Revisiting Machine Learning Training Process for Enhanced Data Privacy

2021 Thirteenth International Conference on Contemporary Computing (IC3-2021) Pub Date : 2021-08-05 DOI:10.1145/3474124.3474208

Adit Goyal, Vikas Hassija, V. Albuquerque

{"title":"Revisiting Machine Learning Training Process for Enhanced Data Privacy","authors":"Adit Goyal, Vikas Hassija, V. Albuquerque","doi":"10.1145/3474124.3474208","DOIUrl":null,"url":null,"abstract":"The increasing use of machine learning algorithms for nearly every aspect of our lives has brought a new challenge to the forefront, one of user-privacy. Once the data has been shared by the user online, it is difficult to revoke the access of that data if it has already been used to train the model. For any personal data, every user should reserve the right for the data to be forgotten. To solve the above-mentioned problem, a few frameworks have been introduced recently to achieve machine unlearning or inverse learning. Although there is no specific definition of forgetting in DNNs (deep neural networks) yet, our focus will be on selectively forgetting a subset of data belonging to a class, which was initially used to train the model, without the need of re-training from scratch, nor using the initial training data. This method scrubs the weights clean of the data that needs to be forgotten. Concepts for the stability of stochastic gradient descent and differential privacy are exploited in this approach to address the problem of selective forgetting in DNNs.","PeriodicalId":144611,"journal":{"name":"2021 Thirteenth International Conference on Contemporary Computing (IC3-2021)","volume":"14 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-08-05","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 Thirteenth International Conference on Contemporary Computing (IC3-2021)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3474124.3474208","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 3

Abstract

The increasing use of machine learning algorithms for nearly every aspect of our lives has brought a new challenge to the forefront, one of user-privacy. Once the data has been shared by the user online, it is difficult to revoke the access of that data if it has already been used to train the model. For any personal data, every user should reserve the right for the data to be forgotten. To solve the above-mentioned problem, a few frameworks have been introduced recently to achieve machine unlearning or inverse learning. Although there is no specific definition of forgetting in DNNs (deep neural networks) yet, our focus will be on selectively forgetting a subset of data belonging to a class, which was initially used to train the model, without the need of re-training from scratch, nor using the initial training data. This method scrubs the weights clean of the data that needs to be forgotten. Concepts for the stability of stochastic gradient descent and differential privacy are exploited in this approach to address the problem of selective forgetting in DNNs.

查看原文本刊更多论文

重新审视增强数据隐私的机器学习训练过程

机器学习算法越来越多地应用于我们生活的方方面面，这给用户隐私带来了新的挑战。一旦数据被用户在线共享，如果该数据已被用于训练模型，则很难撤销对该数据的访问。对于任何个人资料，每个用户有权要求该等资料被遗忘。为了解决上述问题，最近引入了一些框架来实现机器反学习或逆学习。虽然dnn(深度神经网络)中还没有具体的遗忘定义，但我们的重点将是选择性地忘记属于一个类的数据子集，这些数据最初用于训练模型，而不需要从头开始重新训练，也不需要使用初始训练数据。该方法将权重清除掉需要遗忘的数据。该方法利用了随机梯度下降稳定性和微分隐私的概念来解决深度神经网络中的选择性遗忘问题。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2021 Thirteenth International Conference on Contemporary Computing (IC3-2021)

自引率

0.00%

发文量