Flip: A provable defense framework for backdoor mitigation in federated learning
Federated Learning (FL) is a distributed learning paradigm that enables different parties to
train a model together for high quality and strong privacy protection. In this scenario …
train a model together for high quality and strong privacy protection. In this scenario …
Reinforcement learning-based black-box model inversion attacks
Abstract Model inversion attacks are a type of privacy attack that reconstructs private data
used to train a machine learning model, solely by accessing the model. Recently, white-box …
used to train a machine learning model, solely by accessing the model. Recently, white-box …
" Get in Researchers; We're Measuring Reproducibility": A Reproducibility Study of Machine Learning Papers in Tier 1 Security Conferences
D Olszewski, A Lu, C Stillman, K Warren… - Proceedings of the …, 2023 - dl.acm.org
Reproducibility is crucial to the advancement of science; it strengthens confidence in
seemingly contradictory results and expands the boundaries of known discoveries …
seemingly contradictory results and expands the boundaries of known discoveries …
Label-only model inversion attacks via knowledge transfer
BN Nguyen, K Chandrasegaran… - Advances in …, 2024 - proceedings.neurips.cc
In a model inversion (MI) attack, an adversary abuses access to a machine learning (ML)
model to infer and reconstruct private training data. Remarkable progress has been made in …
model to infer and reconstruct private training data. Remarkable progress has been made in …
All Rivers Run to the Sea: Private Learning with Asymmetric Flows
Data privacy is of great concern in cloud machine-learning service platforms when sensitive
data are exposed to service providers. While private computing environments (eg secure …
data are exposed to service providers. While private computing environments (eg secure …
A gan-based defense framework against model inversion attacks
With the development of deep learning, deep neural network (DNN)-based application have
become an indispensable aspect of daily life. However, recent studies have shown that …
become an indispensable aspect of daily life. However, recent studies have shown that …
Boosting model inversion attacks with adversarial examples
Model inversion attacks involve reconstructing the training data of a target model, which
raises serious privacy concerns for machine learning models. However, these attacks …
raises serious privacy concerns for machine learning models. However, these attacks …
Purifier: Defending data inference attacks via transforming confidence scores
Neural networks are susceptible to data inference attacks such as the membership inference
attack, the adversarial model inversion attack and the attribute inference attack, where the …
attack, the adversarial model inversion attack and the attribute inference attack, where the …
Privacy leakage on dnns: A survey of model inversion attacks and defenses
Model Inversion (MI) attacks aim to disclose private information about the training data by
abusing access to the pre-trained models. These attacks enable adversaries to reconstruct …
abusing access to the pre-trained models. These attacks enable adversaries to reconstruct …
Model Inversion Robustness: Can Transfer Learning Help?
Abstract Model Inversion (MI) attacks aim to reconstruct private training data by abusing
access to machine learning models. Contemporary MI attacks have achieved impressive …
access to machine learning models. Contemporary MI attacks have achieved impressive …