Clues to quality of journals
Open Access Policy of Helmholtz Association 2016
CC Licencences
Publication Metrics
Home
Deutsch
New EVA Application
Advanced Search
Browse by ...
Publication overview
Statistics (last 5 years)
OA Publications
Submit Publication
Import publication from...
Report missing publication
Contact persons
Help
Text
Endnote (RIS)
BibTeX |
|
as soon as is submitted to ZB.
Optimal privacy guarantees for a relaxed threat model: Addressing sub-optimal adversaries in differentially private machine learning.
In: (37th Conference on Neural Information Processing Systems (NeurIPS), 10-16 December 2023, New Orleans, LA). 10010 North Torrey Pines Rd, La Jolla, California 92037 Usa: Neural Information Processing Systems (nips), 2023. 24
Differentially private mechanisms restrict the membership inference capabilities of powerful (optimal) adversaries against machine learning models. Such adversaries are rarely encountered in practice. In this work, we examine a more realistic threat model relaxation, where (sub-optimal) adversaries lack access to the exact model training database, but may possess related or partial data. We then formally characterise and experimentally validate adversarial membership inference capabilities in this setting in terms of hypothesis testing errors. Our work helps users to interpret the privacy properties of sensitive data processing systems under realistic threat model relaxations and choose appropriate noise levels for their use-case.
Annotations
Special Publikation
Hide on homepage
Publication type
Article: Conference contribution
Language
english
Publication Year
2023
HGF-reported in Year
2023
ISSN (print) / ISBN
1049-5258
Conference Title
37th Conference on Neural Information Processing Systems (NeurIPS)
Conference Date
10-16 December 2023
Conference Location
New Orleans, LA
Quellenangaben
Pages: 24
Publisher
Neural Information Processing Systems (nips)
Publishing Place
10010 North Torrey Pines Rd, La Jolla, California 92037 Usa
Institute(s)
Institute for Machine Learning in Biomed Imaging (IML)
POF-Topic(s)
30205 - Bioengineering and Digital Health
Research field(s)
Enabling and Novel Technologies
PSP Element(s)
G-507100-001
Grants
German Federal Ministry of Education and Research
Konrad Zuse School of Excellence in Reliable AI (RelAI)
Bavarian State Ministry for Science and the Arts through the Munich Centre for Machine Learning (MCML)
Helmholtz Junior Research Group grant
Konrad Zuse School of Excellence in Reliable AI (RelAI)
Bavarian State Ministry for Science and the Arts through the Munich Centre for Machine Learning (MCML)
Helmholtz Junior Research Group grant
WOS ID
001227224005038
Erfassungsdatum
2024-07-30