ScienceGate Book Chapters
JOURNAL ARTICLE

Reducing Model Memorization to Mitigate Membership Inference Attacks

Mehrdad SheikhjaberiDima Alhadidi

Year: 2023 Pages: 79-88
DOI: 10.1109/trustcom60117.2023.00033
   Get Full-Text PDF    Get Analytical Report

Abstract

Given a machine learning model and a record, membership inference attacks determine whether this record was used as part of the model's training dataset. This can raise privacy issues. There is a desideratum to provide robust mitigation techniques against this attack that will not affect utility. One of the state-of-the-art frameworks in this area is SELENA, which has two phases: Split-AI and Self-Distillation to train a protected model. In this paper, we introduce a novel approach to the Split-AI phase, which tries to weaken the membership inference by using the Jacobian matrix norm and entropy. We experimentally demonstrate that our approach can decrease the memorization of the machine-learning model for three datasets: Purchase100, CIFAR-10, and SVHN, more than SELENA in the same range of utility in a setting in which we do not know any member of the training data.

Keywords:
Computer science Inference Memorization Machine learning Artificial intelligence Norm (philosophy) Random forest Entropy (arrow of time) Jacobian matrix and determinant Data mining Mathematics

Metrics

2
Cited By
0.51
FWCI (Field Weighted Citation Impact)
52
Refs
0.69
Citation Normalized Percentile
Is in top 1%
Is in top 10%

Citation History

Topics

Privacy-Preserving Technologies in Data
Physical Sciences →  Computer Science →  Artificial Intelligence
Adversarial Robustness in Machine Learning
Physical Sciences →  Computer Science →  Artificial Intelligence
Cryptography and Data Security
Physical Sciences →  Computer Science →  Artificial Intelligence

Related Documents

JOURNAL ARTICLE

Repeated Knowledge Distillation with Confidence Masking to Mitigate Membership Inference Attacks

Federico MazzoneLeander van den HeuvelMaximilian HuberCristian VerdecchiaMaarten H. EvertsFlorian HahnPeter Andreas

Year: 2022 Pages: 13-24
JOURNAL ARTICLE

Membership Inference Attacks on Machine Learning Model

PreetiIrfan Khan

Journal:   International Journal of Scientific Research in Computer Science Engineering and Information Technology Year: 2022 Pages: 31-38
JOURNAL ARTICLE

Range Membership Inference Attacks

Jiashu TaoReza Shokri

Year: 2025 Pages: 346-361
JOURNAL ARTICLE

Membership Inference Attacks and Generalization

Teodora BalutaShiqi ShenS. HitarthShruti ToplePrateek Saxena

Journal:   Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security Year: 2022 Pages: 249-262
JOURNAL ARTICLE

Forgeability and Membership Inference Attacks

Zhifeng KongAmrita Roy ChowdhuryKamalika Chaudhuri

Year: 2022 Pages: 25-31
© 2026 ScienceGate Book Chapters — All rights reserved.