Skip to content

PET Architectures

Architecture pages turn PET choices into deployable system shapes. They emphasize actors, data flow, trust boundaries, PET stack, deployment notes, tradeoffs, and failure modes.

Architecture Catalog

Architecture Use when Main trust-boundary question
FL + secure aggregation Individual model updates should be hidden from the coordinator Who can see individual updates before aggregation?
FL + differential privacy Training participation or records need formal protection What privacy unit and budget apply to the released model?
MPC analytics pipeline Multiple parties need joint analytics without a trusted central processor Which parties may collude, and what output is allowed?
HE private inference API Clients need inference without revealing plaintext inputs Who controls encryption keys and sees predictions?
Confidential RAG Retrieval and generation cross sensitive trust boundaries Who can see prompts, snippets, logs, and answers?
Synthetic data release pipeline Teams need data-like artifacts with privacy and utility review What privacy claim applies to the released artifact?

Review Standard

Every architecture should make these visible:

  • actors and data owners;
  • data flows, including logs and outputs;
  • trust boundaries and control points;
  • assumptions about hardware, collusion, keys, and participants;
  • what the PET does not protect against;
  • operational risks and evaluation checks.

If a diagram omits logs or outputs, assume the architecture is incomplete until the text covers them.