Abstract: Privacy-preserving machine learning requires that models do not reveal any private information about their training data. However, model inversion attacks ...
Abstract: In the black-box model probing attack, the attacker sends a series of model inference requests to a victim model to map out the classification boundary of the model. This attack is ...