Dissecting Membership Inference Risk in Machine Learning

Senavirathne, Navoda; Torra, Vicenç

his.sePublikasjoner

Enkelt søk

Avansert søk -
Forskningspublikasjoner Avansert søk -
Studentoppgaver Statistikk

English Svenska Norsk

Endre søk

Referera ExporteraLink to record

Permanent link

https://urn.kb.se/resolve?urn=urn:nbn:se:his:diva-20889

Direct link

https://his.diva-portal.org/smash/record.jsf?pid=diva2:1634630

Referera

Referensformat

apa
apa-cv
ieee
modern-language-association-8th-edition
vancouver
Annet format

Fler format

Språk

de-DE
en-GB
en-US
fi-FI
nn-NO
nn-NB
sv-SE
Annet språk

Fler språk

Utmatningsformat

html
text
asciidoc
rtf

Dissecting Membership Inference Risk in Machine Learning

Senavirathne, Navoda

Högskolan i Skövde, Institutionen för informationsteknologi. Högskolan i Skövde, Forskningsmiljön Informationsteknologi. (Skövde Artificial Intelligence Lab (SAIL))ORCID-id: 0000-0002-2564-0683

Torra, Vicenç

Department of Computer Science, University of Umeå, Sweden. (Skövde Artificial Intelligence Lab (SAIL))ORCID-id: 0000-0002-0368-8037

2022 (engelsk)Inngår i: Cyberspace Safety and Security: 13th International Symposium, CSS 2021, Virtual Event, November 9–11, 2021, Proceedings / [ed] Weizhi Meng; Mauro Conti, Springer, 2022, s. 36-54Konferansepaper, Publicerat paper (Fagfellevurdert)

Abstract [en]

Membership inference attacks (MIA) have been identified as a distinct threat to privacy when sensitive personal data are used to train the machine learning (ML) models. This work is aimed at deepening our understanding with respect to the existing black-box MIAs while introducing a new label only MIA model. The proposed MIA model can successfully exploit the well generalized models challenging the conventional wisdom that states generalized models are immune to membership inference. Through systematic experimentation, we show that the proposed MIA model can outperform the existing attack models while being more resilient towards manipulations to the membership inference results caused by the selection of membership validation data.

sted, utgiver, år, opplag, sider

Springer, 2022. s. 36-54

Serie

Lecture Notes in Computer Science, ISSN 0302-9743, E-ISSN 1611-3349 ; 13172

Emneord [en]

Data privacy, Membership inference attack, Privacy preserving machine learning, Privacy-preserving techniques, Attack modeling, Black boxes, Generalized models, Inference attacks, Inference risk, Machine learning models, Machine-learning, Privacy preserving, Machine learning

HSV kategori

Forskningsprogram

Skövde Artificial Intelligence Lab (SAIL)

Identifikatorer

URN: urn:nbn:se:his:diva-20889DOI: 10.1007/978-3-030-94029-4_3Scopus ID: 2-s2.0-85123431800ISBN: 978-3-030-94028-7 (tryckt)ISBN: 978-3-030-94029-4 (digital)OAI: oai:DiVA.org:his-20889DiVA, id: diva2:1634630

Konferanse

CSS 2021, 13th International Symposium on Cyberspace Safety and Security, Copenhagen, Denmark (Online), 9-11 November 2021

Merknad

Also part of the Security and Cryptology book sub series (LNSC, volume 13172)

Tilgjengelig fra: 2022-02-03 Laget: 2022-02-03 Sist oppdatert: 2025-09-29bibliografisk kontrollert

Open Access i DiVA

Fulltekst mangler i DiVA

Andre lenker

Forlagets fulltekstScopus

Person

Senavirathne, Navoda Torra, Vicenç

Søk i DiVA

Av forfatter/redaktør

Senavirathne, Navoda Torra, Vicenç

Av organisasjonen

Om emnet

Søk utenfor DiVA

Google Google Scholar

doi

isbn

urn-nbn

Totalt: 275 treff