Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Aegis: A Correlation-Based Data Masking Advisor for Data Sharing Ecosystems

Omar Islam Laskar, Fatemeh Ramezani Khozestani, Ishika Nankani, Sohrab Namazi Nia, Senjuti Basu Roy, Kaustubh Beedkar

TL;DR

Aegis tackles the privacy-utility tradeoff in data-sharing ecosystems by avoiding exhaustive evaluation of masking configurations. It introduces a joint distribution reconstruction approach based on Iterative Proportional Fitting to estimate unobserved attribute–label distributions under masking, and a model-agnostic Predictive Utility Deviation metric computed from correlation measures such as Mutual Information, Chi-Square, and g3. The framework selects masking configurations that minimize utility loss, performing well with or without 1D data summaries, and shows an order-of-magnitude speedup over baselines while maintaining competitive downstream performance. Empirical results on three real-world datasets demonstrate robust reconstruction quality (TVD < 0.55 with summaries) and substantial efficiency gains, validating Aegis as a practical middleware for privacy-preserving data sharing. The work complements existing privacy techniques (e.g., k-anonymity, DP) by focusing on preserving predictive utility in a task-agnostic manner, enabling scalable, privacy-compliant data exchange for downstream ML tasks.

Abstract

Data sharing ecosystems connect providers, consumers, and intermediaries to facilitate the exchange and use of data for a wide range of downstream tasks. In sensitive domains such as healthcare, privacy is enforced as a hard constraint, any shared data must satisfy a minimum privacy threshold. However, among all masking configurations that meet this requirement, the utility of the masked data can vary significantly, posing a key challenge: how to efficiently select the optimal configuration that preserves maximum utility. This paper presents Aegis, a middleware framework that selects optimal masking configurations for machine learning datasets with features and class labels. Aegis incorporates a utility optimizer that minimizes predictive utility deviation, quantifying shifts in feature label correlations due to masking. Our framework leverages limited data summaries (such as 1D histograms) or none to estimate the feature label joint distribution, making it suitable for scenarios where raw data is inaccessible due to privacy restrictions. To achieve this, we propose a joint distribution estimator based on iterative proportional fitting, which allows supporting various feature label correlation quantification methods such as mutual information, chi square, or g3. Our experimental evaluation of real world datasets shows that Aegis identifies optimal masking configurations over an order of magnitude faster, while the resulting masked datasets achieve predictive performance on downstream ML tasks on par with baseline approaches and complements privacy anonymization data masking techniques.

Aegis: A Correlation-Based Data Masking Advisor for Data Sharing Ecosystems

TL;DR

Aegis tackles the privacy-utility tradeoff in data-sharing ecosystems by avoiding exhaustive evaluation of masking configurations. It introduces a joint distribution reconstruction approach based on Iterative Proportional Fitting to estimate unobserved attribute–label distributions under masking, and a model-agnostic Predictive Utility Deviation metric computed from correlation measures such as Mutual Information, Chi-Square, and g3. The framework selects masking configurations that minimize utility loss, performing well with or without 1D data summaries, and shows an order-of-magnitude speedup over baselines while maintaining competitive downstream performance. Empirical results on three real-world datasets demonstrate robust reconstruction quality (TVD < 0.55 with summaries) and substantial efficiency gains, validating Aegis as a practical middleware for privacy-preserving data sharing. The work complements existing privacy techniques (e.g., k-anonymity, DP) by focusing on preserving predictive utility in a task-agnostic manner, enabling scalable, privacy-compliant data exchange for downstream ML tasks.

Abstract

Data sharing ecosystems connect providers, consumers, and intermediaries to facilitate the exchange and use of data for a wide range of downstream tasks. In sensitive domains such as healthcare, privacy is enforced as a hard constraint, any shared data must satisfy a minimum privacy threshold. However, among all masking configurations that meet this requirement, the utility of the masked data can vary significantly, posing a key challenge: how to efficiently select the optimal configuration that preserves maximum utility. This paper presents Aegis, a middleware framework that selects optimal masking configurations for machine learning datasets with features and class labels. Aegis incorporates a utility optimizer that minimizes predictive utility deviation, quantifying shifts in feature label correlations due to masking. Our framework leverages limited data summaries (such as 1D histograms) or none to estimate the feature label joint distribution, making it suitable for scenarios where raw data is inaccessible due to privacy restrictions. To achieve this, we propose a joint distribution estimator based on iterative proportional fitting, which allows supporting various feature label correlation quantification methods such as mutual information, chi square, or g3. Our experimental evaluation of real world datasets shows that Aegis identifies optimal masking configurations over an order of magnitude faster, while the resulting masked datasets achieve predictive performance on downstream ML tasks on par with baseline approaches and complements privacy anonymization data masking techniques.

Paper Structure

This paper contains 54 sections, 1 theorem, 8 equations, 12 figures, 2 tables, 2 algorithms.

Table of Contents

  1. Introduction
  2. Contributions.
  3. Preliminaries
  4. Dataset
  5. Domain of an attribute
  6. Masking Functions
  7. Domain of a masked attribute
  8. Masking Configuration & Masked Dataset
  9. Predictive Utility Measures of a Dataset
  10. High-Level Problem
  11. Correlation-Based Data Masking Advisor
  12. Aegis Overview
  13. Joint Distribution Reconstruction
  14. Predictive Utility Estimator
  15. Model Agnostic Predictive Utility
  16. ...and 39 more sections

Key Result

Lemma 1

Running time of Algorithm algo:best_masking is $\mathcal{O}(|{\boldsymbol{M}}_k| \times |\mathcal{M}_{\text{set}}| \times \mathbb{T})$, where $\mathbb{T}$ is the time it takes to run Subroutine Reconstruction once.

Figures (12)

  • Figure 1: Distribution of model accuracy across 50 masking configurations for Air Quality dataset airquality.
  • Figure 2: Determining optimal masking configuration using (a) traditional approach and (b) our proposed approach.
  • Figure 3: Excerpt of a dataset
  • Figure 4: Marginal distributions
  • Figure 6: Aegis Overview
  • ...and 7 more figures

Theorems & Definitions (7)

  • Example 1
  • Example 2
  • Example 3
  • Example 4
  • Lemma 1
  • Example 5
  • Example 6