Interaction-level Membership Inference Attack Against Federated Recommender Systems

Wang, Yuan; Yang, Chen; Nguyen, Quoc Viet Hung; Cui, Lizhen; He, Tieke; Yin, Hongzhi

doi:10.48550/arxiv.2301.10964

Cited by 3 publications

(3 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Concerning user behavior data in FedRecs, Yuan et al [29] have investigated the privacy concern. To be more precise, we conduct the initial comprehensive investigation into assaults on FedRecs that aim to infer membership at the interaction level.…”

Section: Related Workmentioning

confidence: 99%

Analyzing Public Sentiment on the Amazon Website: A GSK-Based Double Path Transformer Network Approach for Sentiment Analysis

Kumar,

Thatha,

Udayaraju

et al. 2024

IEEE Access

View full text Add to dashboard Cite

Sentiment Analysis (SA) holds considerable significance in comprehending public perspectives and conducting precise opinion-based evaluations, making it a prominent theme in natural language processing research. With the increasing trend of online shopping and social media usage, there is a constant influx of diverse data types such as images, videos, audio, and text. Notably, text stands out as the most crucial form of unstructured data, demanding heightened attention from researchers. Given the voluminous nature of data, various methodologies have been proposed to effectively mine big datasets for valuable insights. The challenge of accurately identifying polarity in extensive customer evaluations persists due to the intricacies associated with handling large textual datasets derived from reviews, comments, tweets, and posts. This study addresses this challenge by presenting a straightforward architecture, the Double Path Transformer Network (DPTN), designed to model both global and local information for comprehensive review categorization. To enhance the synergy between the attention path and the convolutional path, the study advocates a parallel design that combines a robust self-attention mechanism with a convolutional network. The research employs the gaining-sharing knowledge optimization (GSK) approach to fine-tune hyperparameters, thereby improving the model's classification accuracy. Additionally, the investigation demonstrates that optimization algorithms and deep learning collaboratively manage class imbalances with finesse, even in the absence of explicit measures for such concerns. In the experiment analysis of the proposed model ultimately achieved an accuracy of 95.

show abstract

Section: Related Workmentioning

confidence: 99%

Analyzing Public Sentiment on the Amazon Website: A GSK-Based Double Path Transformer Network Approach for Sentiment Analysis

Kumar,

Thatha,

Udayaraju

et al. 2024

IEEE Access

View full text Add to dashboard Cite

show abstract

“…Recently, some studies [15,[44][45][46] have pointed out that recommender systems face serious data privacy risks. For example, attackers can detect whether a user has engaged in the training process of the target model by using auxiliary data and query permission [36,41,44]. Such attacks are called membership inference attacks [9,27,31].…”

Section: Related Workmentioning

confidence: 99%

Membership Inference Attacks Against Sequential Recommender Systems

Zhu

Fan

et al. 2023

Proceedings of the ACM Web Conference 2023

View full text Add to dashboard Cite

Recent research demonstrates that GNNs are vulnerable to the model stealing attack, a nefarious endeavor geared towards duplicating the target model via query permissions. However, they mainly focus on node classification tasks, neglecting the potential threats entailed within the domain of graph classification tasks. Furthermore, their practicality is questionable due to unreasonable assumptions, specifically concerning the large data requirements and extensive model knowledge. To this end, we advocate following strict settings with limited real data and hard-label awareness to generate synthetic data, thereby facilitating the stealing of the target model. Specifically, following important data generation principles, we introduce three model stealing attacks to adapt to different actual scenarios: MSA-AU is inspired by active learning and emphasizes the uncertainty to enhance query value of generated samples; MSA-AD introduces diversity based on Mixup augmentation strategy to alleviate the query inefficiency issue caused by over-similar samples generated by MSA-AU; MSA-AUD combines the above two strategies to seamlessly integrate the authenticity, uncertainty, and diversity of the generated samples. Finally, extensive experiments consistently demonstrate the superiority of the proposed methods in terms of concealment, query efficiency, and stealing performance.

show abstract

“…This can lead to a potential violation of an individual's right to privacy. • Server-side concerns: An FRS is vulnerable to attacks by malicious actors, who can disrupt the federated system by manipulating user ratings, injecting false information, and taking over the federated system [16,17]. Attackers can also employ various techniques, such as data poisoning, distributed denial-of-service attacks, and brute force attacks, to disrupt the system [18].…”

mentioning

confidence: 99%

A Comprehensive Survey on Privacy-Preserving Techniques in Federated Recommendation Systems

et al. 2023

View full text Add to dashboard Cite

Big data is a rapidly growing field, and new developments are constantly emerging to address various challenges. One such development is the use of federated learning for recommendation systems (FRSs). An FRS provides a way to protect user privacy by training recommendation models using intermediate parameters instead of real user data. This approach allows for cooperation between data platforms while still complying with privacy regulations. In this paper, we explored the current state of research on FRSs, highlighting existing research issues and possible solutions. Specifically, we looked at how FRSs can be used to protect user privacy while still allowing organizations to benefit from the data they share. Additionally, we examined potential applications of FRSs in the context of big data, exploring how these systems can be used to facilitate secure data sharing and collaboration. Finally, we discuss the challenges associated with developing and deploying FRSs in the real world and how these challenges can be addressed.

show abstract

Interaction-level Membership Inference Attack Against Federated Recommender Systems

Cited by 3 publications

References 34 publications

Analyzing Public Sentiment on the Amazon Website: A GSK-Based Double Path Transformer Network Approach for Sentiment Analysis

Analyzing Public Sentiment on the Amazon Website: A GSK-Based Double Path Transformer Network Approach for Sentiment Analysis

Membership Inference Attacks Against Sequential Recommender Systems

A Comprehensive Survey on Privacy-Preserving Techniques in Federated Recommendation Systems

Contact Info

Product

Resources

About