Adversaries or allies? Privacy and deep learning in big data era

Liu, B; Ding, M; Zhu, T; Xiang, Y; Zhou, W

Adversaries or allies? Privacy and deep learning in big data era

Liu, B

Ding, M Zhu, T

Xiang, Y Zhou, W

Permalink

Publication Type:: Journal Article
Citation:: Concurrency Computation, 2019, 31 (19)
Issue Date:: 2019-10-10

Closed Access

	Filename	Description	Size
	Liu_et_al-2018-Concurrency_and_Computation__Practice_and_Experience.pdf	Published Version	1.67 MB	Adobe PDF	View/Open

Copyright Clearance Process

Recently Added
In Progress
Closed Access

This item is closed access and not available.

Full metadata record

Field	Value	Language
dc.contributor.author	Liu, B https://orcid.org/0000-0002-3603-6617	en_US
dc.contributor.author	Ding, M	en_US
dc.contributor.author	Zhu, T https://orcid.org/0000-0003-3411-7947	en_US
dc.contributor.author	Xiang, Y	en_US
dc.contributor.author	Zhou, W https://orcid.org/0000-0002-1680-2521	en_US
dc.date.issued	2019-10-10	en_US
dc.identifier.citation	Concurrency Computation, 2019, 31 (19)	en_US
dc.identifier.issn	1532-0626	en_US
dc.identifier.uri	http://hdl.handle.net/10453/133033
dc.description.abstract	© 2018 John Wiley & Sons, Ltd. Deep learning methods have become the basis of new AI-based services on the Internet in big data era because of their unprecedented accuracy. Meanwhile, it raises obvious privacy issues. The deep learning–assisted privacy attack can extract sensitive personal information not only from the text but also from unstructured data such as images and videos. In this paper, we proposed a framework to protect image privacy against deep learning tools, along with two new metrics that measure image privacy. Moreover, we propose two different image privacy protection schemes based on the two metrics, utilizing the adversarial example idea. The performance of our solution is validated by simulations on two different datasets. Our research shows that we can protect the image privacy by adding a small amount of noise that has a humanly imperceptible impact on the image quality, especially for images of complex structures and textures.	en_US
dc.relation.ispartof	Concurrency Computation	en_US
dc.relation.isbasedon	10.1002/cpe.5102	en_US
dc.subject.classification	Distributed Computing	en_US
dc.title	Adversaries or allies? Privacy and deep learning in big data era	en_US
dc.type	Journal Article
utslib.citation.volume	19	en_US
utslib.citation.volume	31	en_US
utslib.for	0801 Artificial Intelligence and Image Processing	en_US
utslib.for	0805 Distributed Computing	en_US
utslib.for	0803 Computer Software	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Computer Science
utslib.copyright.status	closed_access
pubs.issue	19	en_US
pubs.publication-status	Published	en_US
pubs.volume	31	en_US

Abstract:

© 2018 John Wiley & Sons, Ltd. Deep learning methods have become the basis of new AI-based services on the Internet in big data era because of their unprecedented accuracy. Meanwhile, it raises obvious privacy issues. The deep learning–assisted privacy attack can extract sensitive personal information not only from the text but also from unstructured data such as images and videos. In this paper, we proposed a framework to protect image privacy against deep learning tools, along with two new metrics that measure image privacy. Moreover, we propose two different image privacy protection schemes based on the two metrics, utilizing the adversarial example idea. The performance of our solution is validated by simulations on two different datasets. Our research shows that we can protect the image privacy by adding a small amount of noise that has a humanly imperceptible impact on the image quality, especially for images of complex structures and textures.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/133033