{"id":"https://openalex.org/W3118138297","doi":"https://doi.org/10.1109/ithings-greencom-cpscom-smartdata-cybermatics50389.2020.00125","title":"Differentially Private Machine Learning Model against Model Extraction Attack","display_name":"Differentially Private Machine Learning Model against Model Extraction Attack","publication_year":2020,"publication_date":"2020-11-01","ids":{"openalex":"https://openalex.org/W3118138297","doi":"https://doi.org/10.1109/ithings-greencom-cpscom-smartdata-cybermatics50389.2020.00125","mag":"3118138297"},"language":"en","primary_location":{"id":"doi:10.1109/ithings-greencom-cpscom-smartdata-cybermatics50389.2020.00125","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ithings-greencom-cpscom-smartdata-cybermatics50389.2020.00125","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 International Conferences on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData) and IEEE Congress on Cybermatics (Cybermatics)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5086896412","display_name":"Zelei Cheng","orcid":"https://orcid.org/0000-0001-7478-933X"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Zelei Cheng","raw_affiliation_strings":["Purdue University, West Lafayette, United States"],"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, United States","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5008984622","display_name":"Zuotian Li","orcid":"https://orcid.org/0000-0002-8317-2873"},"institutions":[{"id":"https://openalex.org/I74973139","display_name":"Carnegie Mellon University","ror":"https://ror.org/05x2bcf33","country_code":"US","type":"education","lineage":["https://openalex.org/I74973139"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Zuotian Li","raw_affiliation_strings":["Integrated Innovation Institute, Carnegie Mellon University, Mountain View, United States"],"affiliations":[{"raw_affiliation_string":"Integrated Innovation Institute, Carnegie Mellon University, Mountain View, United States","institution_ids":["https://openalex.org/I74973139"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100353051","display_name":"Jiwei Zhang","orcid":"https://orcid.org/0000-0002-8910-2382"},"institutions":[{"id":"https://openalex.org/I139759216","display_name":"Beijing University of Posts and Telecommunications","ror":"https://ror.org/04w9fbh59","country_code":"CN","type":"education","lineage":["https://openalex.org/I139759216"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jiwei Zhang","raw_affiliation_strings":["School of Computer Science (National Pilot Software Engineering School), Beijing Univ of Posts and Telecommunications, Beijing, China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science (National Pilot Software Engineering School), Beijing Univ of Posts and Telecommunications, Beijing, China","institution_ids":["https://openalex.org/I139759216"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5101708626","display_name":"Shuhan Zhang","orcid":"https://orcid.org/0000-0001-6738-4107"},"institutions":[{"id":"https://openalex.org/I139759216","display_name":"Beijing University of Posts and Telecommunications","ror":"https://ror.org/04w9fbh59","country_code":"CN","type":"education","lineage":["https://openalex.org/I139759216"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Shuhan Zhang","raw_affiliation_strings":["International School, Beijing Univ of Posts and Telecommunications, Beijing, China"],"affiliations":[{"raw_affiliation_string":"International School, Beijing Univ of Posts and Telecommunications, Beijing, China","institution_ids":["https://openalex.org/I139759216"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5086896412"],"corresponding_institution_ids":["https://openalex.org/I219193219"],"apc_list":null,"apc_paid":null,"fwci":0.5302,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.74047188,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":94,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"722","last_page":"728"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9904999732971191,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8305613994598389},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.6171751022338867},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.6063245534896851},{"id":"https://openalex.org/keywords/differential-privacy","display_name":"Differential privacy","score":0.5866373181343079},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.5840902328491211},{"id":"https://openalex.org/keywords/hyperparameter","display_name":"Hyperparameter","score":0.5814551115036011},{"id":"https://openalex.org/keywords/confidentiality","display_name":"Confidentiality","score":0.5516171455383301},{"id":"https://openalex.org/keywords/feature-extraction","display_name":"Feature extraction","score":0.45608776807785034},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.3172132968902588},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.26896974444389343}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8305613994598389},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.6171751022338867},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.6063245534896851},{"id":"https://openalex.org/C23130292","wikidata":"https://www.wikidata.org/wiki/Q5275358","display_name":"Differential