Privacy and Deep Learning - Friends or Foes?

•Download as PPTX, PDF•

0 likes•298 views

I will start by describing privacy risk in deep learning, in particular memorization of inputs during network training and attacks that expose these memorized inputs. I will then talk about methods to mitigate memorization, and increase privacy, introducing the concept of differential privacy as a measure for exposure risk, and the idea of using generative networks to create synthetic data to protect the original training data. Finally, I will remark on benefits in generalization that come as a side effect of privacy enhancing deep learning methods.

Data & Analytics

PRIVACY AND DEEP LEARNING -
FRIENDS OR FOES?
KLAUDIUS KALCHER

Private Data in Deep Learning Models
Private Data Private Data?Private Data?

Generative AI
cat: 82%
dog: 18%
AI Inference
Generative AI

Synthetic Shakespeare
Generative AI for Synthetic Text

Application for Text Generation
Gmail Smart Compose

Originality of GAN-generated Faces
Generated Faces
5 Nearest Neighbors
From Training Set

However...
Progressive Growing of GANs for Improved Quality, Stability, and Variation, Karras et al. (2017/2018)

A case of Overfitting?
Training loss decreases
Validation loss starts to increase
Best model in terms of
generalization

Attack Scenario: Attribute Inference
Q: given some attributes of individual A in the training dataset -
what are the others?
Age Date of Birth Sex ZIP Code Blood Pressure Medication Heart Attack
49 03.12. F 86923 140/90 N Y
62 28.02. M 86923 135/85 Y N
55 14.09. M 83129 160/80 N Y
67 13.03. F 83235 140/80 N N
... ... ... ... ... ... ...
??

Attack Scenario: Model Inversion
Reconstructed Original
Access only to API:
1. Reverse engineer model
2. Invert model
Model Inversion Attacks that Exploit
Confidence Information and Basic
Countermeasures,
Fredrikson et al. (2015)

Attack Scenario: Membership Inference
Q: given individual A - was A in the training dataset?
Harmful examples:
- Medical study databases
- Customer databases
- ...

The issue of Model Capacity
# Parameters > # Training examples
e.g. ImageNet Competition: 1.2 m examples
# Parameters of top models:
Alexnet - 61 m
VGG - 138 m
Inception V1 - 7 m
Resnet-50 - 25.5 m

Avoiding Overfitting using Regularization?
Regularization methods
● Early stopping
● Dropout
● Weight decay
● Weight quantization
It’s not just overfitting!

Measuring Memorization
Overfitting vs Secret Exposure
Maximum exposure reached
before overfitting begins!
Training is memorization
The Secret Sharer: Measuring Unintended Neural Network Memorization & Extracting Secrets, Carlini et al. (2018)

Differential Privacy
≈ 1 + 𝜖 for small 𝜖

Differentially Private Stochastic Gradient Descent
Deep Learning with Differential Privacy, M. Abadi et al. (2016)
Implementation in
tensorflow-privacy

Private Aggregation of Teacher Ensembles (PATE)
All answers must be the
consensus of all teachers
Privacy and machine learning: two unexpected allies?, Nicolas Papernot and Ian Goodfellow (2018)

Training a Differentially Private Student Model
Private Open

Training on Synthetic Data
Real Data
NAME AGE GENDER ITEM EUR DATE TIME
Mary 25y female Book 12€ 4/2/19 8:12
John 72y male Pizza 34€ 4/2/19 18:12
...
Bill 18y male Swim 6€ 4/4/19 10:02
Bill 18y male Shoes 123€ 4/4/19 12:32
Synthetic Data
NAME AGE GENDER ITEM EUR DATE TIME
Kim 29y female Amazon 236€ 4/4/19 12:32
Kim 29y female Zalando 36€ 4/4/19 18:58
...
Brian 82y male Beer 6€ 4/2/19 21:32
Sue 24y female Sushi 12€ 4/2/19 21:32
ModelPrivate OpenGenerative Model
(must have randomness)

Privacy vs. Accuracy - a Tradeoff?
Theory
Reduced influence
of individual
Better generalization
Practice
Difficulty estimating
privacy loss
Conservative upper
bounds
Reduced accuracy

We believe in the power of data.
We believe in the right for privacy.
We are here to make it possible!
We’re hiring!
klaudius.kalcher@mostly.ai

Privacy and Deep Learning - Friends or Foes?

