PrivacyGAN: robust generative image privacy
- URL: http://arxiv.org/abs/2310.12590v1
- Date: Thu, 19 Oct 2023 08:56:09 GMT
- Title: PrivacyGAN: robust generative image privacy
- Authors: Mariia Zameshina (LIGM), Marlene Careil (MM, IDS), Olivier Teytaud
(LRI, TANC), Laurent Najman (LIGM)
- Abstract summary: We introduce a novel approach, PrivacyGAN, to safeguard privacy while maintaining image usability.
Drawing inspiration from Fawkes, our method entails shifting the original image within the embedding space towards a decoy image.
We demonstrate that our approach is effective even in unknown embedding transfer scenarios.
- Score: 0.0
- License: http://arxiv.org/licenses/nonexclusive-distrib/1.0/
- Abstract: Classical techniques for protecting facial image privacy typically fall into
two categories: data-poisoning methods, exemplified by Fawkes, which introduce
subtle perturbations to images, or anonymization methods that generate images
resembling the original only in several characteristics, such as gender,
ethnicity, or facial expression.In this study, we introduce a novel approach,
PrivacyGAN, that uses the power of image generation techniques, such as VQGAN
and StyleGAN, to safeguard privacy while maintaining image usability,
particularly for social media applications. Drawing inspiration from Fawkes,
our method entails shifting the original image within the embedding space
towards a decoy image.We evaluate our approach using privacy metrics on
traditional and novel facial image datasets. Additionally, we propose new
criteria for evaluating the robustness of privacy-protection methods against
unknown image recognition techniques, and we demonstrate that our approach is
effective even in unknown embedding transfer scenarios. We also provide a human
evaluation that further proves that the modified image preserves its utility as
it remains recognisable as an image of the same person by friends and family.
Related papers
- Privacy-preserving Optics for Enhancing Protection in Face De-identification [60.110274007388135]
We propose a hardware-level face de-identification method to solve this vulnerability.
We also propose an anonymization framework that generates a new face using the privacy-preserving image, face heatmap, and a reference face image from a public dataset as input.
arXiv Detail & Related papers (2024-03-31T19:28:04Z) - Privacy-Preserving Face Recognition Using Trainable Feature Subtraction [40.47645421424354]
Face recognition has led to increasing privacy concerns.
This paper explores face image protection against viewing and recovery attacks.
We distill our methodologies into a novel privacy-preserving face recognition method, MinusFace.
arXiv Detail & Related papers (2024-03-19T05:27:52Z) - Diff-Privacy: Diffusion-based Face Privacy Protection [58.1021066224765]
In this paper, we propose a novel face privacy protection method based on diffusion models, dubbed Diff-Privacy.
Specifically, we train our proposed multi-scale image inversion module (MSI) to obtain a set of SDM format conditional embeddings of the original image.
Based on the conditional embeddings, we design corresponding embedding scheduling strategies and construct different energy functions during the denoising process to achieve anonymization and visual identity information hiding.
arXiv Detail & Related papers (2023-09-11T09:26:07Z) - PRO-Face S: Privacy-preserving Reversible Obfuscation of Face Images via
Secure Flow [69.78820726573935]
We name it PRO-Face S, short for Privacy-preserving Reversible Obfuscation of Face images via Secure flow-based model.
In the framework, an Invertible Neural Network (INN) is utilized to process the input image along with its pre-obfuscated form, and generate the privacy protected image that visually approximates to the pre-obfuscated one.
arXiv Detail & Related papers (2023-07-18T10:55:54Z) - CLIP2Protect: Protecting Facial Privacy using Text-Guided Makeup via
Adversarial Latent Search [10.16904417057085]
Deep learning based face recognition systems can enable unauthorized tracking of users in the digital world.
Existing methods for enhancing privacy fail to generate naturalistic images that can protect facial privacy without compromising user experience.
We propose a novel two-step approach for facial privacy protection that relies on finding adversarial latent codes in the low-dimensional manifold of a pretrained generative model.
arXiv Detail & Related papers (2023-06-16T17:58:15Z) - OPOM: Customized Invisible Cloak towards Face Privacy Protection [58.07786010689529]
We investigate the face privacy protection from a technology standpoint based on a new type of customized cloak.
We propose a new method, named one person one mask (OPOM), to generate person-specific (class-wise) universal masks.
The effectiveness of the proposed method is evaluated on both common and celebrity datasets.
arXiv Detail & Related papers (2022-05-24T11:29:37Z) - Differentially Private Imaging via Latent Space Manipulation [5.446368808660037]
We present a novel approach for image obfuscation by manipulating latent spaces of an unconditionally trained generative model.
This is the first approach to image privacy that satisfies $varepsilon$-differential privacy emphfor the person.
arXiv Detail & Related papers (2021-03-08T17:32:08Z) - Privacy-Preserving Image Features via Adversarial Affine Subspace
Embeddings [72.68801373979943]
Many computer vision systems require users to upload image features to the cloud for processing and storage.
We propose a new privacy-preserving feature representation.
Compared to the original features, our approach makes it significantly more difficult for an adversary to recover private information.
arXiv Detail & Related papers (2020-06-11T17:29:48Z) - Towards Face Encryption by Generating Adversarial Identity Masks [53.82211571716117]
We propose a targeted identity-protection iterative method (TIP-IM) to generate adversarial identity masks.
TIP-IM provides 95%+ protection success rate against various state-of-the-art face recognition models.
arXiv Detail & Related papers (2020-03-15T12:45:10Z)
This list is automatically generated from the titles and abstracts of the papers in this site.
This site does not guarantee the quality of this site (including all information) and is not responsible for any consequences.