Transparency has become a critical need in machine learning (ML) applications. Designing transparent ML models helps increase trust, ensure accountability, and scrutinize fairness. Some organizations may opt-out of transparency to protect individuals' privacy. Therefore, there is a great demand for transparency models that consider both privacy and security risks. Such transparency models can motivate organizations to improve their credibility by making the ML-based decision-making process comprehensible to end-users. Differential privacy (DP) provides an important technique to disclose information while protecting individual privacy. However, it has been shown that DP alone cannot prevent certain types of privacy attacks against disclosed ML models. DP with low values can provide high privacy guarantees, but may result in significantly weaker ML models in terms of accuracy. On the other hand, setting value too high may lead to successful privacy attacks. This raises the question whether we can disclose accurate transparent ML models while preserving privacy. In this paper we introduce a novel technique that complements DP to ensure model transparency and accuracy while being robust against model inversion attacks. We show that combining the proposed technique with DP provide highly transparent and accurate ML models while preserving privacy against model inversion attacks.
Download full-text PDF |
Source |
|---|---|
| http://www.ncbi.nlm.nih.gov/pmc/articles/PMC8942105 | PMC |
| http://dx.doi.org/10.1109/tdsc.2020.3019508 | DOI Listing |
Publication Analysis
Top Keywords
Similar Publications
Carbonate stringers are defined as a slab of carbonate bodies encased inside salt. In Oman, the intra-salt carbonate stringers are a very common target, especially in South Oman Salt Basin (SOSB). These stringers contain a large amount of hydrocarbon resources.
View Article and Find Full Text PDFFourier analysis of signal dependent noise images.
Sci Rep
December 2024
Cancer Epidemiology Department, H. Lee Moffitt Cancer Center and Research Institute, 12902 Bruce B. Downs Blvd, Tampa, FL, 33612, USA.
An archetype signal dependent noise (SDN) model is a component used in analyzing images or signals acquired from different technologies. This model-component may share properties with stationary normal white noise (WN). Measurements from WN images were used as standards for making comparisons with SDN in both the image domain (ID) and Fourier domain (FD).
View Article and Find Full Text PDFThree-Dimensional Bone-Image Synthesis with Generative Adversarial Networks.
J Imaging
December 2024
Department of Mathematics, Universität Innsbruck, Technikerstraße 13, A-6020 Innsbruck, Austria.
Medical image processing has been highlighted as an area where deep-learning-based models have the greatest potential. However, in the medical field, in particular, problems of data availability and privacy are hampering research progress and, thus, rapid implementation in clinical routine. The generation of synthetic data not only ensures privacy but also allows the drawing of new patients with specific characteristics, enabling the development of data-driven models on a much larger scale.
View Article and Find Full Text PDFsegcsvd: A Convolutional Neural Network-Based Tool for Quantifying White Matter Hyperintensities in Heterogeneous Patient Cohorts.
Hum Brain Mapp
December 2024
SEB Centre for Brain Resilience & Recovery, Hurvitz Brain Sciences Program, Sunnybrook Research Institute, Toronto, Canada.
White matter hyperintensities (WMH) of presumed vascular origin are a magnetic resonance imaging (MRI)-based biomarker of cerebral small vessel disease (CSVD). WMH are associated with cognitive decline and increased risk of stroke and dementia, and are commonly observed in aging, vascular cognitive impairment, and neurodegenerative diseases. The reliable and rapid measurement of WMH in large-scale multisite clinical studies with heterogeneous patient populations remains challenging, where the diversity of imaging characteristics across studies adds additional complexity to this task.
View Article and Find Full Text PDFEstimation of the spatial variability of the New England Mud Patch geoacoustic properties using a distributed array of hydrophones and deep learninga).
J Acoust Soc Am
December 2024
Department of Applied Ocean Physics and Engineering, Woods Hole Oceanographic Institution, Woods Hole, Massachusetts 02543, USA.
This article presents a spatial environmental inversion scheme using broadband impulse signals with deep learning (DL) to model a single spatially-varying sediment layer over a fixed basement. The method is applied to data from the Seabed Characterization Experiment 2022 (SBCEX22) in the New England Mud-Patch (NEMP). Signal Underwater Sound (SUS) explosive charges generated impulsive signals recorded by a distributed array of bottom-moored hydrophones.
View Article and Find Full Text PDFWant AI Summaries of new PubMed Abstracts delivered to your In-box?
Enter search terms and have AI summaries delivered each week - change queries or unsubscribe any time!