Skip to content

Inference Attacks

Inference attacks use outputs, models, embeddings, statistics, or auxiliary data to learn sensitive facts.

Examples

  • Reconstruction attacks from gradients or statistics
  • Attribute inference from released aggregates
  • Embedding inversion from vector search systems
  • Model extraction and prompt leakage

Why PETs Still Need Output Review

Protecting inputs during computation does not guarantee that the released output is safe.

PET Implications

Use DP, thresholds, output review, query limits, model auditing, and release documentation.