English

A Note On Interpreting Canary Exposure

Cryptography and Security 2023-06-05 v2 Machine Learning

Abstract

Canary exposure, introduced in Carlini et al. is frequently used to empirically evaluate, or audit, the privacy of machine learning model training. The goal of this note is to provide some intuition on how to interpret canary exposure, including by relating it to membership inference attacks and differential privacy.

Keywords

Cite

@article{arxiv.2306.00133,
  title  = {A Note On Interpreting Canary Exposure},
  author = {Matthew Jagielski},
  journal= {arXiv preprint arXiv:2306.00133},
  year   = {2023}
}

Comments

short note, edited to add a sentence on independence of canary losses, including adding Pillutla et al

R2 v1 2026-06-28T10:52:33.563Z