Membership Inference Attacks on Sequence-to-Sequence Models: Is My Data In Your Machine Translation System?

04/07/2020

Membership Inference Attacks on Sequence-to-Sequence Models: Is My Data In Your Machine Translation System?

Sorami Hisamoto, Matt Post, Kevin Duh

Keywords: Machine System, Data privacy, machine learning, membership attacks

Abstract Paper Similar Papers

Abstract: Data privacy is an important issue for "machine learning as a service" providers. We focus on the problem of membership inference attacks: given a data sample and black-box access to a model's API, determine whether the sample existed in the model's training data. Our contribution is an investigation of this problem in the context of sequence-to-sequence models, which are important in applications such as machine translation and video captioning. We define the membership inference problem for sequence generation, provide an open dataset based on state-of-the-art machine translation models, and report initial results on whether these models leak private information against several kinds of membership inference attacks.

0

0

0

0

Share

This is an embedded video. Talk and the respective paper are published at ACL 2020 virtual conference. If you are one of the authors of the paper and want to manage your upload, see the question "My papertalk has been externally embedded..." in the FAQ section.

Comments

Post Comment

no comments yet

Similar Papers

03/05/2021

Deep Neural Network Fingerprinting by Conferrable Adversarial Examples

Nils Lukas, Yuxuan Zhang, Florian Kerschbaum

Keywords Paper

Adversarial Examples, Conferrability, Transferability, Fingerprinting

0

0

0

0

10:11

13/04/2021

On the privacy properties of GAN-generated samples

Zinan Lin, Vyas Sekar, Giulia Fanti

Keywords Paper

0

0

0

0

3:09

12/08/2020

Exploring Connections Between Active Learning and Model Extraction

Varun Chandrasekaran, Kamalika Chaudhuri, Irene Giacomelli and
Somesh Jha, Songbai Yan

Keywords Paper

0

0

0

0

10:28

06/12/2021

Interpreting Representation Quality of DNNs for 3D Point Cloud Processing

Wen Shen, Qihan Ren, Dongrui Liu, Quanshi Zhang

Keywords Paper

deep learning, adversarial robustness and security, interpretability

0

0

0

0

14:14

02/02/2021

Membership Privacy for Machine Learning Models Through Knowledge Transfer

Virat Shejwalkar, Amir Houmansadr

Keywords Paper

0

0

0

0

18:01

18/07/2021

Label-Only Membership Inference Attacks

Christopher Choquette-Choo, Florian Tramer, Nicholas Carlini, Nicolas Papernot

Keywords Paper

Social Aspects of Machine Learning, Privacy, Anonymity, and Security

0

0

0

0

5:20

13/04/2021

Optimal query complexity for private sequential learning against eavesdropping

Jiaming Xu, Kuang Xu, Dana Yang

Keywords Paper

0

0

0

0

3:05

12/08/2020

You Are What You Broadcast: Identification of Mobile and IoT Devices from (Public) WiFi

Lingjing Yu, Bo Luo, Jun Ma and
Zhaoyu Zhou, Qingyun Liu

Keywords Paper

0

0

0

0

11:12

29/06/2020

Did you remember to test your tokens?

Danielle Gonzalez, Michael Rath, Mehdi Mirakhorli

Keywords Paper

Repository Mining, Security Test, Java, Unit Test, Authentication

0

0

0

0

14:09

23/08/2020

TIPRDC: Task-independent privacy-respecting data crowdsourcing framework for deep learning with anonymized intermediate representations

Ang Li, Yixiao Duan, Huanrui Yang and
Yiran Chen, Jianlei Yang

Keywords Paper

anonymized intermediate representations, privacy-respecting data crowdsourcing, deep learning

0

0

0

0

16:04

18/07/2021

Privacy-Preserving Feature Selection with Secure Multiparty Computation

Xiling Li, Rafael Dowsley, Martine De Cock

Keywords Paper

Social Aspects of Machine Learning, Privacy, Anonymity, and Security

0

0

0

0

5:12

18/07/2021

The Distributed Discrete Gaussian Mechanism for Federated Learning with Secure Aggregation

