BDPL: A boundary differentially private layer against machine learning model extraction attacks
Abstract Machine learning models trained by large volume of proprietary data and intensive
computational resources are valuable assets of their owners, who merchandise these …
computational resources are valuable assets of their owners, who merchandise these …
Protecting decision boundary of machine learning model with differentially private perturbation
Machine learning service API allows model owners to monetize proprietary models by
offering prediction services to third-party users. However, existing literature shows that …
offering prediction services to third-party users. However, existing literature shows that …
Monitoring-based differential privacy mechanism against query flooding-based model extraction attack
Public intelligent services enabled by machine learning algorithms are vulnerable to model
extraction attacks that can steal confidential information of the learning models through …
extraction attacks that can steal confidential information of the learning models through …
[PDF][PDF] Membership inference attack against differentially private deep learning model.
The unprecedented success of deep learning is largely dependent on the availability of
massive amount of training data. In many cases, these data are crowd-sourced and may …
massive amount of training data. In many cases, these data are crowd-sourced and may …
Defending privacy against more knowledgeable membership inference attackers
Membership Inference Attack (MIA) in deep learning is a common form of privacy attack
which aims to infer whether a data sample is in a target classifier's training dataset or not …
which aims to infer whether a data sample is in a target classifier's training dataset or not …
Not one but many tradeoffs: Privacy vs. utility in differentially private machine learning
Data holders are increasingly seeking to protect their user's privacy, whilst still maximizing
their ability to produce machine learning (ML) models with high quality predictions. In this …
their ability to produce machine learning (ML) models with high quality predictions. In this …
Towards measuring membership privacy
Machine learning models are increasingly made available to the masses through public
query interfaces. Recent academic work has demonstrated that malicious users who can …
query interfaces. Recent academic work has demonstrated that malicious users who can …
One parameter defense—defending against data inference attacks via differential privacy
Machine learning models are vulnerable to data inference attacks, such as membership
inference and model inversion attacks. In these types of breaches, an adversary attempts to …
inference and model inversion attacks. In these types of breaches, an adversary attempts to …
Broadening differential privacy for deep learning against model inversion attacks
Deep learning models have achieved great success in many real-world tasks such as image
recognition, machine translation, and self-driving cars. A large amount of data are needed to …
recognition, machine translation, and self-driving cars. A large amount of data are needed to …
Increasing the cost of model extraction with calibrated proof of work
In model extraction attacks, adversaries can steal a machine learning model exposed via a
public API by repeatedly querying it and adjusting their own model based on obtained …
public API by repeatedly querying it and adjusting their own model based on obtained …