Current browse context:
cs.CR
Change to browse by:
References & Citations
Computer Science > Cryptography and Security
Title: Membership Inference Attacks Against Self-supervised Speech Models
(Submitted on 9 Nov 2021 (v1), last revised 15 Aug 2022 (this version, v4))
Abstract: Recently, adapting the idea of self-supervised learning (SSL) on continuous speech has started gaining attention. SSL models pre-trained on a huge amount of unlabeled audio can generate general-purpose representations that benefit a wide variety of speech processing tasks. Despite their ubiquitous deployment, however, the potential privacy risks of these models have not been well investigated. In this paper, we present the first privacy analysis on several SSL speech models using Membership Inference Attacks (MIA) under black-box access. The experiment results show that these pre-trained models are vulnerable to MIA and prone to membership information leakage with high Area Under the Curve (AUC) in both utterance-level and speaker-level. Furthermore, we also conduct several ablation studies to understand the factors that contribute to the success of MIA.
Submission history
From: Wei-Cheng Tseng [view email][v1] Tue, 9 Nov 2021 13:00:24 GMT (594kb,D)
[v2] Thu, 7 Apr 2022 05:53:52 GMT (874kb,D)
[v3] Thu, 4 Aug 2022 15:15:55 GMT (879kb,D)
[v4] Mon, 15 Aug 2022 17:20:44 GMT (877kb,D)
Link back to: arXiv, form interface, contact.