Privacy‐preserving generative framework for images against membership inference attacks

Yang, Ruikang; Ma, Jianfeng; Miao, Yinbin; Ma, Xindi

doi:10.1049/cmu2.12507

Cited by 7 publications

(2 citation statements)

References 35 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…However, the method can only share noised gradients but not the whole noised graph data, which could perform less well in SN data utility preservation. Another paper 37 proposes a PPNE framework that can generate a privacy-preserving network embedding against private link inference attacks with an innovative quantification of privacy gain and utility loss. The research 38 develops a private link protection model SLPGE with adversarially regularized variational graph autoencoder (ARVGA) to defend against link inference attacks, intending to reduce the private information encoded in the graph embedding.…”

Section: Privacy-preserving Graph Publishing (Ppgp)mentioning

confidence: 99%

See 1 more Smart Citation

Privacy‐preserving graph publishing with disentangled variational information bottleneck

Ma,

Li,

Sun

et al. 2023

Concurrency and Computation

View full text Add to dashboard Cite

SummarySocial networks collect enormous amounts of user personal and behavioral data, which could threaten users' privacy if published or shared directly. Privacy‐preserving graph publishing (PPGP) can make user data available while protecting private information. For this purpose, in PPGP, anonymization methods like perturbation and generalization are commonly used. However, traditional anonymization methods are challenging in balancing high‐level privacy and utility, ineffective at defending against both various link and hybrid inference attacks, as well as vulnerable to graph neural network (GNN)‐based attacks. To solve those problems, we present a novel privacy‐disentangled approach that disentangles private and non‐private information for a better privacy‐utility trade‐off. Moreover, we propose a unified graph deep learning framework for PPGP, denoted privacy‐disentangled variational information bottleneck (PDVIB). Using low‐dimensional perturbations, the model generates an anonymized graph to defend against various inference attacks, including GNN‐based attacks. Particularly, the model fits various privacy settings by employing adjustable perturbations at the node level. With three real‐world datasets, PDVIB is demonstrated to generate robust anonymous graphs that defend against various privacy inference attacks while maintaining the utility of non‐private information.

show abstract

Section: Privacy-preserving Graph Publishing (Ppgp)mentioning

confidence: 99%

“…PPNE 37 : The model generates a privacy-preserving network embedding of original SN data to defend against link inference attacks with an innovative quantification of privacy and utility loss.…”

Section: Baseline Modelsmentioning

confidence: 99%