How Does Data Augmentation Affect Privacy in Machine Learning?
نویسندگان
چکیده
It is observed in the literature that data augmentation can significantly mitigate membership inference (MI) attack. However, this work, we challenge observation by proposing new MI attacks to utilize information of augmented data. attack widely used measure model's leakage training set. We establish optimal when model trained with data, which inspires us formulate as a set classification problem, i.e., classifying instances instead single point, and design input permutation invariant features. Empirically, demonstrate proposed approach universally outperforms original methods augmentation. Even further, show achieve higher success rates on models some than existing without Notably, 70.1\% rate CIFAR10 against wide residual network while previous best only attains 61.9\%. This suggests privacy risk could be largely underestimated.
منابع مشابه
How Does Curriculum Affect Learning?
schools matter. This statement is a truism to most. However, it must be followed by a statement of why schools matter, especially in light of the current debate surrounding the quality of American public education. Working from the seemingly simple belief that schools matter, assumptions will be made and policies will follow them on how to improve the quality of public schools. If there is no s...
متن کاملHow Does Monetary Policy Affect Household Income Distribution?
Over the last decades the research on monetary policy has largely concentrated on the impact of monetary authorities’ decisions on inflation and the fine-tuning of the macroeconomic, so that distributional effects of monetary policy which are non-trivial has been ignored. A view that has become increasingly popular since the financial crisis 2008 is that expansionary monetary policy can exacerb...
متن کاملHow does feedback in mini-CEX affect students’ learning response?
Objective This study was aimed to explore students' learning response toward feedback during mini-CEX encounter. Methods This study used a phenomenological approach to identify the students' experiences toward feedback during mini-CEX encounter. Data was collected using Focus Group Discussion (FGD) for all students who were in their final week of clerkship in the internal medicine rotation. T...
متن کاملHow Does Inflow of FDI Affect Economic Growth in East Asia?
In this paper, we address the question that does FDI alone affect economic growth or interaction of FDI and human capital is required to boost economic growth. We develop the model with an expanding variety of products. We estimate the model using some advanced tests utilizing data on FDI flows from developed countries. We find stronger complementary effects between FDI and human capital on the...
متن کاملHow big data changes statistical machine learning
This presentation illustrates how big data forces change on algorithmic techniques and the goals of machine learning, bringing along challenges and opportunities. 1. The theoretical foundations of statistical machine learning traditionally assume that training data is scarce. If one assumes instead that data is abundant and that the bottleneck is the computation time, stochastic algorithms with...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
ژورنال
عنوان ژورنال: Proceedings of the ... AAAI Conference on Artificial Intelligence
سال: 2021
ISSN: ['2159-5399', '2374-3468']
DOI: https://doi.org/10.1609/aaai.v35i12.17284