-scaled.png)
Labels Predicted by AI
Membership Inference Privacy-Preserving Algorithm Privacy-Preserving Machine Learning
Please note that these labels were automatically added by AI. Therefore, they may not be entirely accurate.
For more details, please see the About the Literature Database page.
Abstract
Recent work argues for using Gaussian differential privacy (GDP) to report the privacy guarantees in privacy-preserving machine learning. We provide principled mappings from pure-DP ε to GDP μ by matching the worst-case success of a strong-adversary membership inference attack in terms of three metrics: multiplicative advantage at fixed FPR, precision at fixed recall, and the standard privacy profile. We tabulate μ values across a useful range of parameters and recommend μ ≈ ε/5 as a conservative general-purpose conversion.