Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Adversarial representation learning for synthetic replacement of private attributes
RISE Research Institutes of Sweden, Digital Systems, Data Science.ORCID iD: 0000-0002-5032-4367
RISE Research Institutes of Sweden, Digital Systems, Data Science.ORCID iD: 0000-0001-7856-113X
AI Sweden, Sweden.ORCID iD: 0000-0001-8952-3542
RISE Research Institutes of Sweden, Digital Systems, Data Science.ORCID iD: 0000-0002-9567-2218
2021 (English)In: Proceedings - 2021 IEEE International Conference on Big Data, Big Data 2021, Institute of Electrical and Electronics Engineers Inc. , 2021, p. 1291-1299Conference paper, Published paper (Refereed)
Abstract [en]

Data privacy is an increasingly important aspect of many real-world analytics tasks. Data sources that contain sensitive information may have immense potential which could be unlocked using the right privacy enhancing transformations, but current methods often fail to produce convincing output. Furthermore, finding the right balance between privacy and utility is often a tricky trade-off. In this work, we propose a novel approach for data privatization, which involves two steps: in the first step, it removes the sensitive information, and in the second step, it replaces this information with an independent random sample. Our method builds on adversarial representation learning which ensures strong privacy by training the model to fool an increasingly strong adversary. While previous methods only aim at obfuscating the sensitive information, we find that adding new random information in its place strengthens the provided privacy and provides better utility at any given level of privacy. The result is an approach that can provide stronger privatization on image data, and yet be preserving both the domain and the utility of the inputs, entirely independent of the downstream task. 

Place, publisher, year, edition, pages
Institute of Electrical and Electronics Engineers Inc. , 2021. p. 1291-1299
Keywords [en]
Deep Learning, Generative Adversarial Privacy, Machine Learning, Privacy, Computer vision, Data privacy, Economic and social effects, Privatization, 'current, Data-source, Machine-learning, Real-world, Sensitive informations, Synthetic replacement, Trade off
National Category
Computer Sciences
Identifiers
URN: urn:nbn:se:ri:diva-58910DOI: 10.1109/BigData52589.2021.9671802Scopus ID: 2-s2.0-85125306014ISBN: 9781665439022 (print)OAI: oai:DiVA.org:ri-58910DiVA, id: diva2:1648292
Conference
2021 IEEE International Conference on Big Data, Big Data 2021, 15 December 2021 through 18 December 2021
Available from: 2022-03-30 Created: 2022-03-30 Last updated: 2024-05-21Bibliographically approved

Open Access in DiVA

No full text in DiVA

Other links

Publisher's full textScopus

Authority records

Martinsson, JohnZec, EdvinGillblad, DanielMogren, Olof

Search in DiVA

By author/editor
Martinsson, JohnZec, EdvinGillblad, DanielMogren, Olof
By organisation
Data Science
Computer Sciences

Search outside of DiVA

GoogleGoogle Scholar

doi
isbn
urn-nbn

Altmetric score

doi
isbn
urn-nbn
Total: 140 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf