Attribute Inference Attacks
T10 · Integrity & Confidentiality Breach →Attribute inference exploits the model's learned correlational structure to predict sensitive attributes from non-sensitive ones. The model has internalized statistical relationships between observable features (writing style, preferences, behavior patterns) and protected attributes (gender, race, income, health status, political views) from its training data. Unlike inference chains (T10-AT-006) which combine explicit quasi-identifiers, attribute inference uses the model as a correlational engine that surfaces latent associations.
- Input classification for profiling intent: queries that request attribute prediction from behavioral/stylistic features
- Monitor for systematic attribute probing across multiple protected categories in a single session
- Output monitoring for protected-attribute predictions (gender, race, religion, political views, health status)
Inferred attributes feed T10-AT-006 (Inference Attack Chains) as additional quasi-identifiers for re-identification. Attribute profiles also enable targeted social engineering (T15 — Human Workflow) by revealing psychological and demographic characteristics.