The document introduces a Jeopardy-style math game to review addition and subtraction skills up to three digits. The game is intended to help students practice academic knowledge standards involving adding and subtracting whole numbers, as well as using mental math strategies. Instructions are provided for playing the game whole group, small group, independently, or at home by accessing the PowerPoint from the class website.

Coping Coach

INSPIRE_Network

Clat 2013: Analysisv by TestCracker

Sudhindra Rao

First things first – CLAT 2013 was on the expected lines and it was manageable or should we say, crackable! We were there at the gates talking to CLAT takers and we have got an exhaustive feedback from our students too (we are happy to know we could successfully predict most of the questions – but we will do the chest-thumping act in a bit!). TestCracker is not here to pronounce a judgment on CLAT 2013 – but merely to present to you the facts of the matter…

The Reasoning Pack

Teaching Ideas

Machine Learning

butest

The document discusses various machine learning concepts and techniques including inductive learning, concept learning, supervised and unsupervised learning, classification, categorization, clustering, decision trees, naive Bayes classification, and knowledge discovery in databases (KDD). It provides examples and explanations of different machine learning algorithms like ID3, C4.5, and gradient descent. It also covers applications of data mining and text mining.

Don't blindly trust your ML System, it may change your life (Azzurra Ragone, ...

Data Driven Innovation

Issta21 presentation lingfeng_zhang

LingfengZhang5

Frontiers of Open Data Science Research

odsc

The document discusses open data science research topics presented at a conference, including opportunities and challenges with learning analytics and adaptive learning using open data. It describes how learning analytics can help achieve large improvements in student outcomes through targeted feedback and personalized learning paths. An open analytics architecture is proposed to integrate different data sources and applications using common data standards.

The document discusses several challenges in applying deep learning to medical imaging tasks including the scarcity of labeled data, lack of interpretability, uncertainty in predictions, and difficulties with multi-center studies. It proposes and reviews various techniques to address these challenges such as data augmentation using generative models, visualization methods to interpret models, leveraging prediction uncertainty, and distributed training approaches to combine data from multiple centers. The goal is to develop artificial intelligence systems that can provide augmented intelligence to assist doctors in clinical decision making.

Unit 2 jcs mid

jcsmathfoundations

- The document discusses research on mathematics education in the United States, finding that only about a third of students are proficient in math based on national assessments. It also discusses research showing US students performing poorly compared to other nations. - The research emphasizes the need for a well-designed curriculum, quality teacher preparation, and explicitly teaching concepts and making connections to help students succeed in algebra and beyond. It discusses characteristics of students with learning difficulties in math. - The document provides an overview of effective teaching practices informed by research, including concrete-representational-abstract instruction, explicit teaching, sequencing skills appropriately, and providing cumulative practice and review.

Increasing Engagement of Today’s Learner Through Technology

Karl Kapp

What is Gamification?

Karl Kapp

Business Optimization via Causal Inference

Hanan Shteingart

The document discusses causal inference and its importance for business decision making. It notes that causal inference allows companies to make better decisions by understanding the causal effects of actions using past data. This can help companies optimize outcomes by targeting interventions only to individuals expected to benefit. The document outlines key causal inference concepts like treatment effects and explores methods like matching, weighting, and experiments to estimate causal relationships from data.

eLearning and the Future through Fact or Fishy

Karl Kapp

This document discusses the use of games and gamification in learning. It provides examples of how companies have successfully used games and gamification to engage employees in training. Research shows that games can be more effective than lectures at promoting different types of learning and retention. Effective elements of gamification include challenges, stories, avatars, feedback and allowing learners to fail. The document advocates using stories, characters, and interactivity to engage learners rather than relying on lectures or bulleted lists. It presents evidence that games can influence real-world behaviors in a positive way.

