Data provenance via differential auditing

Data provenance via differential auditing

With the rising awareness of data assets, data governance, which is to understand where data comes from, how it is collected, and how it is used, has been assuming evergrowing importance. One critical component of data governance gaining increasing attention is auditing machine learning models to de...

Full description

Saved in:
Bibliographic Details
Main Authors: MU, Xin, PANG, Ming, ZHU, Feida
Format: text
Language:English
Published: Institutional Knowledge at Singapore Management University 2023
Subjects:
Data models
training data
biological system modeling
computational modeling
predictive models
machine learning
Databases and Information Systems
Data Storage Systems
Numerical Analysis and Scientific Computing
Online Access:https://ink.library.smu.edu.sg/sis_research/7808
https://ink.library.smu.edu.sg/context/sis_research/article/8811/viewcontent/2209.01538.pdf
Tags: Add Tag
No Tags, Be the first to tag this record!
Institution: Singapore Management University
Language: English
Description
Summary:With the rising awareness of data assets, data governance, which is to understand where data comes from, how it is collected, and how it is used, has been assuming evergrowing importance. One critical component of data governance gaining increasing attention is auditing machine learning models to determine if specific data has been used for training. Existing auditing techniques, like shadow auditing methods, have shown feasibility under specific conditions such as having access to label information and knowledge of training protocols. However, these conditions are often not met in most real-world applications. In this paper, we introduce a practical framework for auditing data provenance based on a differential mechanism, i.e., after carefully designed transformation, perturbed input data from the target model's training set would result in much more drastic changes in the output than those from the model's non-training set. Our framework is data-dependent and does not require distinguishing training data from non-training data or training additional shadow models with labeled output data. Furthermore, our framework extends beyond point-based data auditing to group-based data auditing, aligning with the needs of real-world applications. Our theoretical analysis of the differential mechanism and the experimental results on real-world data sets verify the proposal's effectiveness. The codes have been uploaded in an anonymous link.

Similar Items