View article

[PDF] from usenix.org

Stealing Machine Learning Models via Prediction APIs

Authors

Florian Tramer, Fan Zhang, Ari Juels, Michael Reiter, Thomas Ristenpart

Publication date

2016/8

Conference

25th USENIX Security Symposium (USENIX Security 16)

Pages

601-618

Publisher

USENIX Association

Description

Machine learning (ML) models may be deemed confidential due to their sensitive training data, commercial value, or use in security applications. Increasingly often, confidential ML models are being deployed with publicly accessible query interfaces. ML-as-a-service (“predictive analytics”) systems are an example: Some allow users to train models on potentially sensitive data and charge others for access on a pay-per-query basis.

Total citations

Cited by 2020

2017201820192020202120222023202470 131 201 282 375 390 456 101

Scholar articles

Stealing machine learning models via prediction {APIs}

F Tramèr, F Zhang, A Juels, MK Reiter, T Ristenpart - 25th USENIX security symposium (USENIX Security 16 …, 2016

Cited by 2020 Related articles All 29 versions