Skip to yearly menu bar Skip to main content


Poster

Generalization in Generative Adversarial Networks: A Novel Perspective from Privacy Protection

Bingzhe Wu · Shiwan Zhao · Chaochao Chen · Haoyang Xu · Li Wang · Xiaolu Zhang · Guangyu Sun · Jun Zhou

East Exhibition Hall B, C #127

Keywords: [ Learning Theory ] [ Theory ] [ Deep Learning ] [ Adversarial Networks ]


Abstract:

In this paper, we aim to understand the generalization properties of generative adversarial networks (GANs) from a new perspective of privacy protection. Theoretically, we prove that a differentially private learning algorithm used for training the GAN does not overfit to a certain degree, i.e., the generalization gap can be bounded. Moreover, some recent works, such as the Bayesian GAN, can be re-interpreted based on our theoretical insight from privacy protection. Quantitatively, to evaluate the information leakage of well-trained GAN models, we perform various membership attacks on these models. The results show that previous Lipschitz regularization techniques are effective in not only reducing the generalization gap but also alleviating the information leakage of the training dataset.

Live content is unavailable. Log in and register to view live content