
- Author
- Thread