Search Results for author:
Found 25 papers, 6 papers with code
Visual Privacy Auditing with Diffusion Models
We propose a reconstruction attack based on diffusion models (DMs) that assumes adversary access to real-world image priors and assess its implications on privacy leakage under DP-SGD.
Bounding Reconstruction Attack Success of Adversaries Without Data Priors
When training ML models with differential privacy (DP), formal upper bounds on the success of such reconstruction attacks can be provided.
How Low Can You Go? Surfacing Prototypical In-Distribution Samples for Unsupervised Anomaly Detection
Additionally, we show that the prototypical in-distribution samples identified by our proposed methods translate well to different models and other datasets and that using their characteristics as guidance allows for successful manual selection of small subsets of high-performing samples.
Reconciling AI Performance and Data Reconstruction Resilience for Medical Imaging
Although a lower budget decreases the risk of information leakage, it typically also reduces the performance of such models.
Bias-Aware Minimisation: Understanding and Mitigating Estimator Bias in Private SGD
Differentially private SGD (DP-SGD) holds the promise of enabling the safe and responsible application of machine learning to sensitive datasets.
Body Fat Estimation from Surface Meshes using Graph Neural Networks
Body fat volume and distribution can be a strong indication for a person's overall health and the risk for developing diseases like type 2 diabetes and cardiovascular diseases.
Interpretable 2D Vision Models for 3D Medical Images
Training Artificial Intelligence (AI) models on 3D images presents unique challenges compared to the 2D case: Firstly, the demand for computational resources is significantly higher, and secondly, the availability of large datasets for pre-training is often limited, impeding training success.
Bounding data reconstruction attacks with the hypothesis testing interpretation of differential privacy
We explore Reconstruction Robustness (ReRo), which was recently proposed as an upper bound on the success of data reconstruction attacks against machine learning models.
Private, fair and accurate: Training large-scale, privacy-preserving AI models in medical imaging
In this work, we evaluated the effect of privacy-preserving training of AI models regarding accuracy and fairness compared to non-private training.
How Do Input Attributes Impact the Privacy Loss in Differential Privacy?
Differential privacy (DP) is typically formulated as a worst-case privacy guarantee over all individuals in a database.
Exploiting segmentation labels and representation learning to forecast therapy response of PDAC patients
The prediction of pancreatic ductal adenocarcinoma therapy response is a clinically challenging and important task in this high-mortality tumour entity.
Generalised Likelihood Ratio Testing Adversaries through the Differential Privacy Lens
Differential Privacy (DP) provides tight upper bounds on the capabilities of optimal adversaries, but such adversaries are rarely encountered in practice.
SmoothNets: Optimizing CNN architecture design for differentially private deep learning
The arguably most widely employed algorithm to train deep neural networks with Differential Privacy is DPSGD, which requires clipping and noising of per-sample gradients.
Ranked #2 on
Image Classification
on Imagenette
Differentially private training of residual networks with scale normalisation
The training of neural networks with Differentially Private Stochastic Gradient Descent offers formal Differential Privacy guarantees but introduces accuracy trade-offs.
Distributed Machine Learning and the Semblance of Trust
The utilisation of large and diverse datasets for machine learning (ML) at scale is required to promote scientific insight into many meaningful problems.
Complex-valued deep learning with differential privacy
We present $\zeta$-DP, an extension of differential privacy (DP) to complex-valued functions.
A unified interpretation of the Gaussian mechanism for differential privacy through the sensitivity index
$\psi$ uniquely characterises the GM and its properties by encapsulating its two fundamental quantities: the sensitivity of the query and the magnitude of the noise perturbation.
An automatic differentiation system for the age of differential privacy
We introduce Tritium, an automatic differentiation-based sensitivity analysis framework for differentially private (DP) machine learning (ML).
Partial sensitivity analysis in differential privacy
However, while techniques such as individual R\'enyi DP (RDP) allow for granular, per-person privacy accounting, few works have investigated the impact of each input feature on the individual's privacy loss.
NeuralDP Differentially private neural networks by design
The application of differential privacy to the training of deep neural networks holds the promise of allowing large-scale (decentralized) use of sensitive data while providing rigorous privacy guarantees to the individual.
Differentially private training of neural networks with Langevin dynamics for calibrated predictive uncertainty
We show that differentially private stochastic gradient descent (DP-SGD) can yield poorly calibrated, overconfident deep learning models.
Sensitivity analysis in differentially private machine learning using hybrid automatic differentiation
Reconciling large-scale ML with the closed-form reasoning required for the principled analysis of individual privacy loss requires the introduction of new tools for automatic sensitivity analysis and for tracking an individual's data and their features through the flow of computation.
Differentially private federated deep learning for multi-site medical image segmentation
The application of PTs to FL in medical imaging and the trade-offs between privacy guarantees and model utility, the ramifications on training performance and the susceptibility of the final models to attacks have not yet been conclusively investigated.
Privacy-preserving medical image analysis
The utilisation of artificial intelligence in medicine and healthcare has led to successful clinical applications in several domains.
Oktoberfest Food Dataset
We release a realistic, diverse, and challenging dataset for object detection on images.