Peter Kairouz, Ziyu Liu, Thomas Steinke

Keywords Paper

Social Aspects of Machine Learning, Privacy, Anonymity, and Security

0

0

0

1

5:12

26/08/2020

Learning Rate Adaptation for Differentially Private Learning

Antti Koskela, Antti Honkela

Keywords Paper

0

0

0

0

13:08

03/05/2021

Private Image Reconstruction from System Side Channels Using Generative Models

Yuanyuan Yuan, Shuai Wang, Junping Zhang

Keywords Paper

side channel analysis

0

0

0

0

4:41

06/12/2021

Offline Meta Reinforcement Learning -- Identifiability Challenges and Effective Data Collection Strategies

Ron Dorfman, Idan Shenfeld, Aviv Tamar

Keywords Paper

reinforcement learning and planning

0

0

0

0

14:44

06/12/2021

Topological Detection of Trojaned Neural Networks

Songzhu Zheng, Yikai Zhang, Hubert Wagner and
Mayank Goswami, Chao Chen

Keywords Paper

deep learning

0

0

0

0

15:57

06/12/2020

A Scalable Approach for Privacy-Preserving Collaborative Machine Learning

Jinhyun So, Basak Guler, Salman Avestimehr

Keywords Paper

0

0

0

0

3:18

12/07/2020

Provable Representation Learning for Imitation Learning via Bi-level Optimization

Sanjeev Arora, Simon Du, Sham Kakade and
Yuping Luo, Nikunj Umesh Saunshi

Keywords Paper

Reinforcement Learning - Theory

0

0

0

0

15:04

14/06/2020

Self-Supervised Viewpoint Learning From Image Collections

Siva Karthik Mustikovela, Varun Jampani, Shalini De Mello and
Sifei Liu, Umar Iqbal, Carsten Rother, Jan Kautz

Keywords Paper

self-supervised, viewpoint, cycle consistency, pose, disentangled, synthesis

0

0

0

0

1:00

25/07/2020

On understanding data worker interaction behaviors

Lei Han, Tianwa Chen, Gianluca Demartini and
Marta Indulska, Shazia Sadiq

Keywords Paper

interaction behavior, search pattern, data curation

0

0

0

0

6:01

06/12/2021

Federated Reconstruction: Partially Local Federated Learning

Karan Singhal, Hakim Sidahmed, Zachary Garrett and
Shanshan Wu, John Rush, Sushant Prakash

Keywords Paper

robustness, meta learning, privacy, federated learning

0

0

0

2

11:39

02/02/2021

Amnesiac Machine Learning

Laura Graves, Vineel Nagisetty, Vijay Ganesh

Keywords Paper

0

0

0

0

18:00

22/09/2020

A federated recommender system for online services

Ben Tan, Bo Liu, Vincent Zheng, Qiang Yang

Keywords Paper

Recommender Systems, Federated Learning

0

0

0

0

1:40

12/07/2020

Black-box Certification and Learning under Adversarial Perturbations

Hassan Ashtiani, Vinayak Pathak, Ruth Urner

Keywords Paper

Learning Theory

0

0

0

0

15:09

06/12/2021

Differentially Private Empirical Risk Minimization under the Fairness Lens

Cuong Tran, My Dinh, Ferdinando Fioretto

Keywords Paper

optimization, machine learning, fairness, privacy

0

0

0

0

15:03

12/07/2020

Instance-hiding Schemes for Private Distributed Learning

Yangsibo Huang, Zhao Song, Sanjeev Arora, Kai Li

Keywords Paper

Privacy-preserving Statistics and Machine Learning

0

0

0

0

13:29

06/12/2021

Variational Model Inversion Attacks

Kuan-Chieh Wang, YAN FU, Ke Li and
Ashish Khisti, Richard Zemel, Alireza Makhzani

