Mitigating membership inference attacks via weighted smoothing
Recent advancements in deep learning have spotlighted a crucial privacy vulnerability to membership inference attack (MIA), where adversaries can determine if specific data was present in a training set, thus potentially revealing sensitive information. In this paper, we introduce a technique, weigh...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2023
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/8613 https://ink.library.smu.edu.sg/context/sis_research/article/9616/viewcontent/MitigatingMembership_pvoa_cc_by.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-9616 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-96162024-01-25T08:21:14Z Mitigating membership inference attacks via weighted smoothing TAN, Minghan XIE, Xiaofei SUN, Jun WANG, Tianhao Recent advancements in deep learning have spotlighted a crucial privacy vulnerability to membership inference attack (MIA), where adversaries can determine if specific data was present in a training set, thus potentially revealing sensitive information. In this paper, we introduce a technique, weighted smoothing (WS), to mitigate MIA risks. Our approach is anchored on the observation that training samples differ in their vulnerability to MIA, primarily based on their distance to clusters of similar samples. The intuition is clusters will make model predictions more confident and increase MIA risks. Thus WS strategically introduces noise to training samples, depending on whether they are near a cluster or isolated. We evaluate WS against MIAs on multiple benchmark datasets and model architectures, demonstrating its effectiveness. We publish code at https://github.com/BennyTMT/weighted-smoothing. 2023-12-01T08:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/8613 info:doi/10.1145/3627106.3627189 https://ink.library.smu.edu.sg/context/sis_research/article/9616/viewcontent/MitigatingMembership_pvoa_cc_by.pdf http://creativecommons.org/licenses/by/3.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Information Security |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Information Security |
| spellingShingle |
Information Security TAN, Minghan XIE, Xiaofei SUN, Jun WANG, Tianhao Mitigating membership inference attacks via weighted smoothing |
| description |
Recent advancements in deep learning have spotlighted a crucial privacy vulnerability to membership inference attack (MIA), where adversaries can determine if specific data was present in a training set, thus potentially revealing sensitive information. In this paper, we introduce a technique, weighted smoothing (WS), to mitigate MIA risks. Our approach is anchored on the observation that training samples differ in their vulnerability to MIA, primarily based on their distance to clusters of similar samples. The intuition is clusters will make model predictions more confident and increase MIA risks. Thus WS strategically introduces noise to training samples, depending on whether they are near a cluster or isolated. We evaluate WS against MIAs on multiple benchmark datasets and model architectures, demonstrating its effectiveness. We publish code at https://github.com/BennyTMT/weighted-smoothing. |
| format |
text |
| author |
TAN, Minghan XIE, Xiaofei SUN, Jun WANG, Tianhao |
| author_facet |
TAN, Minghan XIE, Xiaofei SUN, Jun WANG, Tianhao |
| author_sort |
TAN, Minghan |
| title |
Mitigating membership inference attacks via weighted smoothing |
| title_short |
Mitigating membership inference attacks via weighted smoothing |
| title_full |
Mitigating membership inference attacks via weighted smoothing |
| title_fullStr |
Mitigating membership inference attacks via weighted smoothing |
| title_full_unstemmed |
Mitigating membership inference attacks via weighted smoothing |
| title_sort |
mitigating membership inference attacks via weighted smoothing |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2023 |
| url |
https://ink.library.smu.edu.sg/sis_research/8613 https://ink.library.smu.edu.sg/context/sis_research/article/9616/viewcontent/MitigatingMembership_pvoa_cc_by.pdf |
| _version_ |
1789483286786998272 |