datasynth-eval 3.1.1

Evaluation framework for synthetic financial data quality and coherence
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394

//! Privacy metrics: NIST SP 800-226 alignment and SynQP quality-privacy matrix.
//!
//! Provides structured self-assessment against NIST standards for synthetic data
//! and a quality-privacy evaluation quadrant (SynQP) for high-level classification.

use serde::{Deserialize, Serialize};

/// NIST SP 800-226 alignment self-assessment report.
///
/// Maps DataSynth's privacy controls to NIST criteria for evaluating
/// de-identification and synthetic data methodologies.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct NistAlignmentReport {
    /// Whether differential privacy is applied.
    pub differential_privacy_applied: bool,
    /// Epsilon value used (if applicable).
    pub epsilon: Option<f64>,
    /// Delta value used (if applicable).
    pub delta: Option<f64>,
    /// The composition method used.
    pub composition_method: Option<String>,
    /// Whether k-anonymity is enforced.
    pub k_anonymity_enforced: bool,
    /// The k-anonymity level achieved.
    pub k_anonymity_level: Option<usize>,
    /// Whether membership inference was tested.
    pub membership_inference_tested: bool,
    /// MIA AUC-ROC result (if tested).
    pub mia_auc_roc: Option<f64>,
    /// Whether linkage attack was tested.
    pub linkage_attack_tested: bool,
    /// Re-identification rate (if tested).
    pub re_identification_rate: Option<f64>,
    /// Overall NIST alignment score (0.0-1.0).
    /// Based on how many criteria are met.
    pub alignment_score: f64,
    /// Individual criterion assessments.
    pub criteria: Vec<NistCriterion>,
    /// Whether the overall assessment passes.
    pub passes: bool,
}

/// A single NIST criterion assessment.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct NistCriterion {
    /// Criterion identifier (e.g., "DP-1", "KA-1", "MIA-1").
    pub id: String,
    /// Human-readable description.
    pub description: String,
    /// Whether this criterion is met.
    pub met: bool,
    /// Evidence or rationale.
    pub evidence: String,
}

impl NistAlignmentReport {
    /// Build a NIST alignment report from privacy evaluation results.
    pub fn build(
        dp_applied: bool,
        epsilon: Option<f64>,
        delta: Option<f64>,
        composition_method: Option<String>,
        k_anonymity_enforced: bool,
        k_anonymity_level: Option<usize>,
        mia_auc_roc: Option<f64>,
        re_identification_rate: Option<f64>,
    ) -> Self {
        let mut criteria = Vec::new();

        // DP criteria
        criteria.push(NistCriterion {
            id: "DP-1".to_string(),
            description: "Differential privacy mechanism applied".to_string(),
            met: dp_applied,
            evidence: if dp_applied {
                format!(
                    "DP applied with epsilon={}, delta={}, method={}",
                    epsilon.map_or("N/A".to_string(), |e| format!("{e:.4}")),
                    delta.map_or("N/A".to_string(), |d| format!("{d:.2e}")),
                    composition_method.as_deref().unwrap_or("naive"),
                )
            } else {
                "No differential privacy mechanism applied".to_string()
            },
        });

        criteria.push(NistCriterion {
            id: "DP-2".to_string(),
            description: "Epsilon within reasonable bounds (< 10.0)".to_string(),
            met: epsilon.is_some_and(|e| e < 10.0),
            evidence: epsilon.map_or("No epsilon specified".to_string(), |e| {
                format!("Epsilon = {e:.4}")
            }),
        });

        // K-anonymity criteria
        criteria.push(NistCriterion {
            id: "KA-1".to_string(),
            description: "K-anonymity enforced with k >= 5".to_string(),
            met: k_anonymity_enforced && k_anonymity_level.is_some_and(|k| k >= 5),
            evidence: if k_anonymity_enforced {
                format!(
                    "K-anonymity enforced, k = {}",
                    k_anonymity_level.map_or("unknown".to_string(), |k| k.to_string())
                )
            } else {
                "K-anonymity not enforced".to_string()
            },
        });

        // MIA criteria
        let mia_tested = mia_auc_roc.is_some();
        criteria.push(NistCriterion {
            id: "MIA-1".to_string(),
            description: "Membership inference attack tested".to_string(),
            met: mia_tested,
            evidence: if mia_tested {
                format!("MIA AUC-ROC = {:.4}", mia_auc_roc.unwrap_or(0.0))
            } else {
                "MIA not tested".to_string()
            },
        });

        criteria.push(NistCriterion {
            id: "MIA-2".to_string(),
            description: "MIA AUC-ROC < 0.6 (near-random)".to_string(),
            met: mia_auc_roc.is_some_and(|auc| auc < 0.6),
            evidence: mia_auc_roc.map_or("MIA not tested".to_string(), |auc| {
                format!("AUC-ROC = {auc:.4}")
            }),
        });

