Are we learning yet? a meta review of evaluation failures across machine learning
Many subfields of machine learning share a common stumbling block: evaluation. Advances
in machine learning often evaporate under closer scrutiny or turn out to be less widely …
in machine learning often evaporate under closer scrutiny or turn out to be less widely …
Exposed! a survey of attacks on private data
Privacy-preserving statistical data analysis addresses the general question of protecting
privacy when publicly releasing information about a sensitive dataset. A privacy attack takes …
privacy when publicly releasing information about a sensitive dataset. A privacy attack takes …
Privacy auditing with one (1) training run
We propose a scheme for auditing differentially private machine learning systems with a
single training run. This exploits the parallelism of being able to add or remove multiple …
single training run. This exploits the parallelism of being able to add or remove multiple …
Certified robustness to adversarial examples with differential privacy
Adversarial examples that fool machine learning models, particularly deep neural networks,
have been a topic of intense research interest, with attacks and defenses being developed …
have been a topic of intense research interest, with attacks and defenses being developed …
Privacy risk in machine learning: Analyzing the connection to overfitting
S Yeom, I Giacomelli, M Fredrikson… - 2018 IEEE 31st …, 2018 - ieeexplore.ieee.org
Machine learning algorithms, when applied to sensitive data, pose a distinct threat to
privacy. A growing body of prior work demonstrates that models produced by these …
privacy. A growing body of prior work demonstrates that models produced by these …
Deep learning with differential privacy
Machine learning techniques based on neural networks are achieving remarkable results in
a wide variety of domains. Often, the training of models requires large, representative …
a wide variety of domains. Often, the training of models requires large, representative …
Adaptive machine unlearning
Data deletion algorithms aim to remove the influence of deleted data points from trained
models at a cheaper computational cost than fully retraining those models. However, for …
models at a cheaper computational cost than fully retraining those models. However, for …
White-box vs black-box: Bayes optimal strategies for membership inference
Membership inference determines, given a sample and trained parameters of a machine
learning model, whether the sample was part of the training set. In this paper, we derive the …
learning model, whether the sample was part of the training set. In this paper, we derive the …
Concentrated differential privacy: Simplifications, extensions, and lower bounds
Abstract “Concentrated differential privacy” was recently introduced by Dwork and Rothblum
as a relaxation of differential privacy, which permits sharper analyses of many privacy …
as a relaxation of differential privacy, which permits sharper analyses of many privacy …
Multicalibration: Calibration for the (computationally-identifiable) masses
U Hébert-Johnson, M Kim… - International …, 2018 - proceedings.mlr.press
We develop and study multicalibration as a new measure of fairness in machine learning
that aims to mitigate inadvertent or malicious discrimination that is introduced at training time …
that aims to mitigate inadvertent or malicious discrimination that is introduced at training time …