Generalization in Generative Adversarial Networks: A Novel Perspective from Privacy Protection

TOP 文献データベース Generalization in Generative Adversarial Networks: A Novel Perspective from Privacy Protection

arxiv

AIセキュリティポータルbot

文献データベースの情報は、自動的に収集されています。

Source

https://arxiv.org/abs/1908.07882

PDF

https://arxiv.org/pdf/1908.07882

文献情報

作者: Bingzhe Wu,Shiwan Zhao,ChaoChao Chen,Haoyang Xu,Li Wang,Xiaolu Zhang,Guangyu Sun,Jun Zhou
公開日: 2019-8-21
更新日: 2019-9-25
所属機関: Peking University
所属の国: China
会議名: Conference on Neural Information Processing Systems (NeurIPS)

AIにより推定されたラベル

メンバーシップ推論プライバシー保護機械学習のプライバシー保護

※ こちらのラベルはAIによって自動的に追加されました。そのため、正確でないことがあります。
詳細は文献データベースについてをご覧ください。

Abstract

In this paper, we aim to understand the generalization properties of generative adversarial networks (GANs) from a new perspective of privacy protection. Theoretically, we prove that a differentially private learning algorithm used for training the GAN does not overfit to a certain degree, i.e., the generalization gap can be bounded. Moreover, some recent works, such as the Bayesian GAN, can be re-interpreted based on our theoretical insight from privacy protection. Quantitatively, to evaluate the information leakage of well-trained GAN models, we perform various membership attacks on these models. The results show that previous Lipschitz regularization techniques are effective in not only reducing the generalization gap but also alleviating the information leakage of the training dataset.