Machine learning models in trusted research environments - understanding operational risks

Felix Ritchie (Lead / Corresponding author), Amy Tilbrook, Christian Cole, Emily Jefferson, Susan Krueger, Esma Mansouri-Benssassi, Simon Rogers, Jim Smith

Research output: Contribution to journalArticlepeer-review

71 Downloads (Pure)

Abstract

Introduction: Trusted research environments (TREs) provide secure access to very sensitive data for research. All TREs operate manual checks on outputs to ensure there is no residual disclosure risk. Machine learning (ML) models require very large amount of data; if this data is personal, the TRE is a well established data management solution. However, ML models present novel disclosure risks, in both type and scale. 

Objectives: As part of a series on ML disclosure risk in TREs, this article is intended to introduce TRE managers to the conceptual problems and work being done to address them. Methods We demonstrate how ML models present a qualitatively different type of disclosure risk, compared to traditional statistical outputs. These arise from both the nature and the scale of ML modelling.

Results: We show that there are a large number of unresolved issues, although there is progress in many areas. We show where areas of uncertainty remain, as well as remedial responses available to TREs.

Conclusions: At this stage, disclosure checking of ML models is very much a specialist activity. However, TRE managers need a basic awareness of the potential risk in ML models to enable them to make sensible decisions on using TREs for ML model development.

Original languageEnglish
Article number30
Number of pages9
JournalInternational Journal of Population Data Science
Volume8
Issue number1
DOIs
Publication statusPublished - 14 Dec 2023

Keywords

  • artificial intelligence
  • confidentiality
  • data enclave
  • machine learning
  • output checking
  • trusted research environment

ASJC Scopus subject areas

  • Demography
  • Information Systems
  • Health Informatics
  • Information Systems and Management

Fingerprint

Dive into the research topics of 'Machine learning models in trusted research environments - understanding operational risks'. Together they form a unique fingerprint.

Cite this