Privacy Auditing with One (1) Training Run

Steinke, Thomas, Nasr, Milad, Jagielski, Matthew

May-15-2023–arXiv.org Artificial Intelligence

We propose a scheme for auditing differentially private machine learning systems with a single training run. This exploits the parallelism of being able to add or remove multiple training examples independently. We analyze this using the connection between differential privacy and statistical generalization, which avoids the cost of group privacy. Our auditing scheme requires minimal assumptions about the algorithm and can be applied in the black-box or white-box setting.

artificial intelligence, inductive learning, machine learning, (18 more...)

arXiv.org Artificial Intelligence

May-15-2023

arXiv.org PDF

Add feedback

Country:
- North America > United States
  - New York > New York County > New York City (0.04)
- Europe > Russia
  - Northwestern Federal District > Leningrad Oblast > Saint Petersburg (0.04)
- Asia
  - Russia (0.04)
  - Middle East
    - Jordan (0.04)
    - Israel > Tel Aviv District
      - Tel Aviv (0.04)
  - China > Beijing
    - Beijing (0.04)

Genre:
- Research Report > New Finding (0.68)

Industry:
- Information Technology > Security & Privacy (1.00)

Technology:
- Information Technology > Artificial Intelligence > Machine Learning
  - Statistical Learning (0.67)
  - Inductive Learning (0.54)
  - Performance Analysis > Accuracy (0.46)

Duplicate Docs Excel Report

Title
None found

Similar Docs Excel Report more

Title	Similarity	Source
None found