Authors

  • Abhishek Singh*
  • Praneeth Vepakomma*
  • Vivek Sharma
  • Ramesh Raskar*

* External authors

Venue

  • NeurIPS 2023

Date

  • 2023

Share

Posthoc privacy guarantees for collaborative inference with modified Propose-Test-Release

VIEW PUBLICATION

Abhishek Singh*

Praneeth Vepakomma*

Vivek Sharma

Ramesh Raskar*

* External authors

NeurIPS 2023

2023

Abstract

Cloud-based machine learning inference is an emerging paradigm where users query by sending their data through a service provider who runs an ML model on that data and returns back the answer. Due to increased concerns over data privacy, recent works have proposed Collaborative Inference (CI) to learn a privacy-preserving encoding of sensitive user data before it is shared with an untrusted service provider. Existing works so far evaluate the privacy of these encodings through empirical reconstruction attacks. In this work, we develop a new framework that provides formal privacy guarantees for an arbitrarily trained neural network by linking its local Lipschitz constant with its local sensitivity. To guarantee privacy using local sensitivity, we extend the Propose-Test-Release (PTR) framework to make it tractable for neural network queries. We verify the efficacy of our framework experimentally on real-world datasets and elucidate the role of Adversarial Representation Learning (ARL) in improving the privacy-utility trade-off. The project page is https://tremblerz.github.io/posthoc

Related Publications

Argus: A Compact and Versatile Foundation Model for Vision

CVPR, 2025
Weiming Zhuang, Chen Chen, Zhizhong Li, Sina Sajadmanesh, Jingtao Li, Jiabo Huang, Vikash Sehwag, Vivek Sharma, Hirotaka Shinozaki, Felan Carlo Garcia, Yihao Zhan, Naohiro Adachi, Ryoji Eki, Michael Spranger, Peter Stone, Lingjuan Lyu

While existing vision and multi-modal foundation models can handle multiple computer vision tasks, they often suffer from significant limitations, including huge demand for data and computational resources during training and inconsistent performance across vision tasks at d…

DECO-Bench: Unified Benchmark for Decoupled Task-Agnostic Synthetic Data Release

NeurIPS, 2024
Lingjuan Lyu, Vivek Sharma, Farzaneh Askari

In this work, we tackle the question of how to systematically benchmark task-agnostic decoupling methods for privacy-preserving machine learning (ML). Sharing datasets that include sensitive information often triggers privacy concerns, necessitating robust decoupling methods…

SIMBA: Split Inference - Mechanisms, Benchmarks and Attacks

ECCV, 2024
Abhishek Singh*, Vivek Sharma, Ramesh Raskar*, Rohan Sukumaran, John Mose, Jeffrey Chiu, Justin Yu

In this work, we tackle the question of how to benchmark reconstruction of inputs from deep neural networks (DNN) representations. This inverse problem is of great importance in the privacy community where obfuscation of features has been proposed as a technique for privacy-…
SEE ALL
  • HOME
  • Publications
  • Posthoc privacy guarantees for collaborative inference with modified Propose-Test-Release

JOIN US

Shape the Future of AI with Sony AI

We want to hear from those of you who have a strong desire
to shape the future of AI.

LEARN MORE
TO TOP TO TOP
CONTACT US