Play to Learn: Using Games and Gamification to Drive Learner Engagement and L...

Karl Kapp

Games are powerful tools for crafting learning solutions that engage, motivate and reinforce key skills and techniques. Instructional designers, training managers and anyone tasked with creating learning events needs to seriously consider implementing games into their learning toolkit. -Examine the required tradeoffs, discover how to add the game elements of challenge and story to training events and learn how the combination of fantasy and branching story techniques leads to real learning outcomes. -Learn how an underlying competency model can be used to evaluate the effectiveness of the learners’ game play by providing feedback to improve their performance in the field. -Examine the games elements that are so compelling for learning and engagementLearn how to think like a game designer when approaching your learning content -Discover the link between game elements and specific learning outcomes

What is Gamification?

Karl Kapp

This document discusses gamification of learning and instruction. It begins with definitions of gamification, game-based learning, and simulation learning. Gamification uses elements of games to encourage learning, while game-based learning uses entire games to teach. Simulation learning creates realistic practice environments. The document then discusses various elements that can aid learning when incorporated into instruction gamification, such as story, challenge, feedback, and rewards. It provides examples of how these elements can be implemented and cites related research. Throughout, it offers suggestions for how readers can apply gamification concepts to their own instructional design.

Meet up september19-final

Ido Rozen

What did AlphaGo do to beat the strongest human Go player? (Strange Group Ver...

Tobias Pfeiffer

Observational studies in social media

Carlos Castillo (ChaTo)

The document describes different study designs for observational studies, including matching designs. It provides two examples of matching designs used to study the effects of hurricanes on online friendships and the effects of exercise on mental health using Twitter data. The hurricane study matched universities affected by a hurricane with unaffected universities on variables like size and ranking. The exercise study matched Twitter users who tweeted about exercising with similar users who did not exercise. The document also discusses using propensity score matching and difference-in-differences to study the effect of having an answer accepted on question answering sites like Stack Overflow.

Deep Learning Class #0 - You Can Do It

Holberton School

DL Classe 0 - You can do it

Gregory Renard

Here are some key terms that are similar to "champagne": - Sparkling wines - French champagne - Cognac - Rosé - White wine - Sparkling wine - Wine - Burgundy - Bordeaux - Cava - Prosecco Some specific champagne brands that are similar terms include Moët, Veuve Clicquot, Dom Pérignon, Taittinger, and Bollinger. Grape varieties used in champagne production like Chardonnay and Pinot Noir could also be considered similar terms.

Automating the Diagnosis of Specific Language Impairment in School Aged Children

David O'Keeffe

Ml in genomics

BrianSchilder

Module 1 introduction to machine learning

Sara Hooker

We believe in building technical capacity all over the world. We are building and teaching an accessible introduction to machine learning for students passionate about the power of data to do good. Welcome to the course! These modules will teach you the fundamental building blocks and the theory necessary to be a responsible machine learning practitioner in your own community. Each module focuses on accessible examples designed to teach you about good practices and the powerful (yet surprisingly simple) algorithms we use to model data. To learn more about our work, visit www.deltanalytics.org

Fairness in Machine Learning

Delip Rao

ML practitioners and advocates are increasingly finding themselves becoming gatekeepers of the modern world. The models you create have power to get people arrested or vindicated, get loans approved or rejected, determine what interest rate should be charged for such loans, who should be shown to you in your long list of pursuits on your Tinder, what news do you read, who gets called for a job phone screen or even a college admission... the list goes on. My goal in this talk is to summarize the kinds of disparate outcomes that are caused by cargo cult machine learning, and recent academic efforts to address some of them.

