his.sePublications
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Integrally private model selection for decision trees
University of Skövde, School of Informatics. University of Skövde, The Informatics Research Centre. (Skövde Artificial Intelligence Lab)ORCID iD: 0000-0002-2564-0683
University of Skövde, School of Informatics. University of Skövde, The Informatics Research Centre. Maynooth University Hamilton Institute, Kildare, Ireland. (Skövde Artificial Intelligence Lab)ORCID iD: 0000-0002-0368-8037
2019 (English)In: Computers & security (Print), ISSN 0167-4048, E-ISSN 1872-6208, Vol. 83, p. 167-181Article in journal (Refereed) Published
Abstract [en]

Privacy attacks targeting machine learning models are evolving. One of the primary goals of such attacks is to infer information about the training data used to construct the models. “Integral Privacy” focuses on machine learning and statistical models which explain how we can utilize intruder's uncertainty to provide a privacy guarantee against model comparison attacks. Through experimental results, we show how the distribution of models can be used to achieve integral privacy. Here, we observe two categories of machine learning models based on their frequency of occurrence in the model space. Then we explain the privacy implications of selecting each of them based on a new attack model and empirical results. Also, we provide recommendations for private model selection based on the accuracy and stability of the models along with the diversity of training data that can be used to generate the models. 

Place, publisher, year, edition, pages
Elsevier Ltd , 2019. Vol. 83, p. 167-181
Keywords [en]
Data privacy, Integral privacy, Machine learning model space, Privacy models, Privacy preserving machine learning, Decision trees, Attack model, Machine learning models, Model comparison, Model Selection, Privacy Attacks, Privacy preserving, Training data, Machine learning
National Category
Computer Sciences
Research subject
Skövde Artificial Intelligence Lab (SAIL)
Identifiers
URN: urn:nbn:se:his:diva-16682DOI: 10.1016/j.cose.2019.01.006ISI: 000465367100013Scopus ID: 2-s2.0-85062062700OAI: oai:DiVA.org:his-16682DiVA, id: diva2:1294621
Available from: 2019-03-08 Created: 2019-03-08 Last updated: 2019-07-10Bibliographically approved

Open Access in DiVA

fulltext(2775 kB)19 downloads
File information
File name FULLTEXT01.pdfFile size 2775 kBChecksum SHA-512
470d260e414699fc4350e143639211ed36ad9526dbd76c0fde83c97e3c748499adaaa5e7b6c3239064dc19accc1d2eb03883779e9d24f03fd780389844a3b8b8
Type fulltextMimetype application/pdf

Other links

Publisher's full textScopus

Authority records BETA

Senavirathne, NavodaTorra, Vicenç

Search in DiVA

By author/editor
Senavirathne, NavodaTorra, Vicenç
By organisation
School of InformaticsThe Informatics Research Centre
In the same journal
Computers & security (Print)
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 19 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

doi
urn-nbn

Altmetric score

doi
urn-nbn
Total: 62 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • harvard1
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf