Optimal privacy guarantees for a relaxed threat model: Addressing sub-optimal adversaries in differentially private machine learning
Dec 10, 2023
Speakers
Georgios Kaissis
Speaker · 0 followers
Alexander Ziller
Speaker · 0 followers
Stefan Kolek
Speaker · 0 followers
Anneliese Riess
Speaker · 0 followers
Daniel Rueckert
Speaker · 0 followers
About
Differentially private mechanisms restrict the membership inference capabilities of powerful (optimal) adversaries against machine learning models. Such adversaries are rarely encountered in practice. In this work, we examine a common threat model relaxation, where (sub-optimal) adversaries lack access to the exact model training database, but may possess related or partial data. We then derive a full formal characterisation of adversarial membership inference capabilities in this setting in terms of hypothesis testing errors, which we validate experimentally. Our work can help stakeholders to better understand the privacy properties of sensitive data processing systems under realistic threat model relaxations.Differentially private mechanisms restrict the membership inference capabilities of powerful (optimal) adversaries against machine learning models. Such adversaries are rarely encountered in practice. In this work, we examine a common threat model relaxation, where (sub-optimal) adversaries lack access to the exact model training database, but may possess related or partial data. We then derive a full formal characterisation of adversarial membership inference capabilities in this setting in ter…
Organizer
NeurIPS 2023
Account · 623 followers
Like the format? Trust SlidesLive to capture your next event!
Professional recording and live streaming, delivered globally.
Sharing
Recommended Videos
Presentations on similar topic, category or speaker
Casual Context: Connects Counterfactual Fairness to Robust Prediction and Group Fairness
Watch later
Total of 0 viewers voted for saving the presentation to eternal vault which is 0.0%
FORB: A Flat Object Retrieval Benchmark for Universal Image Embedding
Watch later
Pengxiang Wu, …
Total of 0 viewers voted for saving the presentation to eternal vault which is 0.0%
Randomly Weighted Neuromodulation in Neural Networks Facilitates Learning of Manifolds Common Across Tasks
Watch later
Jinyung Hong, …
Total of 0 viewers voted for saving the presentation to eternal vault which is 0.0%
Optimal and Fair Encouragement Policy Evaluation and Learning
Watch later
Total of 0 viewers voted for saving the presentation to eternal vault which is 0.0%
Better Model Development? Make Data the Star of the Show
Watch later
Brian Moore, …
Total of 0 viewers voted for saving the presentation to eternal vault which is 0.0%
Visual Programming for Text-to-Image Generation and Evaluation
Watch later
Jaemin Cho, …
Total of 0 viewers voted for saving the presentation to eternal vault which is 0.0%