Current browse context:
cs.CR
Change to browse by:
References & Citations
Computer Science > Computation and Language
Title: Provably Confidential Language Modelling
(Submitted on 4 May 2022 (v1), last revised 23 Jun 2022 (this version, v2))
Abstract: Large language models are shown to memorize privacy information such as social security numbers in training data. Given the sheer scale of the training corpus, it is challenging to screen and filter these privacy data, either manually or automatically. In this paper, we propose Confidentially Redacted Training (CRT), a method to train language generation models while protecting the confidential segments. We borrow ideas from differential privacy (which solves a related but distinct problem) and show that our method is able to provably prevent unintended memorization by randomizing parts of the training process. Moreover, we show that redaction with an approximately correct screening policy amplifies the confidentiality guarantee. We implement the method for both LSTM and GPT language models. Our experimental results show that the models trained by CRT obtain almost the same perplexity while preserving strong confidentiality.
Submission history
From: Xuandong Zhao [view email][v1] Wed, 4 May 2022 02:33:45 GMT (552kb,D)
[v2] Thu, 23 Jun 2022 23:47:54 GMT (552kb,D)
Link back to: arXiv, form interface, contact.