Conference Proceedings
Hard to Forget: Poisoning Attacks on Certified Machine Unlearning
NG Marchant, BIP Rubinstein, S Alfeld
Proceedings of the 36th Aaai Conference on Artificial Intelligence Aaai 2022 | Published : 2022
Abstract
The right to erasure requires removal of a user's information from data held by organizations, with rigorous interpretations extending to downstream products such as learned models. Retraining from scratch with the particular user's data omitted fully removes its influence on the resulting model, but comes with a high computational cost. Machine “unlearning” mitigates the cost incurred by full retraining: instead, models are updated incrementally, possibly only requiring retraining when approximation errors accumulate. Rapid progress has been made towards privacy guarantees on the indistinguishability of unlearned and retrained models, but current formalisms do not place practical bounds on ..
View full abstractRelated Projects (2)
Grants
Awarded by Australian Research Council
Funding Acknowledgements
This research was undertaken using the HPC-GPGPU Facility hosted at the University of Melbourne, established with the assistance of ARC LIEF Grant LE170100200. This research was also supported in part by the Australian Department of Defence Next Generation Technologies Fund CSIRO/Data61 CRP AMLC project.