As machine learning becomes more widely used, the need to study its implications in security and privacy becomes more urgent. Although the body of work in privacy has been steadily growing over the past few years, research on the privacy aspects of machine learning has received less focus than the security aspects. Our contribution in this research is an analysis of more than 40 papers related to privacy attacks against machine learning that have been published during the past seven years. We propose an attack taxonomy, together with a threat model that allows the categorization of different attacks based on the adversarial knowledge, and the assets under attack. An initial exploration of the causes of privacy leaks is presented, as well as a detailed analysis of the different attacks. Finally, we present an overview of the most commonly proposed defenses and a discussion of the open problems and future directions identified during our analysis.
翻译:随着机器学习的日益广泛使用,研究机器学习对安全和隐私的影响的必要性就变得更加紧迫。尽管过去几年里,隐私方面的工作一直在稳步增加,但关于机器学习的隐私方面的研究没有像安全方面那样受到重视。我们对这项研究的贡献是分析过去7年中发表的40多篇关于对机器学习进行隐私攻击的论文。我们建议采用攻击分类,同时采用威胁模式,根据对立知识对不同的攻击和被攻击的资产进行分类。对隐私泄漏的原因进行了初步探讨,并对不同的攻击进行了详细分析。最后,我们概述了最常提出的辩护,并讨论了我们分析期间查明的公开问题和今后的方向。
相关内容
微信扫码咨询专知VIP会员