Keywords Paper

deep learning, generative model

0

0

0

0

8:15

06/12/2020

RL Unplugged: A Collection of Benchmarks for Offline Reinforcement Learning

CAGLAR Gulcehre, Ziyu Wang, Alexander Novikov and
Thomas Paine, Sergio Gómez, Konrad Zolna, Rishabh Agarwal, Josh Merel, Daniel Mankowitz, Cosmin Paduraru, Gabriel Dulac-Arnold, Jerry Li, Mohammad Norouzi, Matthew Hoffman, Nicolas Heess, Nando de Freitas

Keywords Paper

0

0

0

0

3:25

16/11/2020

How Much Knowledge Can You Pack Into the Parameters of a Language Model?

Adam Roberts, Colin Raffel, Noam Shazeer

Keywords Paper

fine-tuning models, neural models, open-domain systems, model size

0

0

0

0

7:31

14/06/2020

Online Joint Multi-Metric Adaptation From Frequent Sharing-Subset Mining for Person Re-Identification

Jiahuan Zhou, Bing Su, Ying Wu

Keywords Paper

person re-identification, online learning, instance metric adaptation, frequent pattern mining, unsupervised learning, theoretical analysis

0

0

0

0

1:02

06/12/2021

Antipodes of Label Differential Privacy: PATE and ALIBI

Mani Malek Esmaeili, Ilya Mironov, Karthik Prasad and
Igor Shilov, Florian Tramer

Keywords Paper

machine learning, privacy, semi-supervised learning

0

0

0

0

14:17

19/08/2021

Adapting Meta Knowledge with Heterogeneous Information Network for COVID-19 Themed Malicious Repository Detection

Yiyue Qian, Yiming Zhang, Yanfang Ye, Chuxu Zhang

Keywords Paper

Multidisciplinary Topics and Applications, Security and Privacy, Classification, Mining Graphs, Semi Structured Data, Complex Data

0

0

0

0

13:28

06/12/2021

CrypTen: Secure Multi-Party Computation Meets Machine Learning

Brian Knott, Shobha Venkataraman, Awni Hannun and
Shubho Sengupta, Mark Ibrahim, Laurens van der Maaten

Keywords Paper

deep learning, machine learning, vision

0

0

0

0

12:40

23/08/2020

Multi-class data description for out-of-distribution detection

Dongha Lee, Sehun Yu, Hwanjo Yu

Keywords Paper

out-of-distribution detection, multi-class classification, Gaussian discriminant analysis, deep neural networks

0

0

0

0

16:45

18/07/2021

Learning Bounds for Open-Set Learning

Zhen Fang, Jie Lu, Anjin Liu and
Feng Liu, Guangquan Zhang

Keywords Paper

Theory, Statistical Learning Theory

0

0

0

0

5:17

02/02/2021

Game of Gradients: Mitigating Irrelevant Clients in Federated Learning

Lokesh Nagalapatti, Ramasuri Narayanam

Keywords Paper

0

0

0

0

20:17

12/07/2020

Alleviating Privacy Attacks via Causal Learning

Shruti Tople, Amit Sharma, Aditya Nori

Keywords Paper

Privacy-preserving Statistics and Machine Learning

0

0

0

0

14:45

25/04/2020

Understanding Privacy-Related Questions on Stack Overflow

Mohammad Tahaei, Kami Vaniea, Naomi Saphra

Keywords Paper

software developers, usable privacy, stack overflow

0

0

0

0

14:02

06/12/2021

Play to Grade: Testing Coding Games as Classifying Markov Decision Process

Allen Nie, Emma Brunskill, Chris Piech

Keywords Paper

reinforcement learning and planning

0

0

0

0

14:27

08/07/2020

The Complexity of Verifying Loop-free Programs as Differentially Private

Marco Gaboardi, Kobbi Nissim and David Purser

Keywords Paper

differential privacy, program verification, probabilistic programs

0

0

0

0

18:19