Membership Inference Attack

Membership inference attacks (MIAs) aim to determine if a specific data point was used to train a machine learning model, posing a significant privacy risk. Current research focuses on evaluating MIA effectiveness across various model architectures, including large language models (LLMs), diffusion models, and vision transformers, and exploring the impact of different training methods and data characteristics on attack success. The reliability and accuracy of MIAs themselves are under scrutiny, with some studies highlighting limitations and overestimation of their capabilities, particularly in realistic settings. Understanding the vulnerabilities and limitations of MIAs is crucial for developing effective privacy-preserving techniques and for responsibly deploying machine learning models.

Papers

May 30, 2024

Is My Data in Your Retrieval Database? Membership Inference Attacks Against Retrieval Augmented Generation
Maya Anderson, Guy Amit, Abigail Goldsteen
Natural Language Processing Raw Data Retrieval Augmented Generation Information Retrieval Membership Inference Attack

May 29, 2024

Gone but Not Forgotten: Improved Benchmarks for Machine Unlearning
Keltin Grimes, Collin Abidi, Cole Frank, Shannon Gallagher
Adversarial Attack Machine Learning Model Membership Inference Attack Machine Unlearning Computer Vision Datasets Inherent Privacy Improved Benchmark

May 28, 2024

An Information Theoretic Evaluation Metric For Strong Unlearning
Dongjae Jeon, Wonje Jeung, Taeheon Kim, Albert No, Jonghyun Choi
Membership Inference Attack Machine Unlearning Unlearned Model Masked Distillation Unlearning Model

May 27, 2024

OSLO: One-Shot Label-Only Membership Inference Attacks
Yuefeng Peng, Jaechul Roh, Subhransu Maji, Amir Houmansadr
Adversarial Attack Adversarial Perturbation Membership Inference Attack Cyber Attack Label Attack

May 25, 2024

Towards Black-Box Membership Inference Attack for Diffusion Models
Jingwei Li, Jing Dong, Tianxing He, Jingzhao Zhang
Diffusion Model Membership Inference Attack U Net Box Membership Inference Attack

May 24, 2024

May 23, 2024

May 20, 2024

Data Contamination Calibration for Black-box LLMs
Wentao Ye, Jiaqi Hu, Liyao Li, Haobo Wang, Gang Chen, Junbo Zhao
Membership Inference Attack Data Contamination Black Box Large Language Model Polarity Calibration

May 16, 2024

The Effect of Quantization in Federated Learning: A R\'enyi Differential Privacy Perspective
Tianqu Kang, Lumin Liu, Hengtao He, Jun Zhang, S. H. Song, Khaled B. Letaief
Differential Privacy Mixed Effect Membership Inference Attack Quantization Operator PRIvacy Leakage Multiplier Free Quantization

May 13, 2024

GLiRA: Black-Box Membership Inference Attack via Knowledge Distillation
Andrey V. Galichin, Mikhail Pautov, Alexey Zhavoronkin, Oleg Y. Rogov, Ivan Oseledets
Knowledge Distillation Membership Inference Attack Distillation Framework Box Membership Inference Attack Likelihood Ratio Attack

May 7, 2024

April 26, 2024

Center-Based Relaxed Learning Against Membership Inference Attacks
Xingli Fang, Jung-Eun Kim
Membership Inference Attack Privacy Risk Privacy Attack Privacy Preservation

April 19, 2024

Privacy-Preserving Debiasing using Data Augmentation and Machine Unlearning
Zhixin Pan, Emma Andrews, Laura Chang, Prabhat Mishra
Data Augmentation Membership Inference Attack Machine Unlearning Privacy Attack Self Debiasing Diffusion Based Data Augmentation

April 17, 2024

April 10, 2024

Towards a Game-theoretic Understanding of Explanation-based Membership Inference Attacks
Kavita Kumari, Murtuza Jadliwala, Sumit Kumar Jha, Anindya Maiti
Membership Inference Attack Game Theoretic Model Explanation Game Model Explanation Guided