Attacks on Image Encryption Schemes for Privacy-Preserving Deep Neural Networks

doi:10.48550/arXiv.2004.13263

Attacks on Image Encryption Schemes for Privacy-Preserving Deep Neural Networks

Privacy preserving machine learning is an active area of research usually relying on techniques such as homomorphic encryption or secure multiparty computation. Recent novel encryption techniques for performing machine learning using deep neural nets on images have recently been proposed by Tanaka and Sirichotedumrong, Kinoshita, and Kiya. We present new chosen-plaintext and ciphertext-only attacks against both of these proposed image encryption schemes and demonstrate the attacks' effectiveness on several examples.

Publication:

arXiv e-prints

Pub Date:

April 2020

DOI:

10.48550/arXiv.2004.13263

arXiv:

arXiv:2004.13263

Bibcode:

2020arXiv200413263H

Keywords:

Computer Science - Cryptography and Security;
Computer Science - Computer Vision and Pattern Recognition;
Computer Science - Machine Learning

E-Print:

For associated code, see https://github.com/ahchang98/image-encryption-scheme-attacks

NASA/ADS

Attacks on Image Encryption Schemes for Privacy-Preserving Deep Neural Networks

Abstract