Machine Learning for Incident Detection: Getting Started

Sqrrl

When the AIs failures send us back to our own societal biases

Clément DUFFAU

First 5 years of PSI:ML - Filip Panjevic

Institute of Contemporary Sciences

Filip Panjevic is a Co-Founder and CTO at ydrive.ai - startup dealing with self-driving cars, and one of the founders of Petnica Machine Learning School. Filip's talk will focus on the story of Petnica School, how did it start, what has changed since the beginning, how the concept of school looks right now and why is that concept good for making new data scientists. This talk will be perfect for people who consider starting their careers in the data science field!

Building valuable (online and offline) Data Science communities - Experience ...

Institute of Contemporary Sciences

The talk will be a broad overview and thoughts about building one of the biggest data science communities in India. I will talk about how an ecosystem is created and value delivered to each stakeholder. I will be sharing my experience of building MachineHack and AIMinds and other platforms. One of the core agendas of the talk will be how these platforms have enabled a unique data science education and learning experience in India. The platforms built help students and engineers to imagine and work towards a career in data science.

Similar to Privacy and Deep Learning - Friends or Foes?

Introduction to Data Science

Christy Abraham Joy

(20180728) kosaim workshop vuno - kyuhwan jung

Kyuhwan Jung

Unit 2 jcs mid

jcsmathfoundations

Increasing Engagement of Today’s Learner Through Technology

Karl Kapp

What is Gamification?

Karl Kapp

Business Optimization via Causal Inference

Hanan Shteingart

eLearning and the Future through Fact or Fishy

Karl Kapp

Play to Learn: Using Games and Gamification to Drive Learner Engagement and L...

Karl Kapp

What is Gamification?

Karl Kapp

Meet up september19-final

Ido Rozen

What did AlphaGo do to beat the strongest human Go player? (Strange Group Ver...

Tobias Pfeiffer

Observational studies in social media

Carlos Castillo (ChaTo)

Deep Learning Class #0 - You Can Do It

Holberton School

DL Classe 0 - You can do it

Gregory Renard

Automating the Diagnosis of Specific Language Impairment in School Aged Children

David O'Keeffe

Ml in genomics

BrianSchilder

Module 1 introduction to machine learning

Sara Hooker

Fairness in Machine Learning

Delip Rao

Machine Learning for Incident Detection: Getting Started

Sqrrl

When the AIs failures send us back to our own societal biases

Clément DUFFAU

Similar to Privacy and Deep Learning - Friends or Foes? (20)

Introduction to Data Science

(20180728) kosaim workshop vuno - kyuhwan jung

Unit 2 jcs mid

Increasing Engagement of Today’s Learner Through Technology

What is Gamification?

Business Optimization via Causal Inference

eLearning and the Future through Fact or Fishy

Play to Learn: Using Games and Gamification to Drive Learner Engagement and L...

What is Gamification?

Meet up september19-final

What did AlphaGo do to beat the strongest human Go player? (Strange Group Ver...

Observational studies in social media

Deep Learning Class #0 - You Can Do It

DL Classe 0 - You can do it

Automating the Diagnosis of Specific Language Impairment in School Aged Children

Ml in genomics

Module 1 introduction to machine learning

Fairness in Machine Learning

Machine Learning for Incident Detection: Getting Started

When the AIs failures send us back to our own societal biases

More from Institute of Contemporary Sciences

First 5 years of PSI:ML - Filip Panjevic

Institute of Contemporary Sciences

Building valuable (online and offline) Data Science communities - Experience ...

Institute of Contemporary Sciences

Data Science Master 4.0 on Belgrade University - Drazen Draskovic

Institute of Contemporary Sciences

Deep learning fast and slow, a responsible and explainable AI framework - Ahm...

