NOSnoop: an Effective Collaborative Meta-Learning Scheme against Property Inference Attack. Ma, X., Li, B., Jiang, Q., Chen, Y., Gao, S., & Ma, J. IEEE Internet of Things Journal, 2021.
doi  abstract   bibtex   
Collaborative learning has been used to train a joint model on geographically diverse data through periodically sharing knowledge. Although participants keep the data locally in collaborative learning, the adversary can still launch inference attacks through participants’ shared information. In this paper, we focus on the property inference attack during model training and design a novel defense mechanism, namely NOSnoop, to defend such an attack. We propose a collaborative meta-learning architecture to learn the common knowledge over all participants and utilize the natural advantage of meta-learning to hide the sensitive property data. We consider both irrelevant property and relevant property preservation in NOSnoop. For irrelevant property preservation, we utilize the inherent advantage of meta-learning to hide the sensitive property data in meta-training support dataset. Thus, the adversary cannot capture the key information related to the sensitive properties and cannot infer victim’s private property successfully. For relevant property preservation, an adversarial game is further proposed to reduce the inference success rate of the adversary. We conduct comprehensive experiments to evaluate the effectiveness of NOSnoop. When hiding the sensitive property data in meta-training support dataset, NOSnoop achieves an inference AUC score as low as 0.4984 for irrelevant property preservation, meaning the adversary cannot distinguish whether the training batch has the sensitive property data or not. When preserving the relevant property, NOSnoop is able to achieve an inference AUC score of 0.5091 without compromising model utility.
@article{ma_nosnoop_2021,
	title = {{NOSnoop}: an {Effective} {Collaborative} {Meta}-{Learning} {Scheme} against {Property} {Inference} {Attack}},
	issn = {2327-4662},
	shorttitle = {{NOSnoop}},
	doi = {10.1109/JIOT.2021.3112737},
	abstract = {Collaborative learning has been used to train a joint model on geographically diverse data through periodically sharing knowledge. Although participants keep the data locally in collaborative learning, the adversary can still launch inference attacks through participants’ shared information. In this paper, we focus on the property inference attack during model training and design a novel defense mechanism, namely NOSnoop, to defend such an attack. We propose a collaborative meta-learning architecture to learn the common knowledge over all participants and utilize the natural advantage of meta-learning to hide the sensitive property data. We consider both irrelevant property and relevant property preservation in NOSnoop. For irrelevant property preservation, we utilize the inherent advantage of meta-learning to hide the sensitive property data in meta-training support dataset. Thus, the adversary cannot capture the key information related to the sensitive properties and cannot infer victim’s private property successfully. For relevant property preservation, an adversarial game is further proposed to reduce the inference success rate of the adversary. We conduct comprehensive experiments to evaluate the effectiveness of NOSnoop. When hiding the sensitive property data in meta-training support dataset, NOSnoop achieves an inference AUC score as low as 0.4984 for irrelevant property preservation, meaning the adversary cannot distinguish whether the training batch has the sensitive property data or not. When preserving the relevant property, NOSnoop is able to achieve an inference AUC score of 0.5091 without compromising model utility.},
	journal = {IEEE Internet of Things Journal},
	author = {Ma, Xindi and Li, Baopu and Jiang, Qi and Chen, Yimin and Gao, Sheng and Ma, Jianfeng},
	year = {2021},
	keywords = {Collaborative work, Computational modeling, Data models, Data privacy, Inference Attack, Internet of Things, Machine Learning, Meta Learning., Privacy, Privacy Preservation, Training},
	pages = {1--1},
}
Downloads: 0
About
Documentation
Keywords
Search
Users
Terms and Conditions of Use
Privacy Policy
Sitemap
© BibBase.org 2021