Inference Attack

Inference attacks exploit machine learning model outputs to infer sensitive information about the training data, posing a significant privacy risk in various applications like federated learning and AI-as-a-service. Current research focuses on developing novel attack techniques targeting different model architectures (e.g., graph neural networks, large language models) and data modalities, as well as designing robust defenses such as differential privacy and adversarial training. Understanding and mitigating these attacks is crucial for ensuring the responsible deployment of machine learning systems and protecting user privacy in collaborative and cloud-based settings.

Papers

November 8, 2024

QuanCrypt-FL: Quantized Homomorphic Encryption with Pruning for Secure Federated Learning
Md Jueal Mia, M. Hadi Amini
Edge Pruning Inference Attack Encryption Method Secure Approach

November 2, 2024

WaKA: Data Attribution using K-Nearest Neighbors and Membership Privacy Principles
Patrick Mesana, Clément Bénesse, Hadrien Lautraite, Gilles Caporossi, Sébastien Gambs
Membership Inference Attack General Principle Inference Attack K Nearest Neighbor Membership Privacy Data Attribution Likelihood Ratio Attack

October 26, 2024

Mask-based Membership Inference Attacks for Retrieval-Augmented Generation
Mingrui Liu, Sixiao Zhang, Cheng Long
Retrieval Augmented Generation Faithful Generation Membership Inference Attack Inference Attack Mask Prediction

October 25, 2024

FLiP: Privacy-Preserving Federated Learning based on the Principle of Least Privileg
ShiMao Xu, Xiaopeng Ke, Xing Su, Shucheng Li, Hao wu, Fengyuan Xu, Sheng Zhong
General Principle Privacy Protection Inference Attack Negative Flip

October 22, 2024

Dual-Model Defense: Safeguarding Diffusion Models from Membership Inference Attacks through Disjoint Data Splitting
Bao Q. Tran, Viet Nguyen, Anh Tran, Toan Tran
Diffusion Model Membership Inference Inference Attack Data Splitting

October 17, 2024

Investigating Effective Speaker Property Privacy Protection in Federated Learning for Speech Emotion Recognition
Chao Tan, Sheng Li, Yang Cao, Zhao Ren, Tanja Schultz
LeArning Abstract Speech Emotion Recognition Speech Data Speech Processing Federated Prompt Cooperation Inference Attack Property Inference Attack

October 14, 2024

Identity-Focused Inference and Extraction Attacks on Diffusion Models
Jayneel Vora, Aditya Krishnan, Nader Bouacida, Prabhu RV Shankar, Prasant Mohapatra
Diffusion Model Membership Inference Attack Inference Attack Identity Related Attribute Inference Attack Extraction Attack Identity Inference

October 7, 2024

FRIDA: Free-Rider Detection using Privacy Attacks
Pol G. Recasens, Ádám Horváth, Alberto Gutierrez-Torre, Jordi Torres, Josep Ll.Berral, Balázs Pejó
Domain Adaptation Privacy Attack Inference Attack Property Inference Attack

September 28, 2024

Subject Data Auditing via Source Inference Attack in Cross-Silo Federated Learning
Jiaxin Li, Marco Arazzi, Antonino Nocera, Mauro Conti
Membership Inference Attack Data Leakage Inference Attack Cross Silo Federated Learning Data Auditing

September 2, 2024

Backdoor Defense through Self-Supervised and Generative Learning
Ivan Sabolić, Ivan Grubišić, Siniša Šegvić
Generative Model Self Supervised Backdoor Attack Backdoor Defense Inference Attack Generative Learning

August 29, 2024

Analyzing Inference Privacy Risks Through Gradients in Machine Learning
Zhuohang Li, Andrew Lowy, Jing Liu, Toshiaki Koike-Akino, Kieran Parsons, Bradley Malin, Ye Wang
Machine Learning Differential Privacy Adversarial Perturbation Inference Attack Inference Privacy

July 25, 2024

Privacy Threats and Countermeasures in Federated Learning for Internet of Things: A Systematic Review
Adel ElZemity, Budi Arief
Differential Privacy Systematic Review Internet of Thing Device Inference Attack Rapid Countermeasure Internet of Thing Environment Privacy Threat

