Empirical study of privacy inference attack against deep reinforcement learning models

Huaicheng Zhou; Kanghua Mo; Teng Huang; Yongjin Li

doi:10.1080/09540091.2023.2211240

Connection Science (Dec 2023)

Empirical study of privacy inference attack against deep reinforcement learning models

Huaicheng Zhou,
Kanghua Mo,
Teng Huang,
Yongjin Li

Affiliations

Huaicheng Zhou: Guangzhou University
Kanghua Mo: Guangzhou University
Teng Huang: Guangzhou University
Yongjin Li: CSSC Systems Engineering Research Institute

DOI: https://doi.org/10.1080/09540091.2023.2211240
Journal volume & issue: Vol. 35, no. 1

Abstract

Read online

Most studies on privacy in machine learning have primarily focused on supervised learning, with little research on privacy concerns in reinforcement learning. However, our study has demonstrated that observation information can be extracted through trajectory analysis. In this paper, we propose a variable information inference attack targeting the observation space of policy models, which is categorised into two types: observed value inference attack and observed variable inference. Our algorithm has demonstrated a high success rate in privacy inference attacks for both types of observation information.

Published in Connection Science

ISSN: 0954-0091 (Print); 1360-0494 (Online)
Publisher: Taylor & Francis Group
Country of publisher: United Kingdom
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://www.tandfonline.com/journals/ccos

About the journal

Abstract

Keywords