Revisiting Benchmarks for Privacy-Preserving Image Classification
| dc.contributor.author | Mokhtari, Sabrina | |
| dc.date.accessioned | 2024-09-17T18:55:56Z | |
| dc.date.available | 2024-09-17T18:55:56Z | |
| dc.date.issued | 2024-09-17 | |
| dc.date.submitted | 2024-09-09 | |
| dc.description.abstract | Differential privacy (DP) is a standard method for preserving the privacy of individual data points. DP prevents models from memorizing training data, thus reducing the risk of data leakage. While DP has been effective in machine learning (ML), there are growing concerns about some common practices in differentially private machine learning (DP ML), particularly the reliance on non-private ML benchmarks to measure progress. Popular datasets like CIFAR-10, while extensively used in non-private settings, may not accurately capture the complexities of privacy-sensitive areas like medical data. Additionally, pre-training on publicly available datasets may not yield the same benefits when the private data differs significantly and is not well represented in the public domain. This thesis addresses these concerns by evaluating DP methods using various privacy-sensitive datasets and training scenarios. We focus on medical datasets, where privacy is crucial, and study a thorough set of techniques. These techniques cover a wide range of settings, including those with public data pre-training, cases without public data, full-layer and last-layer fine-tuning, and different privacy levels. | |
| dc.identifier.uri | https://hdl.handle.net/10012/21027 | |
| dc.language.iso | en | |
| dc.pending | false | |
| dc.publisher | University of Waterloo | en |
| dc.relation.uri | https://github.com/mshubhankar/DP-Benchmarks/ | |
| dc.subject | differential privacy | |
| dc.subject | machine learning | |
| dc.subject | image classification | |
| dc.subject | benchmarking | |
| dc.subject | computer vision | |
| dc.title | Revisiting Benchmarks for Privacy-Preserving Image Classification | |
| dc.type | Master Thesis | |
| uws-etd.degree | Master of Mathematics | |
| uws-etd.degree.department | David R. Cheriton School of Computer Science | |
| uws-etd.degree.discipline | Computer Science | |
| uws-etd.degree.grantor | University of Waterloo | en |
| uws-etd.embargo.terms | 0 | |
| uws.contributor.advisor | Kamath, Gautam | |
| uws.contributor.affiliation1 | Faculty of Mathematics | |
| uws.peerReviewStatus | Unreviewed | en |
| uws.published.city | Waterloo | en |
| uws.published.country | Canada | en |
| uws.published.province | Ontario | en |
| uws.scholarLevel | Graduate | en |
| uws.typeOfResource | Text | en |