conftrace_
2018 EMNLP EMNLP 2018

Privacy-preserving Neural Representations of Text

Abstract

AbstractThis article deals with adversarial attacks towards deep learning systems for Natural Language Processing (NLP), in the context of privacy protection. We study a specific type of attack: an attacker eavesdrops on the hidden representations of a neural text classifier and tries to recover information about the input text. Such scenario may arise in situations when the computation of a neural network is shared across multiple devices, e.g. some hidden representation is computed by a userโ€™s device and sent to a cloud-based model. We measure the privacy of a hidden representation by the ability of an attacker to predict accurately specific private information from it and characterize the tradeoff between the privacy and the utility of neural representations. Finally, we propose several defense methods based on modified training objectives and show that they improve the privacy of neural representations.

๐ŸŒ‰ Interdisciplinary Bridge - Artificial Intelligence and Deep Learning and Machine Learning and Security & Privacy
๐Ÿ“ˆ Trend Setter - Privacy
๐Ÿงญ Keyword Pioneer - neural text classifier
๐Ÿฃ Hot Topic Early Bird - privacy-preserving learning
๐Ÿ Cross-Pollinator - Artificial Intelligence, Computer Science, Computer Vision, Data Science & Analytics, Deep Learning, Healthcare & Medicine, Interdisciplinary, Knowledge & Reasoning, Machine Learning, Mathematics & Optimization, Natural Language Processing, Reinforcement Learning, Robotics, Security & Privacy, Speech & Audio