Анализ безопасности проекта национального стандарта «Нейросетевые алгоритмы в защищенном исполнении. Автоматическое обучение нейросетевых моделей на малых выборках в задачах классификации»

Grigory Borisovich Marshalko,Roman Alexandrovich Romanenkov,Julia Anatolievna Trufanova

doi:10.15514/ispras-2023-35(6)-11

Анализ безопасности проекта национального стандарта «Нейросетевые алгоритмы в защищенном исполнении. Автоматическое обучение нейросетевых моделей на малых выборках в задачах классификации»

Grigory Borisovich Marshalko, Roman Alexandrovich Romanenkov + Show 1 more

Open Access

https://doi.org/10.15514/ispras-2023-35(6)-11

Copy DOI

Journal: Proceedings of the Institute for System Programming of the RAS	Publication Date: Jan 1, 2023
License type: cc-by

#Omsk State Technical University #Neural Classification Algorithm + Show 8 more

Abstract
Full-Text PDF
Similar Papers

Abstract

We propose a membership inference attack against the neural classification algorithm from the draft national standard developed by the Omsk State Technical University under the auspices of the Technical Committee on Standardization «Artificial Intelligence» (TC 164). The attack allows us to determine whether the data were used for neural network training, and aimed at violating the confidentiality property of the training set. The results show that the protection mechanism of neural network classifiers described by the draft national standard does not provide the declared properties. The results were previously announced at Ruscrypto’2023 conference.

Full Text