Loading Events

« All Events

  • This event has passed.

Seminar : Sandra Strohback and Yang Zhang (CISPA)

September 28, 2018 @ 2:00 pm - 3:00 pm

Our colleagues from CISPA Saarland, Sandra Strohback and Yang Zhang will visit us
on friday september, 28 to give the following talks in room A008 :
2pm – 2pm15 :  Sandra Strohback will give a presentation on the next Workshop CISPA-LORIA on Security and Privacy Issues of Big Data:
2pm15 – 3pm: Yang Zhang will give a talk entitled ” ML-Leaks: Model and Data Independent Membership Inference Attacks and Defenses on Machine Learning Models”.


Machine learning (ML) has become a core component of many real-world applications and training data is a key factor that drives current progress. This huge success has led Internet companies to deploy machine learning as a service (MLaaS). Recently, the first membership inference attack has shown that extraction of information on the training set is possible in such MLaaS settings, which has severe security and privacy implications.

However, the early demonstrations of the feasibility of such attacks have many assumptions on the adversary, such as using multiple so-called shadow models, knowledge of the target model structure, and having a dataset from the same distribution as the target model’s training data.
In this talk, I will present our newest results on relaxing all these key assumptions, thereby showing that such attacks are very broadly applicable at low cost and thereby pose a more severe risk than previously thought. We present the most comprehensive study so far on
this emerging and developing threat using eight diverse datasets which show the viability of the proposed attacks across domains.

In addition, we propose the first effective defense mechanisms against such broader class of membership inference attacks that maintain a high level of utility of the ML model.


September 28, 2018
2:00 pm - 3:00 pm
Event Category:



Logo du CNRS

Logo d'Inria

Logo Université de Lorraine