TR2019-113
Privacy-Preserving Adversarial Networks
-
- , "Privacy-Preserving Adversarial Networks", Allerton Conference on Communication, Control, and Computing, DOI: 10.1109/ALLERTON.2019.8919758, September 2019.BibTeX TR2019-113 PDF
- @inproceedings{Tripathy2019sep,
- author = {Tripathy, Ardhendu and Wang, Ye and Ishwar, Prakash},
- title = {Privacy-Preserving Adversarial Networks},
- booktitle = {Allerton Conference on Communication, Control, and Computing},
- year = 2019,
- month = sep,
- publisher = {IEEE},
- doi = {10.1109/ALLERTON.2019.8919758},
- isbn = {978-1-7281-3151-1},
- url = {https://www.merl.com/publications/TR2019-113}
- }
- , "Privacy-Preserving Adversarial Networks", Allerton Conference on Communication, Control, and Computing, DOI: 10.1109/ALLERTON.2019.8919758, September 2019.
-
MERL Contact:
-
Research Areas:
Information Security, Machine Learning, Signal Processing
Abstract:
We propose a data-driven framework for optimizing privacy-preserving data release mechanisms to attain the information-theoretically optimal tradeoff between minimizing distortion of useful data and concealing specific sensitive information. Our approach employs adversarially-trained neural networks to implement randomized mechanisms and to perform a variational approximation of mutual information privacy. We validate our Privacy-Preserving Adversarial Networks (PPAN) framework via proof-of-concept experiments on discrete and continuous synthetic data, as well as the MNIST handwritten digits dataset. For synthetic data, our model-agnostic PPAN approach achieves tradeoff points very close to the optimal tradeoffs that are analytically-derived from model knowledge. In experiments with the MNIST data, we visually demonstrate a learned tradeoff between minimizing the pixel-level distortion versus concealing the written digit.