Inversion Attack

Inversion attacks exploit machine learning models to reconstruct sensitive training data, undermining privacy in applications ranging from facial recognition to federated learning. Current research focuses on developing and evaluating these attacks against various model architectures, including diffusion models, large language models, and neuromorphic networks, and exploring defenses such as sparse coding, gradient mixing, and feature obfuscation. Understanding and mitigating inversion attacks is crucial for ensuring the responsible deployment of machine learning systems and protecting user privacy in numerous applications.

Papers

November 6, 2024

Mitigating Privacy Risks in LLM Embeddings from Embedding Inversion
Tiantian Liu, Hongwei Yao, Tong Wu, Zhan Qin, Feng Lin, Kui Ren, Chun Chen
Jina Embeddings Word Embeddings Privacy Risk Eta Inversion LLM Embeddings Vector Database Inversion Attack

September 17, 2024

Obfuscation Based Privacy Preserving Representations are Recoverable Using Neighborhood Information
Kunal Chelani, Assia Benbihi, Fredrik Kahl, Torsten Sattler, Zuzana Kukelova
Obfuscation Technique Neighborhood Level Inversion Attack Privacy Preserving Representation

August 21, 2024

Against All Odds: Overcoming Typology, Script, and Language Confusion in Multilingual Embedding Inversion Attacks
Yiyi Chen, Russa Biswas, Heather Lent, Johannes Bjerva
Monolingual Model Typological Exploration Inversion Attack

July 3, 2024

SlerpFace: Face Template Protection via Spherical Linear Interpolation
Zhizhou Zhong, Yuxi Mi, Yuge Huang, Jianqing Xu, Guodong Mu, Shouhong Ding, Jingyun Zhang, Rizen Guo, Yunsheng Wu, Shuigeng Zhou
Face Recognition Identity Preserving Inversion Attack Template Protection

June 12, 2024

Transferable Embedding Inversion Attack: Uncovering Privacy Risks in Text Embeddings without Model Queries
Yu-Hsiang Huang, Yuche Tsai, Hsiang Hsiao, Hong-Yi Lin, Shou-De Lin
Text Embeddings Privacy Risk Transfer Attack Inversion Attack Model Join

June 3, 2024

Assessing the Adversarial Security of Perceptual Hashing Algorithms
Jordan Madden, Moxanki Bhavsar, Lhamo Dorje, Xiaohua Li
Adversarial Attack Adversarial DEfense Inversion Attack Image Attack Perceptual Hashing

May 30, 2024

Gradient Inversion of Federated Diffusion Models
Jiyue Huang, Chi Hong, Lydia Y. Chen, Stefanie Roos
Diffusion Model Gradient Inversion Attack Gradient Inversion Inversion Attack Privacy Preserving Training

March 21, 2024

Improving Robustness to Model Inversion Attacks via Sparse Coding Architectures
Sayanton V. Dibbo, Adam Breuer, Juston Moore, Michael Teti
Native Robustness Model Inversion Attack Inversion Attack

February 1, 2024

BrainLeaks: On the Privacy-Preserving Properties of Neuromorphic Architectures against Model Inversion Attacks
Hamed Poursiami, Ihsen Alouani, Maryam Parsa
Privacy Preserving Model Inversion Attack Gradient Based Attack Neural Computation Neuromorphic Architecture Inversion Attack Conventional Neural Network

January 22, 2024

Text Embedding Inversion Security for Multilingual Language Models
Yiyi Chen, Heather Lent, Johannes Bjerva
Text Modality Multilingual Model Multilingual Language Model Inversion Attack Cross Lingual Backdoor Attack

January 14, 2024

Crafter: Facial Feature Crafting against Inversion-based Identity Theft on Deep Models
Shiming Wang, Zhe Ji, Liyao Xiang, Hao Zhang, Xinbing Wang, Chenghu Zhou, Bo Li
Deep Model Deep Learning Application Model Inversion Attack Adaptive Attack Adversarial Game Traditional CrAFT Inversion Attack

August 22, 2023

LDP-Feat: Image Features with Local Differential Privacy
Francesco Pittaluga, Bingbing Zhuang
PRIvacy Leakage Local Differential Privacy Image Feature Visual Privacy Inversion Attack Private Image

May 4, 2023

Sentence Embedding Leaks More Information than You Expect: Generative Embedding Inversion Attack to Recover the Whole Sentence
Haoran Li, Mingshi Xu, Yangqiu Song
Large Language Model Generative Question Sentence Level Sentence Embeddings Model Inversion Attack Input Sentence Parallel Text Inversion Attack

April 22, 2023

Breaching FedMD: Image Recovery via Paired-Logits Inversion Attack
Hideaki Takahashi, Jingjing Liu, Yang Liu
Gradient Inversion Attack Image Recovery Inversion Attack Latent Inversion

August 12, 2022

Dropout is NOT All You Need to Prevent Gradient Leakage
Daniel Scheliga, Patrick Mäder, Marco Seeland
Structured Dropout Gradient Inversion Attack Gradient Leakage Inversion Attack

April 26, 2022

Enhancing Privacy against Inversion Attacks in Federated Learning by using Mixing Gradients Strategies
Shaltiel Eloul, Fran Silavong, Sanket Kamthe, Antonios Georgiadis, Sean J. Moran
Gradient Inversion Attack Global Mixing Gradient Inversion Inversion Attack Protecting Privacy Dense Layer