一种基于分层扰动的隐私保护深度神经网络

2019 International Conference on Artificial Intelligence in Information and Communication (ICAIIC) Pub Date : 2019-02-01 DOI:10.1109/ICAIIC.2019.8669014

Tosin A. Adesuyi, Byeong-Man Kim

{"title":"一种基于分层扰动的隐私保护深度神经网络","authors":"Tosin A. Adesuyi, Byeong-Man Kim","doi":"10.1109/ICAIIC.2019.8669014","DOIUrl":null,"url":null,"abstract":"Datasets are sources of information mining where knowledge can be derived. The versatility of these dataset determines the quality of knowledge gained. However, several of these data contains personal sensitive information that can lead to infringement of privacy. Existing research tends to deliver DNN models that can preserve privacy of personal information but the accuracy of these models are rather much lower as compared to their non-privacy preserving counterparts. This is due to the degree of noise and the points where noise was added to perturb the model data. Consequently, this has led to minimal adoption of privacy preserving DNN models in the industrial world. In this paper, we present a layer-wise perturbation approach and differential privacy technique to determine points of perturbation and preserve privacy. Our approach was able to narrow down the accuracy gap between privacy-preserving and non-privacy preserving DNN model.","PeriodicalId":273383,"journal":{"name":"2019 International Conference on Artificial Intelligence in Information and Communication (ICAIIC)","volume":"103 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-02-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"15","resultStr":"{\"title\":\"A layer-wise Perturbation based Privacy Preserving Deep Neural Networks\",\"authors\":\"Tosin A. Adesuyi, Byeong-Man Kim\",\"doi\":\"10.1109/ICAIIC.2019.8669014\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Datasets are sources of information mining where knowledge can be derived. The versatility of these dataset determines the quality of knowledge gained. However, several of these data contains personal sensitive information that can lead to infringement of privacy. Existing research tends to deliver DNN models that can preserve privacy of personal information but the accuracy of these models are rather much lower as compared to their non-privacy preserving counterparts. This is due to the degree of noise and the points where noise was added to perturb the model data. Consequently, this has led to minimal adoption of privacy preserving DNN models in the industrial world. In this paper, we present a layer-wise perturbation approach and differential privacy technique to determine points of perturbation and preserve privacy. Our approach was able to narrow down the accuracy gap between privacy-preserving and non-privacy preserving DNN model.\",\"PeriodicalId\":273383,\"journal\":{\"name\":\"2019 International Conference on Artificial Intelligence in Information and Communication (ICAIIC)\",\"volume\":\"103 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-02-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"15\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2019 International Conference on Artificial Intelligence in Information and Communication (ICAIIC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICAIIC.2019.8669014\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 International Conference on Artificial Intelligence in Information and Communication (ICAIIC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICAIIC.2019.8669014","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 15

摘要

数据集是信息挖掘的来源，可以从中获得知识。这些数据集的多功能性决定了所获得知识的质量。然而，其中一些数据包含可能导致侵犯隐私的个人敏感信息。现有的研究倾向于提供能够保护个人信息隐私的深度神经网络模型，但与非隐私保护模型相比，这些模型的准确性要低得多。这是由于噪声的程度和添加噪声来干扰模型数据的点。因此，这导致在工业世界中很少采用保护隐私的DNN模型。在本文中，我们提出了一种分层摄动方法和差分隐私技术来确定摄动点并保护隐私。我们的方法能够缩小隐私保护和非隐私保护DNN模型之间的准确性差距。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A layer-wise Perturbation based Privacy Preserving Deep Neural Networks

Datasets are sources of information mining where knowledge can be derived. The versatility of these dataset determines the quality of knowledge gained. However, several of these data contains personal sensitive information that can lead to infringement of privacy. Existing research tends to deliver DNN models that can preserve privacy of personal information but the accuracy of these models are rather much lower as compared to their non-privacy preserving counterparts. This is due to the degree of noise and the points where noise was added to perturb the model data. Consequently, this has led to minimal adoption of privacy preserving DNN models in the industrial world. In this paper, we present a layer-wise perturbation approach and differential privacy technique to determine points of perturbation and preserve privacy. Our approach was able to narrow down the accuracy gap between privacy-preserving and non-privacy preserving DNN model.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2019 International Conference on Artificial Intelligence in Information and Communication (ICAIIC)

自引率

0.00%

发文量