Infer Training Data Membership (86b5f486-afb8-4aa9-991f-0e24d5737f0c)
Adversaries may infer the membership of a data sample in its training set, which raises privacy concerns. Some strategies make use of a shadow model that could be obtained via Train Proxy via Replication, others use statistics of model prediction scores.
This can cause the victim model to leak private information, such as PII of those in the training set or other forms of protected IP.
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
Exfiltration via ML Inference API (b07d147f-51c8-4eb6-9a05-09c86762a9c1) | MITRE ATLAS Attack Pattern | Infer Training Data Membership (86b5f486-afb8-4aa9-991f-0e24d5737f0c) | MITRE ATLAS Attack Pattern | 1 |