        // Linkage criteria
        let linkage_tested = re_identification_rate.is_some();
        criteria.push(NistCriterion {
            id: "LA-1".to_string(),
            description: "Linkage attack tested".to_string(),
            met: linkage_tested,
            evidence: if linkage_tested {
                format!(
                    "Re-identification rate = {:.4}",
                    re_identification_rate.unwrap_or(0.0)
                )
            } else {
                "Linkage attack not tested".to_string()
            },
        });

        criteria.push(NistCriterion {
            id: "LA-2".to_string(),
            description: "Re-identification rate < 5%".to_string(),
            met: re_identification_rate.is_some_and(|r| r < 0.05),
            evidence: re_identification_rate.map_or("Not tested".to_string(), |r| {
                format!("Re-identification rate = {:.2}%", r * 100.0)
            }),
        });

        let met_count = criteria.iter().filter(|c| c.met).count();
        let alignment_score = if criteria.is_empty() {
            0.0
        } else {
            met_count as f64 / criteria.len() as f64
        };

        // Pass if at least 5 out of 7 criteria are met
        let passes = met_count >= 5;

        Self {
            differential_privacy_applied: dp_applied,
            epsilon,
            delta,
            composition_method,
            k_anonymity_enforced,
            k_anonymity_level,
            membership_inference_tested: mia_tested,
            mia_auc_roc,
            linkage_attack_tested: linkage_tested,
            re_identification_rate,
            alignment_score,
            criteria,
            passes,
        }
    }
}

/// Quality-Privacy evaluation quadrant (SynQP).
///
/// Classifies synthetic data output into one of four quadrants based on
/// how well it balances data quality (utility) with privacy protection.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Serialize, Deserialize)]
pub enum SynQPQuadrant {
    /// High quality, high privacy — the ideal outcome.
    HighQHighP,
    /// High quality, low privacy — useful but risky.
    HighQLowP,
    /// Low quality, high privacy — safe but less useful.
    LowQHighP,
    /// Low quality, low privacy — worst outcome.
    LowQLowP,
}

impl std::fmt::Display for SynQPQuadrant {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            Self::HighQHighP => write!(f, "High Quality / High Privacy (Ideal)"),
            Self::HighQLowP => write!(f, "High Quality / Low Privacy (Risky)"),
            Self::LowQHighP => write!(f, "Low Quality / High Privacy (Conservative)"),
            Self::LowQLowP => write!(f, "Low Quality / Low Privacy (Poor)"),
        }
    }
}

/// SynQP matrix evaluation result.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct SynQPMatrix {
    /// Quality score (0.0 - 1.0). Derived from data evaluation metrics.
    pub quality_score: f64,
    /// Privacy score (0.0 - 1.0). Derived from privacy evaluation metrics.
    pub privacy_score: f64,
    /// The quadrant classification.
    pub quadrant: SynQPQuadrant,
    /// Quality threshold for high/low classification.
    pub quality_threshold: f64,
    /// Privacy threshold for high/low classification.
    pub privacy_threshold: f64,
}

impl SynQPMatrix {
    /// Compute the SynQP matrix from quality and privacy scores.
    ///
    /// # Arguments
    /// * `quality_score` - Overall data quality score (0.0-1.0, higher = better quality)
    /// * `privacy_score` - Overall privacy score (0.0-1.0, higher = better privacy)
    /// * `quality_threshold` - Threshold for high vs low quality (default: 0.7)
    /// * `privacy_threshold` - Threshold for high vs low privacy (default: 0.7)
    pub fn evaluate(
        quality_score: f64,
        privacy_score: f64,
        quality_threshold: f64,
        privacy_threshold: f64,
    ) -> Self {
        let quadrant = match (
            quality_score >= quality_threshold,
            privacy_score >= privacy_threshold,
        ) {
            (true, true) => SynQPQuadrant::HighQHighP,
            (true, false) => SynQPQuadrant::HighQLowP,
            (false, true) => SynQPQuadrant::LowQHighP,
            (false, false) => SynQPQuadrant::LowQLowP,
        };

        Self {
            quality_score,
            privacy_score,
            quadrant,
            quality_threshold,
            privacy_threshold,
        }
    }

