{"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00237355","sets":["1164:1384:11463:11665"]},"path":["11665"],"owner":"44499","recid":"237355","title":["CNNモデルを対象とした転移学習モデルにおける訓練データセットのプライバシー保護"],"pubdate":{"attribute_name":"公開日","attribute_value":"2024-07-18"},"_buckets":{"deposit":"351625f4-ef12-44ef-9108-48d7cd7cc870"},"_deposit":{"id":"237355","pid":{"type":"depid","value":"237355","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"CNNモデルを対象とした転移学習モデルにおける訓練データセットのプライバシー保護","author_link":["649779","649782","649778","649775","649781","649777","649776","649780"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"CNNモデルを対象とした転移学習モデルにおける訓練データセットのプライバシー保護"},{"subitem_title":"Privacy protection of training datasets in CNN transfer learning models","subitem_title_language":"en"}]},"item_type_id":"4","publish_date":"2024-07-18","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"信州大学大学院総合理工学研究科"},{"subitem_text_value":"信州大学工学部"},{"subitem_text_value":"信州大学工学部"},{"subitem_text_value":"国立情報学研究所"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Graduate School of Science and Engineering Sinshu University","subitem_text_language":"en"},{"subitem_text_value":"Sinshu University","subitem_text_language":"en"},{"subitem_text_value":"Sinshu University","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Informatics","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/237355/files/IPSJ-SE24217001.pdf","label":"IPSJ-SE24217001.pdf"},"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-SE24217001.pdf","filesize":[{"value":"1.5 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"0","billingrole":"12"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_login","version_id":"a80518a6-56d4-4d2e-9ab8-3729bbd30753","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2024 by the Institute of Electronics, Information and Communication Engineers This SIG report is only available to those in membership of the SIG."}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"勝家, 拓巳"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"岡野, 浩三"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"小形, 真平"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"中島, 震"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Takumi, Katsuie","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Kozo, Okano","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Shinpei, Ogata","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Shin, Nakajima","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN10112981","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8825","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"機械学習の手法の 1 つである転移学習は，訓練済みモデルの知識を利用することで，少量の訓練データでも高精度な機械学習モデルが作成できる技術として注目を集めている．しかし，機械学習モデルは，敵対者が攻撃することで訓練データを抽出できてしまう問題がある．そこで，プライバシー維持機械学習の方法として DP-SGD が開発された．本報告では，DP-SGD とSGD のどちらかまたは両方を用いた 4 ケースの転移学習モデルに対し，メンバーシップ推論攻撃を行い，訓練データが保護されているかどうか確認する．その結果から，ソースモデルの訓練データのプライバシーを保護し転移学習した場合，転移学習はソースモデルの訓練データのプライバシー保護を弱めないが，ターゲットモデルの訓練データのプライバシーは保護されないと分かった．そのため，転移学習時には DP-SGD を用いる必要があると分かった．また，効率よく訓練データのプライバシーが保護された転移学習モデルを作成するには，転移学習時のみに DP-SGD を用いればよいと分かった．","subitem_description_type":"Other"}]},"item_4_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"Transfer learning, one of the machine learning methods, has attracted attention as a technique that can create highly accurate machine learning models with a small amount of training data by using the knowledge of trained models. However, machine learning models have a problem that an attacker can extract the training data. Therefore, DP-SGD was developed as a privacy-preserving machine learning method. In this report, we perform membership inference attacks on four cases of transfer learning models using either or both DP-SGD and SGD to check whether the training data is protected. From the results, we found that when the privacy of the training data of the source model is protected and the transfer learning is performed, the transfer learning does not weaken the privacy protection of the training data of the source model, but the privacy of the training data of the target model is not protected. Therefore, it is necessary to use DP-SGD for transfer learning. In order to efficiently create a transfer learning model with privacy-preserving training data, we found that DP-SGD should be used only for transfer learning.","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"6","bibliographic_titles":[{"bibliographic_title":"研究報告ソフトウェア工学（SE）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2024-07-18","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"1","bibliographicVolumeNumber":"2024-SE-217"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"id":237355,"updated":"2025-01-19T08:54:45.073117+00:00","links":{},"created":"2025-01-19T01:39:56.439037+00:00"}