{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,27]],"date-time":"2025-03-27T05:19:27Z","timestamp":1743052767540,"version":"3.40.3"},"publisher-location":"Cham","reference-count":21,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031340192"},{"type":"electronic","value":"9783031340208"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-3-031-34020-8_8","type":"book-chapter","created":{"date-parts":[[2023,5,26]],"date-time":"2023-05-26T10:02:30Z","timestamp":1685095350000},"page":"117-128","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Neural Network Information Leakage Through Hidden Learning"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-6598-6128","authenticated-orcid":false,"given":"Arthur","family":"Carvalho Walraven da Cunha","sequence":"first","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8755-3892","authenticated-orcid":false,"given":"Emanuele","family":"Natale","sequence":"additional","affiliation":[]},{"ORCID":"https:\/\/orcid.org\/0000-0003-3657-6979","authenticated-orcid":false,"given":"Laurent","family":"Viennot","sequence":"additional","affiliation":[]}],"member":"297","published-online":{"date-parts":[[2023,5,27]]},"reference":[{"doi-asserted-by":"publisher","unstructured":"Fredrikson, M., Jha, S., Ristenpart, T.: Model inversion attacks that exploit confidence information and basic countermeasures. In: Proceedings of the 22nd ACM SIGSAC Conference on Computer and Communications Security, pp. 1322\u20131333. ACM, Denver Colorado (2015). https:\/\/doi.org\/10.1145\/2810103.2813677, https:\/\/dl.acm.org\/doi\/10.1145\/2810103.2813677","key":"8_CR1","DOI":"10.1145\/2810103.2813677"},{"unstructured":"Glorot, X., Bengio, Y.: Understanding the difficulty of training deep feedforward neural networks. In: Proceedings of the Thirteenth International Conference on Artificial Intelligence and Statistics, pp. 249\u2013256. JMLR Workshop and Conference Proceedings (2010). http:\/\/proceedings.mlr.press\/v9\/glorot10a.html. ISSN: 1938-7228","key":"8_CR2"},{"key":"8_CR3","doi-asserted-by":"publisher","first-page":"47230","DOI":"10.1109\/ACCESS.2019.2909068","volume":"7","author":"T Gu","year":"2019","unstructured":"Gu, T., Liu, K., Dolan-Gavitt, B., Garg, S.: BadNets: evaluating backdooring attacks on deep neural networks. IEEE Access 7, 47230\u201347244 (2019). https:\/\/doi.org\/10.1109\/ACCESS.2019.2909068","journal-title":"IEEE Access"},{"doi-asserted-by":"publisher","unstructured":"Hahnloser, R.H.R., Sarpeshkar, R., Mahowald, M.A., Douglas, R.J., Seung, H.S.: Digital selection and analogue amplification coexist in a cortex-inspired silicon circuit. Nature 405(6789), 947\u2013951 (2000). https:\/\/doi.org\/10.1038\/35016072, https:\/\/www.nature.com\/articles\/35016072","key":"8_CR4","DOI":"10.1038\/35016072"},{"doi-asserted-by":"publisher","unstructured":"He, Z., Zhang, T., Lee, R.B.: Model inversion attacks against collaborative inference. In: Proceedings of the 35th Annual Computer Security Applications Conference, pp. 148\u2013162. ACM, San Juan Puerto Rico (2019). https:\/\/doi.org\/10.1145\/3359789.3359824, https:\/\/dl.acm.org\/doi\/10.1145\/3359789.3359824","key":"8_CR5","DOI":"10.1145\/3359789.3359824"},{"unstructured":"Kingma, D.P., Ba, J.: Adam: a method for stochastic optimization. In: International Conference on Learning Representations (2015). http:\/\/arxiv.org\/abs\/1412.6980, arXiv: 1412.6980","key":"8_CR6"},{"unstructured":"Krizhevsky, A.: Learning Multiple Layers of Features from Tiny Images. Master\u2019s thesis, Department of Computer Science, University of Toronto, p. 60 (2009)","key":"8_CR7"},{"issue":"11","key":"8_CR8","doi-asserted-by":"publisher","first-page":"47","DOI":"10.1109\/5.726791","volume":"86","author":"Y Lecun","year":"1998","unstructured":"Lecun, Y.: Gradient-based learning applied to document recognition. Proc. IEEE 86(11), 47 (1998)","journal-title":"Proc. IEEE"},{"key":"8_CR9","doi-asserted-by":"publisher","DOI":"10.1109\/TDSC.2020.3021407","author":"S Li","year":"2020","unstructured":"Li, S., Xue, M., Zhao, B., Zhu, H., Zhang, X.: Invisible backdoor attacks on deep neural networks via steganography and regularization. IEEE Trans. Dependable Secure Comput. (2020). https:\/\/doi.org\/10.1109\/TDSC.2020.3021407","journal-title":"IEEE Trans. Dependable Secure Comput."