    /// Evaluate with default thresholds (0.7 for both).
    pub fn evaluate_default(quality_score: f64, privacy_score: f64) -> Self {
        Self::evaluate(quality_score, privacy_score, 0.7, 0.7)
    }
}

#[cfg(test)]
#[allow(clippy::unwrap_used)]
mod tests {
    use super::*;

    #[test]
    fn test_nist_report_all_criteria_met() {
        let report = NistAlignmentReport::build(
            true,
            Some(1.0),
            Some(1e-5),
            Some("renyi_dp".to_string()),
            true,
            Some(10),
            Some(0.52),
            Some(0.01),
        );

        assert!(report.passes);
        assert!(report.alignment_score > 0.9);
        assert_eq!(report.criteria.len(), 7);
        assert!(report.criteria.iter().all(|c| c.met));
    }

    #[test]
    fn test_nist_report_no_privacy() {
        let report = NistAlignmentReport::build(
            false, // no DP
            None, None, None, false, // no k-anonymity
            None, None, // no MIA
            None, // no linkage
        );

        assert!(!report.passes);
        assert_eq!(report.alignment_score, 0.0);
        assert!(report.criteria.iter().all(|c| !c.met));
    }

    #[test]
    fn test_nist_report_partial() {
        let report = NistAlignmentReport::build(
            true,
            Some(5.0),
            Some(1e-5),
            Some("naive".to_string()),
            true,
            Some(3),    // k=3, which is < 5 threshold
            Some(0.55), // passes MIA
            Some(0.03), // passes linkage
        );

        // DP-1: met, DP-2: met (5<10), KA-1: NOT met (3<5),
        // MIA-1: met, MIA-2: met (0.55<0.6), LA-1: met, LA-2: met (0.03<0.05)
        let met = report.criteria.iter().filter(|c| c.met).count();
        assert_eq!(met, 6); // 6 out of 7
        assert!(report.passes);
    }

    #[test]
    fn test_nist_report_serde() {
        let report = NistAlignmentReport::build(
            true,
            Some(1.0),
            Some(1e-5),
            None,
            true,
            Some(10),
            Some(0.5),
            Some(0.01),
        );
        let json = serde_json::to_string(&report).unwrap();
        let parsed: NistAlignmentReport = serde_json::from_str(&json).unwrap();
        assert_eq!(parsed.criteria.len(), 7);
        assert!(parsed.passes);
    }

    #[test]
    fn test_synqp_high_quality_high_privacy() {
        let matrix = SynQPMatrix::evaluate_default(0.85, 0.90);
        assert_eq!(matrix.quadrant, SynQPQuadrant::HighQHighP);
    }

    #[test]
    fn test_synqp_high_quality_low_privacy() {
        let matrix = SynQPMatrix::evaluate_default(0.85, 0.40);
        assert_eq!(matrix.quadrant, SynQPQuadrant::HighQLowP);
    }

    #[test]
    fn test_synqp_low_quality_high_privacy() {
        let matrix = SynQPMatrix::evaluate_default(0.30, 0.90);
        assert_eq!(matrix.quadrant, SynQPQuadrant::LowQHighP);
    }

    #[test]
    fn test_synqp_low_quality_low_privacy() {
        let matrix = SynQPMatrix::evaluate_default(0.30, 0.40);
        assert_eq!(matrix.quadrant, SynQPQuadrant::LowQLowP);
    }

    #[test]
    fn test_synqp_custom_thresholds() {
        // With low thresholds, everything is "high"
        let matrix = SynQPMatrix::evaluate(0.5, 0.5, 0.3, 0.3);
        assert_eq!(matrix.quadrant, SynQPQuadrant::HighQHighP);
    }

    #[test]
    fn test_synqp_display() {
        assert_eq!(
            format!("{}", SynQPQuadrant::HighQHighP),
            "High Quality / High Privacy (Ideal)"
        );
        assert_eq!(
            format!("{}", SynQPQuadrant::LowQLowP),
            "Low Quality / Low Privacy (Poor)"
        );
    }

    #[test]
    fn test_synqp_serde() {
        let matrix = SynQPMatrix::evaluate_default(0.8, 0.9);
        let json = serde_json::to_string(&matrix).unwrap();
        let parsed: SynQPMatrix = serde_json::from_str(&json).unwrap();
        assert_eq!(parsed.quadrant, SynQPQuadrant::HighQHighP);
        assert!((parsed.quality_score - 0.8).abs() < 1e-10);
    }
}