Institute of Contemporary Sciences

PwC's recently released Responsible AI Diagnostic surveyed around 250 senior business executives from May to June 2019. The survey says that 84% of CEOs agree that AI-based decisions need to be explainable in order to be trusted. In the past few years, Deep learning has shown remarkable results in various applications, which makes it one of the first choices for many AI use cases. However, deep learning models are hard to explain, and since the majority of CEOs expect AI solutions to be explainable, deep learning has a serious challenge. Daniel Kahneman, in his book thinking fast and slow, presented two different systems the human brain uses to form thoughts and decisions: System 1: fast, intuitive and hard to explain System 2: slow, conscious and easy to explain In this talk I will present: A) PwC Responsible AI Survey B) A proposed deep learning framework that mimics the two systems of thinking C) The recent advances in the neural symbolic learning field.

Solving churn challenge in Big Data environment - Jelena Pekez

Institute of Contemporary Sciences

Application of Business Intelligence in bank risk management - Dimitar Dilov

Institute of Contemporary Sciences

This document discusses using business intelligence (BI) to improve risk management at a bank. It provides three key ways BI can create value: protecting revenue, improving risk assessments, and reducing operational costs. Specific use cases are described, including early warning systems, behavioral detection systems, and modern BI platforms that combine data aggregation, analytics, and infrastructure for faster insights. The presentation outlines a proof of concept and roadmap for implementing a modern BI system at the bank to enable self-service analytics, alerts, automated data delivery, and collaboration across the organization. Dashboards and data insights are shown as examples of the types of risk analyses and reporting that will be possible with a new modern BI platform.

Trends and practical applications of AI/ML in Fin Tech industry - Milos Kosan...

Institute of Contemporary Sciences

The talk will have 3 parts. The overview of the practical applications of the AI and ML in the FinTech industry with a short explanation of the PSD2 directive and the disruption is caused. Application of the AI/ML from the perspective of the end-user, personal financial health, financial coach, etc. The overview of the architecture, technologies, and frameworks used with practical examples from the Zuper company.

Recommender systems for personalized financial advice from concept to product...

Institute of Contemporary Sciences

We present a recommender system for personalized financial advice, which we designed for a large Swiss private bank. The final recommendations produced by the system were delivered to the end clients through a mobile banking platform. The recommender system is based on a collaborative filtering technique and can work with changing asset features, operate with implicit ratings and react to explicit feedback that clients can give using the mobile app. Moreover, we developed and implemented an approach to provide an explanation for each recommendation in the form “As you bought A, you might like B".

Advanced tools in real time analytics and AI in customer support - Milan Sima...

Institute of Contemporary Sciences

This talk shall focus on making real-time pipelines using cutting edge Big Data technologies and applying ML on gathered data. The first part of the presentation shall cover importance and necessity for streaming data processing. In addition, tools that could be used in order to build a streaming pipeline shall be proposed. The second part of this talk shall focus on making machine learning models in customer support. There shall be introduced success stories covering the need for more efficient customer support, problem resolution and gained benefits.

Complex AI forecasting methods for investments portfolio optimization - Pawel...

Institute of Contemporary Sciences

Presentation of the first complete AI investment platform. It is based on most innovative AI methods: most advanced neural networks (ResNet/DenseNet, LSTM, GAN autoencoders) and reinforcement learning for risk control and position sizing using Alpha Zero approach. It shows how the complex AI system which covers both supervised and reinforcement learning could be successfully used to investment portfolio optimization in real-time. The architecture of the platform and used algorithms will be presented together with the workflow of machine learning. Also, the real demo of the platform will be shown.

From Zero to ML Hero for Underdogs - Amir Tabakovic

Institute of Contemporary Sciences

Data and data scientists are not equal to money david hoyle

Institute of Contemporary Sciences

A lot of companies make the mistake of thinking that just hiring Data Scientists will lead to increased revenue or increased profit. For a company’s investment in Data Science to be successful the Data Scientists need to work on the right problems, with the right people, and with the right tools. In this presentation, I will talk about the lessons I have learned, and mistakes made in applying Data Science in commercial settings over the last 10 years. I will highlight what processes can increase the chances of Data Science investment being successful.

