Home
Publications
Contact
ML privacy
Evaluations of Machine Learning Privacy Defenses are Misleading
We find that empirical evaluations of heuristic privacy defenses can be highly misleading, and propose a new evaluation protocol that is reliable and efficient.
Michael Aerni
,
Jie Zhang
,
Florian Tramèr
PDF
Cite
Code
Blog post
Twitter
ACM DOI
Cite
×