ML privacy

Evaluations of Machine Learning Privacy Defenses are Misleading
We find that empirical evaluations of heuristic privacy defenses can be highly misleading, and propose a new evaluation protocol that is reliable and efficient.
Michael Aerni, Jie Zhang, Florian Tramèr
PDF Cite Code Blog post Twitter ACM DOI