July 20, 2024

Universally Harmonizing Differential Privacy Mechanisms for Federated Learning: Boosting Accuracy and Convergence
Shuya Feng, Meisam Mohammady, Hanbin Hong, Shenao Yan, Ashish Kundu, Binghui Wang, Yuan Hong
Differential Privacy Early Stage Convergence Privacy Guarantee Inference Attack Differential Privacy Mechanism FL Framework

July 2, 2024

Attack-Aware Noise Calibration for Differential Privacy
Bogdan Kulynych, Juan Felipe Gomez, Georgios Kaissis, Flavio du Pin Calmon, Carmela Troncoso
Differential Privacy Inference Attack Privacy Budget Calibration Attack

June 4, 2024

Inference Attacks: A Taxonomy, Survey, and Promising Directions
Feng Wu, Lei Cui, Shaowen Yao, Shui Yu
Timely Survey Comprehensive Taxonomy Interpretable Direction Inference Attack Privacy Inference Privacy Breach Inference Scheme

April 27, 2024

Privacy-Preserving, Dropout-Resilient Aggregation in Decentralized Learning
Ali Reza Ghavamipour, Benjamin Zi Hao Zhao, Fatih Turkmen
Decentralized Learning Structured Dropout Inference Attack Secret Sharing Decentralized Aggregation

March 13, 2024

SoK: Reducing the Vulnerability of Fine-tuned Language Models to Membership Inference Attacks
Guy Amit, Abigail Goldsteen, Ariel Farkash
Language Model Differential Privacy Membership Inference Attack Privacy Risk Fine Tuned Language Model Latent Vulnerability Inference Attack

March 4, 2024

Inf2Guard: An Information-Theoretic Framework for Learning Privacy-Preserving Representations against Inference Attacks
Sayedeh Leila Noorbakhsh, Binghui Zhang, Yuan Hong, Binghui Wang
Meaningful Representation Inference Attack Information Theoretic Framework Privacy Preserving Representation Utility Privacy Trade

February 29, 2024

Here's a Free Lunch: Sanitizing Backdoored Models with Model Merge
Ansh Arora, Xuanli He, Maximilian Mozes, Srinibas Swain, Mark Dras, Qiongkai Xu
Pre Trained Language Model Backdoor Attack Inference Attack Free Lunch Merged Model Defense Framework

February 22, 2024

Closed-Form Bounds for DP-SGD against Record-level Inference
Giovanni Cherubin, Boris Köpf, Andrew Paverd, Shruti Tople, Lukas Wutschitz, Santiago Zanella-Béguelin
Privacy Attack Inference Attack Differential Privacy SGD Sharp Bound Driven Inference

Inference Attack

Papers

QuanCrypt-FL: Quantized Homomorphic Encryption with Pruning for Secure Federated Learning

WaKA: Data Attribution using K-Nearest Neighbors and Membership Privacy Principles

Mask-based Membership Inference Attacks for Retrieval-Augmented Generation

FLiP: Privacy-Preserving Federated Learning based on the Principle of Least Privileg

Dual-Model Defense: Safeguarding Diffusion Models from Membership Inference Attacks through Disjoint Data Splitting

Investigating Effective Speaker Property Privacy Protection in Federated Learning for Speech Emotion Recognition

Identity-Focused Inference and Extraction Attacks on Diffusion Models

FRIDA: Free-Rider Detection using Privacy Attacks

Subject Data Auditing via Source Inference Attack in Cross-Silo Federated Learning

Backdoor Defense through Self-Supervised and Generative Learning

Analyzing Inference Privacy Risks Through Gradients in Machine Learning

Privacy Threats and Countermeasures in Federated Learning for Internet of Things: A Systematic Review

Universally Harmonizing Differential Privacy Mechanisms for Federated Learning: Boosting Accuracy and Convergence

Attack-Aware Noise Calibration for Differential Privacy

Inference Attacks: A Taxonomy, Survey, and Promising Directions

Privacy-Preserving, Dropout-Resilient Aggregation in Decentralized Learning

SoK: Reducing the Vulnerability of Fine-tuned Language Models to Membership Inference Attacks

Inf2Guard: An Information-Theoretic Framework for Learning Privacy-Preserving Representations against Inference Attacks

Here's a Free Lunch: Sanitizing Backdoored Models with Model Merge

Closed-Form Bounds for DP-SGD against Record-level Inference