Source linked

Les États-Unis interdisent la confidentialité différentielle pour le recensement, forçant un choix entre des données inutiles et non sécurisées

desfontain.es@systems_wire3 hours ago·Technology Policy·4 comments

Un nouvel ordre du Département du Commerce interdit l'infiltration de bruit dans les produits statistiques, privant le Bureau du recensement de son meilleur outil de confidentialité et laissant seulement des alternatives flagrantes ou dangereuses.

us census bureaudepartment of commercedifferential privacydisclosure avoidanceprivacy policystatistical disclosure

Last week the Commerce Department banned "noise infusion" from all Census Bureau and Bureau of Economic Analysis statistical products — a move that kills differential privacy by fiat and forces an impossible tradeoff.

Differential privacy works by adding calibrated random noise to statistics, limiting how much any single person's data can affect the output. That noise is precisely what the order prohibits. The text goes further, requiring that coarsening (e.g., turning a county into a state) be preferred and that suppression be used only as a "last resort." Any method involving randomness — sampling, swapping, cell key — is now suspect.

Why differential privacy became the default

From 1990 to 2010 the Census relied on swapping records to protect privacy. That turned out to be trivially breakable: researchers showed they could reconstruct individual responses from published tables. Political operatives and demographers admitted to doing exactly that, often for gerrymandering. When the Bureau adopted differential privacy for the 2020 Census, it wasn't because the math was elegant — it was the only option that stopped record-reconstruction attacks while keeping the data usable.

The order's practical fallout

Ted, the privacy researcher behind this analysis, puts it bluntly: future statistical releases will be either useless or unsafe. Coarsening and suppression are blunt instruments — they gut the granularity that social scientists, economists, and policymakers need. If agencies try to avoid noise by falling back to swapping or sampling, they're reintroducing randomness, which the order appears to forbid. The only path that doesn't violate the order is releasing heavily aggregated or suppressed numbers that bear little resemblance to the detailed statistics users depend on.

Meanwhile, the confidentiality obligations under federal law remain in full effect. The order itself says it "shall not be interpreted to conflict with any constitutional, statutory, regulatory, or other legal provision." So the Census Bureau must still protect individual records, but the one tool that made that possible while preserving utility is now illegal.

The Bureau now faces the impossible task of producing useful statistics without the only technique that made them both useful and safe.

Source: US bans differential privacy in Census data
Domain: desfontain.es

Read original source ->

External source stays available while the OJO article and comment thread stay local.

More in Technology Policy

view topic
State AGs Subpoena OpenAI Over Sycophancy, Data, and Child Safety

A coalition of state attorneys general demands documents on ChatGPT's model sycophancy, user retention tactics, and treatment of vulnerable populations.

US Government Forces Anthropic to Kill Fable 5 and Mythos 5 Access

Anthropic cut off two flagship models to comply with a government national security order, despite receiving no written evidence of the alleged jailbreak vulnerabilities.

US Gov Orders Anthropic to Kill Fable 5 Over a Jailbreak Any Model Can Do

At 5:21pm ET on June 12, the US government ordered Anthropic to suspend Fable 5 and Mythos 5 for all foreign nationals, citing a narrow jailbreak that other models like GPT-5.5 already handle.

US Export Control on Anthropic's Fable 5 Kills Global Access

First-ever US export control directive targeting an LLM forced Anthropic to pull Fable 5 and Mythos 5 worldwide, hitting even the company's own foreign-national employees.

Comments load interactively on the live page.