On the Privacy Effect of Data Enhancement via the Lens of Memorization

arXiv:2208.08270v3 Announce Type: replace-cross
Abstract: Machine learning poses severe privacy concerns as it has been shown that the learned models can reveal sensitive information about their training data. Many works have investigated the effect of widely adopted data augmentation and adversarial training techniques, termed data enhancement in the paper, on the privacy leakage of machine learning models. Such privacy effects are often measured by membership inference attacks (MIAs), which aim to identify whether a particular example belongs to the training …

adversarial arxiv augmentation can cs.cr cs.cv cs.lg data effect information lens machine machine learning privacy privacy concerns reveal sensitive sensitive information techniques training training data