Bayesian Perspective on Memorization and Reconstruction

Haim Kaplan; Yishay Mansour; Kobbi Nissim; Uri Stemmer

arXiv:2505.23658·cs.CR·May 30, 2025

Bayesian Perspective on Memorization and Reconstruction

Haim Kaplan, Yishay Mansour, Kobbi Nissim, Uri Stemmer

PDF

TL;DR

This paper presents a Bayesian framework for data reconstruction and proposes a new security definition to prevent reconstruction attacks, offering insights into fingerprinting code attacks and their relation to membership inference.

Contribution

It introduces a Bayesian perspective on data reconstruction, proposes a novel security definition, and reinterprets fingerprinting code attacks as membership inference attacks.

Findings

01

Proposes a Bayesian paradigm for data reconstruction security.

02

Reinterprets fingerprinting code attacks as membership inference.

03

Shows conditions where reconstruction prevention does not imply membership inference vulnerability.

Abstract

We introduce a new Bayesian perspective on the concept of data reconstruction, and leverage this viewpoint to propose a new security definition that, in certain settings, provably prevents reconstruction attacks. We use our paradigm to shed new light on one of the most notorious attacks in the privacy and memorization literature - fingerprinting code attacks (FPC). We argue that these attacks are really a form of membership inference attacks, rather than reconstruction attacks. Furthermore, we show that if the goal is solely to prevent reconstruction (but not membership inference), then in some cases the impossibility results derived from FPC no longer apply.

Peer Reviews

No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.

Videos

No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.