Meta Platforms, Inc.
Enabling the Sharing of Privacy-safe Data with Deep Poisoning Functions

Abstract:

In one embodiment, a method includes accessing a first machine-learning model trained to generate a feature representation of an input data, a second machine-learning model trained to generate a desired result based on the feature representation, and a third machine-learning model trained to generate an undesired result based on the feature representation, and training a fourth machine-learning model by generating a secured feature representation by processing a first output of the first machine-learning model using the fourth machine-learning model, generating a second output and a third output by processing the secured feature representation using, respectively, the second and third machine-learning models, and updating the fourth machine-learning model according to an optimization function configured to optimize a correctness of the second output and an incorrectness of the third output.