Reinforcement Unlearning

no code implementations • 26 Dec 2023 • Dayong Ye, Tianqing Zhu, Congcong Zhu, Derui Wang, Zewei Shi, Sheng Shen, Wanlei Zhou, Minhui Xue

Machine unlearning refers to the process of mitigating the influence of specific training data on machine learning models based on removal requests from data owners.

Inference Attack Machine Unlearning +1

Boosting Model Inversion Attacks with Adversarial Examples

no code implementations • 24 Jun 2023 • Shuai Zhou, Tianqing Zhu, Dayong Ye, Xin Yu, Wanlei Zhou

Hence, in this paper, we propose a new training paradigm for a learning-based model inversion attack that can achieve higher attack accuracy in a black-box setting.

New Challenges in Reinforcement Learning: A Survey of Security and Privacy

no code implementations • 31 Dec 2022 • Yunjiao Lei, Dayong Ye, Sheng Shen, Yulei Sui, Tianqing Zhu, Wanlei Zhou

A large number of studies have focused on these security and privacy problems in reinforcement learning.

Autonomous Driving Decision Making +2

One Parameter Defense -- Defending against Data Inference Attacks via Differential Privacy

no code implementations • 13 Mar 2022 • Dayong Ye, Sheng Shen, Tianqing Zhu, Bo Liu, Wanlei Zhou

The experimental results show the method to be an effective and timely defense against both membership inference and model inversion attacks with no reduction in accuracy.

Model Inversion Attack against Transfer Learning: Inverting a Model without Accessing It

no code implementations • 13 Mar 2022 • Dayong Ye, Huiqiang Chen, Shuai Zhou, Tianqing Zhu, Wanlei Zhou, Shouling Ji

However, they may not mean that transfer learning models are impervious to model inversion attacks.

Transfer Learning

Label-only Model Inversion Attack: The Attack that Requires the Least Information

no code implementations • 13 Mar 2022 • Dayong Ye, Tianqing Zhu, Shuai Zhou, Bo Liu, Wanlei Zhou

In launching a contemporary model inversion attack, the strategies discussed are generally based on either predicted confidence score vectors, i. e., black-box attacks, or the parameters of a target model, i. e., white-box attacks.

DP-Image: Differential Privacy for Image Data in Feature Space

no code implementations • 12 Mar 2021 • Hanyu Xue, Bo Liu, Ming Ding, Tianqing Zhu, Dayong Ye, Li Song, Wanlei Zhou

The excessive use of images in social networks, government databases, and industrial applications has posed great privacy risks and raised serious concerns from the public.

Differentially Private Multi-Agent Planning for Logistic-like Problems

no code implementations • 16 Aug 2020 • Dayong Ye, Tianqing Zhu, Sheng Shen, Wanlei Zhou, Philip S. Yu

To the best of our knowledge, this paper is the first to apply differential privacy to the field of multi-agent planning as a means of preserving the privacy of agents for logistic-like problems.

Privacy Preserving

More Than Privacy: Applying Differential Privacy in Key Areas of Artificial Intelligence

no code implementations • 5 Aug 2020 • Tianqing Zhu, Dayong Ye, Wei Wang, Wanlei Zhou, Philip S. Yu

Artificial Intelligence (AI) has attracted a great deal of attention in recent years.

BIG-bench Machine Learning Fairness