},{"unstructured":"Nguyen, T.A., Tran, A.: Input-aware dynamic backdoor attack. In: Larochelle, H., Ranzato, M., Hadsell, R., Balcan, M.F., Lin, H.T. (eds.) Advances in Neural Information Processing Systems, vol. 33. Annual Conference on Neural Information Processing Systems 2020, NeurIPS 2020 (December), pp. 6\u201312 (2020). https:\/\/proceedings.neurips.cc\/paper\/2020\/hash\/234e691320c0ad5b45ee3c96d0d7b8f8-Abstract.html","key":"8_CR10"},{"unstructured":"Park, G., Yang, J.Y., Hwang, S.J., Yang, E.: Attribution preservation in network compression for reliable network interpretation. arXiv:2010.15054 [cs] (2020). http:\/\/arxiv.org\/abs\/2010.15054, arXiv: 2010.15054","key":"8_CR11"},{"doi-asserted-by":"publisher","unstructured":"Petitcolas, F., Anderson, R., Kuhn, M.: Information hiding-a survey. Proc. IEEE 87(7), 1062\u20131078 (1999). https:\/\/doi.org\/10.1109\/5.771065, http:\/\/ieeexplore.ieee.org\/document\/771065\/","key":"8_CR12","DOI":"10.1109\/5.771065"},{"doi-asserted-by":"publisher","unstructured":"Qayyum, A., et al.: Securing machine learning in the cloud: a systematic review of cloud machine learning security. Front. Big Data 3, 587139 (2020). https:\/\/doi.org\/10.3389\/fdata.2020.587139, https:\/\/www.frontiersin.org\/articles\/10.3389\/fdata.2020.587139\/full","key":"8_CR13","DOI":"10.3389\/fdata.2020.587139"},{"unstructured":"Ryffel, T., et al.: A generic framework for privacy preserving deep learning. arXiv:1811.04017 [cs, stat] (2018). http:\/\/arxiv.org\/abs\/1811.04017, arXiv: 1811.04017","key":"8_CR14"},{"doi-asserted-by":"publisher","unstructured":"Shokri, R., Stronati, M., Song, C., Shmatikov, V.: Membership inference attacks against machine learning models. In: 2017 IEEE Symposium on Security and Privacy (SP), pp. 3\u201318 (2017). https:\/\/doi.org\/10.1109\/SP.2017.41. iSSN: 2375-1207","key":"8_CR15","DOI":"10.1109\/SP.2017.41"},{"key":"8_CR16","series-title":"Lecture Notes in Computer Science (Lecture Notes in Artificial Intelligence)","doi-asserted-by":"publisher","first-page":"206","DOI":"10.1007\/978-3-319-62416-7_15","volume-title":"Machine Learning and Data Mining in Pattern Recognition","author":"AP Tafti","year":"2017","unstructured":"Tafti, A.P., LaRose, E., Badger, J.C., Kleiman, R., Peissig, P.: Machine learning-as-a-service and its application to medical informatics. In: Perner, P. (ed.) MLDM 2017. LNCS (LNAI), vol. 10358, pp. 206\u2013219. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-62416-7_15"},{"issue":"2","key":"8_CR17","doi-asserted-by":"publisher","first-page":"594","DOI":"10.1109\/TCSVT.2018.2881118","volume":"29","author":"J Tao","year":"2019","unstructured":"Tao, J., Li, S., Zhang, X., Wang, Z.: Towards robust image steganography. IEEE Trans. Circuits Syst. Video Technol. 29(2), 594\u2013600 (2019). https:\/\/doi.org\/10.1109\/TCSVT.2018.2881118","journal-title":"IEEE Trans. Circuits Syst. Video Technol."},{"unstructured":"Wang, Y., Si, C., Wu, X.: Regression model fitting under differential privacy and model inversion attack. In: IJCAI (2015)","key":"8_CR18"},{"unstructured":"Xiao, H., Rasul, K., Vollgraf, R.: Fashion-MNIST: a novel image dataset for benchmarking machine learning algorithms. arXiv:1708.07747 [cs, stat] (2017). http:\/\/arxiv.org\/abs\/1708.07747, arXiv: 1708.07747","key":"8_CR19"},{"issue":"5","key":"8_CR20","doi-asserted-by":"publisher","first-page":"1280","DOI":"10.1109\/TIFS.2018.2871746","volume":"14","author":"Z Yang","year":"2019","unstructured":"Yang, Z., Guo, X., Chen, Z., Huang, Y., Zhang, Y.: RNN-Stega: linguistic steganography based on recurrent neural networks. IEEE Trans. Inf. Forensics Secur. 14(5), 1280\u20131295 (2019). https:\/\/doi.org\/10.1109\/TIFS.2018.2871746","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"doi-asserted-by":"publisher","unstructured":"Zheng, S., Song, Y., Leung, T., Goodfellow, I.: Improving the robustness of deep neural networks via stability training. In: 2016 IEEE Conference on Computer Vision and Pattern Recognition (CVPR), pp. 4480\u20134488 (2016). https:\/\/doi.org\/10.1109\/CVPR.2016.485","key":"8_CR21","DOI":"10.1109\/CVPR.2016.485"}],"container-title":["Communications in Computer and Information Science","Optimization and Learning"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-34020-8_8","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,5,26]],"date-time":"2023-05-26T10:08:54Z","timestamp":1685095734000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-34020-8_8"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9783031340192","9783031340208"],"references-count":21,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-34020-8_8","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"27 May 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"OLA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Optimization and Learning","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Malaga","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Spain","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"3 May 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"5 May 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"6","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ola2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/ola2023.sciencesconf.org\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Open","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"sciencesconf.org","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"78","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"32","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"41% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":8,"name":"average_number_of_papers_per_reviewer","label":"Average Number of Papers per Reviewer","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}