Authors

  • Abhishek Singh*
  • Praneeth Vepakomma*
  • Vivek Sharma
  • Ramesh Raskar*

* External authors

Venue

  • NeurIPS 2023

Date

  • 2023

Share

Posthoc privacy guarantees for collaborative inference with modified Propose-Test-Release

VIEW PUBLICATION

Abhishek Singh*

Praneeth Vepakomma*

Vivek Sharma

Ramesh Raskar*

* External authors

NeurIPS 2023

2023

Abstract

Cloud-based machine learning inference is an emerging paradigm where users query by sending their data through a service provider who runs an ML model on that data and returns back the answer. Due to increased concerns over data privacy, recent works have proposed Collaborative Inference (CI) to learn a privacy-preserving encoding of sensitive user data before it is shared with an untrusted service provider. Existing works so far evaluate the privacy of these encodings through empirical reconstruction attacks. In this work, we develop a new framework that provides formal privacy guarantees for an arbitrarily trained neural network by linking its local Lipschitz constant with its local sensitivity. To guarantee privacy using local sensitivity, we extend the Propose-Test-Release (PTR) framework to make it tractable for neural network queries. We verify the efficacy of our framework experimentally on real-world datasets and elucidate the role of Adversarial Representation Learning (ARL) in improving the privacy-utility trade-off. The project page is https://tremblerz.github.io/posthoc

Related Publications

Privacy Assessment on Reconstructed Images: Are Existing Evaluation Metrics Faithful to Human Perception?

NeurIPS, 2023
Xiaoxiao Sun*, Nidham Gazagnadou, Vivek Sharma, Lingjuan Lyu, Hongdong Li*, Liang Zheng*

Hand-crafted image quality metrics, such as PSNR and SSIM, are commonly used to evaluate model privacy risk under reconstruction attacks. Under these metrics, reconstructed images that are determined to resemble the original one generally indicate more privacy leakage. Image…

Spatio-Temporal Convolution-Attention Video Network

ICCV, 2023
Ali Diba*, Vivek Sharma, Mohammad.M Arzani*, Luc Van Gool*

In this paper, we present a hierarchical neural network based on convolutional and attention modeling for short and long-range video reasoning, called Spatio-Temporal Convolution-Attention Video Network (STCA). The proposed method is capable of learning appearance and tempor…
SEE ALL
  • HOME
  • Publications
  • Posthoc privacy guarantees for collaborative inference with modified Propose-Test-Release

JOIN US

Shape the Future of AI with Sony AI

We want to hear from those of you who have a strong desire
to shape the future of AI.

LEARN MORE
TO TOP TO TOP
CONTACT US