Editing
Privacy-Preserving Machine Learning
(section)
Jump to navigation
Jump to search
Warning:
You are not logged in. Your IP address will be publicly visible if you make any edits. If you
log in
or
create an account
, your edits will be attributed to your username, along with other benefits.
Anti-spam check. Do
not
fill this in!
== <span style="color: #FFFFFF;">Remembering</span> == * '''Differential privacy (DP)''' β A mathematical guarantee that the inclusion or exclusion of any single record makes little difference to the output, bounded by parameter Ξ΅. * '''Epsilon (Ξ΅) in DP''' β The privacy budget: smaller Ξ΅ = stronger privacy guarantee but more noise added. Typical values: Ξ΅=1β10. * '''Noise mechanism''' β Adding calibrated random noise to protect privacy: Laplace mechanism, Gaussian mechanism. * '''DP-SGD (Differentially Private SGD)''' β Training neural networks with differential privacy by clipping and noising gradients. * '''Federated learning''' β Training on data distributed across many devices without centralizing the raw data; only model updates are shared. * '''Secure aggregation''' β Aggregating federated model updates without the server seeing individual updates (using cryptographic protocols). * '''Homomorphic encryption (HE)''' β Cryptographic technique allowing computation on encrypted data without decryption. * '''Secure Multi-Party Computation (SMPC)''' β Multiple parties jointly compute a function on their private inputs without revealing those inputs. * '''Membership inference attack''' β An attack testing whether a specific record was in the training data; measures privacy leakage. * '''Model inversion attack''' β Reconstructing training data from a trained model's outputs; a privacy risk. * '''Data minimization''' β Collecting and using only the minimum data necessary; a GDPR principle. * '''Synthetic data (privacy)''' β Generating realistic but non-personal data to share instead of real records. * '''k-anonymity''' β A data protection model where each record is indistinguishable from at least k-1 others. * '''Privacy budget''' β The total privacy expenditure across multiple DP queries or training steps; must be managed carefully. </div> <div style="background-color: #006400; color: #FFFFFF; padding: 20px; border-radius: 8px; margin-bottom: 15px;">
Summary:
Please note that all contributions to BloomWiki may be edited, altered, or removed by other contributors. If you do not want your writing to be edited mercilessly, then do not submit it here.
You are also promising us that you wrote this yourself, or copied it from a public domain or similar free resource (see
BloomWiki:Copyrights
for details).
Do not submit copyrighted work without permission!
Cancel
Editing help
(opens in new window)
Navigation menu
Personal tools
Not logged in
Talk
Contributions
Create account
Log in
Namespaces
Page
Discussion
English
Views
Read
Edit
View history
More
Search
Navigation
Main page
Recent changes
Random page
Help about MediaWiki
Tools
What links here
Related changes
Special pages
Page information