The price is right - Tomislav Krizan

Institute of Contemporary Sciences

The talk would be focusing on reasons and method for creating models which maximize sales price Gross Margin but still has high confidentiality that quote would be accepted by the client. Price changes are dynamic things that are impacted by many different elements like cost of input material, labor cost, transportation cost, scrap material due to different ordered quantities, etc. Besides input cost segments, output price is also impacted by different marketing campaigns (own and others), seasonality, past and future customer behavior as well as the behavior of the product we are selling.

When it's raining gold, bring a bucket - Andjela Culibrk

Institute of Contemporary Sciences

Data is now a valuable asset for businesses, as companies that effectively use data are outperforming their peers by moving further ahead faster and more cost-effectively. However, some businesses remain indifferent to the value of data, failing to take charge of this new gold, while customer expectations have never been higher. Coeus claims to add fuel to businesses by providing higher conversion rates through effective use of data.

Reality and traps of real time data engineering - Milos Solujic

Institute of Contemporary Sciences

In the past few years, many businesses started do understand the potential of real-time data analytics. And many of those invested time, energy and finances to make it happen, with weaker outcomes than expected. Reasons are few for this: too ambitious plans by leadership regarding leveraging data, not enough discipline defining goals and MVP for initial use cases, a plethora of tools and vendors available who claim that can solve all the problems, etc. So, how can we get the most value with reasonable costs out of fast (real-time) data? We will try to answer this question and give actionable advice.

Sensor networks for personalized health monitoring - Vladimir Brusic

Institute of Contemporary Sciences

This document discusses the design of a personalized 3A health monitoring system using sensor networks. It begins with an overview of current challenges in healthcare like an aging population and increasing costs. It then describes the proposed system which would use sensors, edge computing, blockchain and other technologies to provide continuous remote health monitoring anywhere and anytime. Key aspects of the system include a heart rate monitoring solution, data exchange centers, smart health homes and eHealth labs. The system aims to address issues like data ownership and security while providing personalized care. It concludes by discussing next steps to test and implement the continuous monitoring system.

Improving Data Quality with Product Similarity Search

Institute of Contemporary Sciences

This document discusses improving data quality through product similarity search. It describes leveraging multiple data sources like product names, descriptions, prices and attributes to calculate similarity between products. Different techniques are used depending on the data type, such as text similarity for names/descriptions, numerical similarity for prices and variant counts, and mixed similarity for attributes. Attributes require special handling due to different data types within. The document outlines challenges in comparing incompatible datasets and noisy data. It proposes a solution using an API that can customize similarity based on use cases and data specificities.

Prediction of good patterns for future sales using image recognition

Institute of Contemporary Sciences

Uroš Valant has almost 20 years of experience in planning, managing and delivering of various IT projects. He has the best and richest experience in the field of business analytics, project planning and implementation, database design and the management of development teams. In the last years, his focus is the field of predictive analytics, machine learning and applying the AI solution to a practical use in different field of work. In his talk he will present to us interactive case study of the image recognition use and AI assisted design techniques in the textile industry.

Using data to fight corruption: full budget transparency in local government

Institute of Contemporary Sciences

The presentation will start as an engaging lecture where I will present the motivation behind the project based on my academic research (my Oxford PhD among others). I will tell the audience just how rampant corruption is in local governance and why is it so persistent. Then I will present our remedy: full budget transparency. I will show them our search engine and how it works, and will call the participants to download the APIs and play with the data themselves.

Geospatial Analysis and Open Data - Forest and Climate

Institute of Contemporary Sciences

The talk will be divided into two parts. The first one is about geospatial open data and several Copernicus services where those data can be downloaded. The second one is about Forest and Climate project, as an example of geospatial analysis. The aim of the project was to identify the most suitable area for afforestation in Serbia by using satellite and Earth observation data. The results can be found at https://sumeiklima.org/.

More from Institute of Contemporary Sciences (20)