An official website of the United States government
- Home
- Search Results
- Page 1 of 1
Search for: All records
-
Total Resources3
- Resource Type
-
0002000001000000
- More
- Availability
-
30
- Author / Contributor
- Filter by Author / Creator
-
-
Evans, David (2)
-
Suri, Anshuman (2)
-
Abdel-Aziz, Amal Kamal (1)
-
Abdelfatah, Sara (1)
-
Abdellatif, Mahmoud (1)
-
Abdoli, Asghar (1)
-
Abel, Steffen (1)
-
Abeliovich, Hagai (1)
-
Abildgaard, Marie H. (1)
-
Abudu, Yakubu Princely (1)
-
Acevedo-Arozena, Abraham (1)
-
Adamopoulos, Iannis E. (1)
-
Adeli, Khosrow (1)
-
Adolph, Timon E. (1)
-
Adornetto, Annagrazia (1)
-
Aflaki, Elma (1)
-
Agam, Galila (1)
-
Agarwal, Anupam (1)
-
Aggarwal, Bharat B. (1)
-
Agnello, Maria (1)
-
- Filter by Editor
-
-
& Spizer, S. M. (0)
-
& . Spizer, S. (0)
-
& Ahn, J. (0)
-
& Bateiha, S. (0)
-
& Bosch, N. (0)
-
& Brennan K. (0)
-
& Brennan, K. (0)
-
& Chen, B. (0)
-
& Chen, Bodong (0)
-
& Drown, S. (0)
-
& Ferretti, F. (0)
-
& Higgins, A. (0)
-
& J. Peters (0)
-
& Kali, Y. (0)
-
& Ruiz-Arias, P.M. (0)
-
& S. Spitzer (0)
-
& Sahin. I. (0)
-
& Spitzer, S. (0)
-
& Spitzer, S.M. (0)
-
(submitted - in Review for IEEE ICASSP-2024) (0)
-
-
Have feedback or suggestions for a way to improve these results?
!
Note: When clicking on a Digital Object Identifier (DOI) number, you will be taken to an external site maintained by the publisher.
Some full text articles may not yet be available without a charge during the embargo (administrative interval).
What is a DOI Number?
Some links on this page may take you to non-federal websites. Their policies may differ from this site.
-
Suri, Anshuman; Lu, Yifi; Chen; Yanjin; Evans, David (, Accepted at SaTML 2023 arXiv:2212.07591)Abstract—A distribution inference attack aims to infer statistical properties of data used to train machine learning models. These attacks are sometimes surprisingly potent, but the factors that impact distribution inference risk are not well understood and demonstrated attacks often rely on strong and unrealistic assumptions such as full knowledge of training environments even in supposedly black-box threat scenarios. To improve understanding of distribution inference risks, we develop a new black-box attack that even outperforms the best known white-box attack in most settings. Using this new attack, we evaluate distribution inference risk while relaxing a variety of assumptions about the adversary’s knowledge under black-box access, like known model architectures and label-only access. Finally, we evaluate the effectiveness of previously proposed defenses and introduce new defenses. We find that although noise-based defenses appear to be ineffective, a simple re-sampling defense can be highly effective. Imore » « less
-
Klionsky, Daniel J.; Abdel-Aziz, Amal Kamal; Abdelfatah, Sara; Abdellatif, Mahmoud; Abdoli, Asghar; Abel, Steffen; Abeliovich, Hagai; Abildgaard, Marie H.; Abudu, Yakubu Princely; Acevedo-Arozena, Abraham; et al (, Autophagy)
Full Text Available