privacy","level":2,"score":0.5866373181343079},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.5840902328491211},{"id":"https://openalex.org/C8642999","wikidata":"https://www.wikidata.org/wiki/Q4171168","display_name":"Hyperparameter","level":2,"score":0.5814551115036011},{"id":"https://openalex.org/C71745522","wikidata":"https://www.wikidata.org/wiki/Q2476929","display_name":"Confidentiality","level":2,"score":0.5516171455383301},{"id":"https://openalex.org/C52622490","wikidata":"https://www.wikidata.org/wiki/Q1026626","display_name":"Feature extraction","level":2,"score":0.45608776807785034},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.3172132968902588},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.26896974444389343}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/ithings-greencom-cpscom-smartdata-cybermatics50389.2020.00125","is_oa":false,"landing_page_url":"https://doi.org/10.1109/ithings-greencom-cpscom-smartdata-cybermatics50389.2020.00125","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2020 International Conferences on Internet of Things (iThings) and IEEE Green Computing and Communications (GreenCom) and IEEE Cyber, Physical and Social Computing (CPSCom) and IEEE Smart Data (SmartData) and IEEE Congress on Cybermatics (Cybermatics)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.8100000023841858}],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":45,"referenced_works":["https://openalex.org/W1245982684","https://openalex.org/W1557833142","https://openalex.org/W1873763122","https://openalex.org/W1966072539","https://openalex.org/W1981029888","https://openalex.org/W2004915866","https://openalex.org/W2053801139","https://openalex.org/W2109426455","https://openalex.org/W2294710185","https://openalex.org/W2461943168","https://openalex.org/W2473418344","https://openalex.org/W2535690855","https://openalex.org/W2585345106","https://openalex.org/W2603766943","https://openalex.org/W2623427976","https://openalex.org/W2626769593","https://openalex.org/W2789304371","https://openalex.org/W2798465726","https://openalex.org/W2801491268","https://openalex.org/W2808195004","https://openalex.org/W2963465081","https://openalex.org/W2963560987","https://openalex.org/W2963844355","https://openalex.org/W2963952467","https://openalex.org/W2964318098","https://openalex.org/W2967492342","https://openalex.org/W2969695741","https://openalex.org/W2972751055","https://openalex.org/W2972997402","https://openalex.org/W2996649838","https://openalex.org/W3008450544","https://openalex.org/W3010081751","https://openalex.org/W3013870609","https://openalex.org/W3034190797","https://openalex.org/W3040694753","https://openalex.org/W3043238202","https://openalex.org/W3102407811","https://openalex.org/W3103932910","https://openalex.org/W3147342839","https://openalex.org/W6639246211","https://openalex.org/W6651608069","https://openalex.org/W6728484576","https://openalex.org/W6758745068","https://openalex.org/W6772101090","https://openalex.org/W6780945424"],"related_works":["https://openalex.org/W4387497383","https://openalex.org/W3183948672","https://openalex.org/W3173606202","https://openalex.org/W3110381201","https://openalex.org/W2948807893","https://openalex.org/W2935909890","https://openalex.org/W2778153218","https://openalex.org/W2758277628","https://openalex.org/W1531601525","https://openalex.org/W4390421286"],"abstract_inverted_index":{"Machine":[0],"learning":[1,24,32,76],"model":[2,6,25],"is":[3,36,48,93],"vulnerable":[4],"to":[5,17,40,52,69,88],"extraction":[7,108],"attacks":[8],"since":[9],"the":[10,19,22,31,54,65,71,74,89,106],"attackers":[11],"can":[12,104],"send":[13],"plenty":[14],"of":[15,21,30,73,83],"queries":[16],"infer":[18],"hyperparameters":[20],"machine":[23,75],"thus":[26],"stealing":[27],"confidential":[28],"information":[29],"models.":[33],"Therefore,":[34],"there":[35],"a":[37,49,59,85],"urgent":[38],"need":[39],"defend":[41],"against":[42],"such":[43],"an":[44],"attack.":[45],"Differential":[46],"privacy":[47],"promising":[50],"technique":[51],"protect":[53],"valuable":[55],"information.":[56],"We":[57],"propose":[58],"differential":[60],"privacy-based":[61],"method":[62,103],"applied":[63],"in":[64],"linear":[66,90],"neural":[67,91],"network":[68,92],"obfuscate":[70],"output":[72],"model.":[77],"The":[78,96],"security":[79],"and":[80],"utility":[81],"issue":[82],"injecting":[84],"noise":[86],"layer":[87],"mathematically":[94],"analyzed.":[95],"experiment":[97],"results":[98],"show":[99],"that":[100],"our":[101],"proposed":[102],"lower":[105],"attacker's":[107],"rate":[109],"while":[110],"keeping":[111],"high":[112],"utility.":[113]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2023,"cited_by_count":2},{"year":2022,"cited_by_count":2}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}