{"id":"https://openalex.org/W4411584886","doi":"https://doi.org/10.1109/msn63567.2024.00073","title":"DifGuard: a privacy protection mechanism for neural network classifiers","display_name":"DifGuard: a privacy protection mechanism for neural network classifiers","publication_year":2024,"publication_date":"2024-12-20","ids":{"openalex":"https://openalex.org/W4411584886","doi":"https://doi.org/10.1109/msn63567.2024.00073"},"language":"en","primary_location":{"id":"doi:10.1109/msn63567.2024.00073","is_oa":false,"landing_page_url":"https://doi.org/10.1109/msn63567.2024.00073","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 20th International Conference on Mobility, Sensing and Networking (MSN)","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5089512357","display_name":"Jiang Zhao","orcid":"https://orcid.org/0000-0003-2515-0761"},"institutions":[{"id":"https://openalex.org/I187400657","display_name":"South China Normal University","ror":"https://ror.org/01kq0pv72","country_code":"CN","type":"education","lineage":["https://openalex.org/I187400657"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Zhao Jiang","raw_affiliation_strings":["School of Computer Science, South China Normal University,Guangdong,China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, South China Normal University,Guangdong,China","institution_ids":["https://openalex.org/I187400657"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100435494","display_name":"Ping Li","orcid":"https://orcid.org/0000-0002-1503-0240"},"institutions":[{"id":"https://openalex.org/I187400657","display_name":"South China Normal University","ror":"https://ror.org/01kq0pv72","country_code":"CN","type":"education","lineage":["https://openalex.org/I187400657"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Ping Li","raw_affiliation_strings":["School of Computer Science, South China Normal University,Guangdong,China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, South China Normal University,Guangdong,China","institution_ids":["https://openalex.org/I187400657"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5101398889","display_name":"Mingwei Liang","orcid":"https://orcid.org/0000-0003-4919-7986"},"institutions":[{"id":"https://openalex.org/I187400657","display_name":"South China Normal University","ror":"https://ror.org/01kq0pv72","country_code":"CN","type":"education","lineage":["https://openalex.org/I187400657"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Mingwei Liang","raw_affiliation_strings":["School of Artificial Intelligence, South China Normal University,Guangdong,China"],"affiliations":[{"raw_affiliation_string":"School of Artificial Intelligence, South China Normal University,Guangdong,China","institution_ids":["https://openalex.org/I187400657"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100338386","display_name":"Jingjing Li","orcid":"https://orcid.org/0000-0002-5504-2529"},"institutions":[{"id":"https://openalex.org/I187400657","display_name":"South China Normal University","ror":"https://ror.org/01kq0pv72","country_code":"CN","type":"education","lineage":["https://openalex.org/I187400657"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jingjing Li","raw_affiliation_strings":["School of Computer Science, South China Normal University,Guangdong,China"],"affiliations":[{"raw_affiliation_string":"School of Computer Science, South China Normal University,Guangdong,China","institution_ids":["https://openalex.org/I187400657"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5089512357"],"corresponding_institution_ids":["https://openalex.org/I187400657"],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":{"value":0.28172316,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":"487","last_page":"495"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9460999965667725,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9460999965667725,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.902999997138977,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7118680477142334},{"id":"https://openalex.org/keywords/privacy-protection","display_name":"Privacy protection","score":0.6562339067459106},{"id":"https://openalex.org/keywords/artificial-neural-network","display_name":"Artificial neural network","score":0.6310897469520569},{"id":"https://openalex.org/keywords/mechanism","display_name":"Mechanism (biology)","score":0.5492879152297974},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.47821351885795593},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.41251304745674133},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.37807130813598633}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7118680477142334},{"id":"https://openalex.org/C3017597292","wikidata":"https://www.wikidata.org/wiki/Q25052250","display_name":"Privacy protection","level":2,"score":0.6562339067459106},{"id":"https://openalex.org/C50644808","wikidata":"https://www.wikidata.org/wiki/Q192776","display_name":"Artificial neural network","level":2,"score":0.6310897469520569},{"id":"https://openalex.org/C89611455","wikidata":"https://www.wikidata.org/wiki/Q6804646","display_name":"Mechanism (biology)","level":2,"score":0.5492879152297974},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.47821351885795593},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.41251304745674133},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.37807130813598633},{"id":"https://openalex.org/C111472728","wikidata":"https://www.wikidata.org/wiki/Q9471","display_name":"Epistemology","level":1,"score":0.0},{"id":"https://openalex.org/C138885662","wikidata":"https://www.wikidata.org/wiki/Q5891","display_name":"Philosophy","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/msn63567.2024.00073","is_oa":false,"landing_page_url":"https://doi.org/10.1109/msn63567.2024.00073","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2024 20th International Conference on Mobility, Sensing and Networking (MSN)","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":24,"referenced_works":["https://openalex.org/W2052747341","https://openalex.org/W2123820077","https://openalex.org/W2473418344","https://openalex.org/W2535690855","https://openalex.org/W2884943453","https://openalex.org/W2911978475","https://openalex.org/W2927692314","https://openalex.org/W2930926105","https://openalex.org/W2946363484","https://openalex.org/W2963378725","https://openalex.org/W2983140679","https://openalex.org/W3126988965","https://openalex.org/W4205228770","https://openalex.org/W4226136925","https://openalex.org/W4230086993","https://openalex.org/W4307964248","https://openalex.org/W4311165761","https://openalex.org/W4313443012","https://openalex.org/W4385895548","https://openalex.org/W4385973175","https://openalex.org/W6674330103","https://openalex.org/W6775482175","https://openalex.org/W6781511523","https://openalex.org/W6849323697"],"related_works":["https://openalex.org/W3022534164","https://openalex.org/W4403547452","https://openalex.org/W4396832952","https://openalex.org/W3046095319","https://openalex.org/W3197497514","https://openalex.org/W1591172238","https://openalex.org/W2111194702","https://openalex.org/W2972172135","https://openalex.org/W2116878667","https://openalex.org/W1787552957"],"abstract_inverted_index":{"Machine":[0],"learning":[1],"classifier":[2],"may":[3],"leak":[4],"sensitive":[5],"information":[6],"from":[7],"data":[8,29,91],"providers.":[9],"Attackers":[10],"can":[11,125],"use":[12],"an":[13],"algorithm":[14],"called":[15,76],"membership":[16,92],"inference":[17,96],"attack":[18],"(MIA)":[19],"to":[20,47,118],"infer":[21],"whether":[22],"samples":[23],"have":[24,37],"been":[25],"used":[26],"as":[27],"training":[28],"for":[30],"the":[31,51,57,94,100,119],"classifier.":[32],"To":[33,98],"prevent":[34],"MIAs,":[35],"researchers":[36],"proposed":[38],"various":[39,129],"defense":[40,74,121],"methods.":[41],"However,":[42],"these":[43],"methods":[44],"often":[45],"struggle":[46],"balance":[48],"three":[49],"constraints:":[50],"trade-off":[52],"between":[53],"utility":[54],"and":[55,62,67,84],"privacy,":[56],"impact":[58],"on":[59,81,90,108],"prediction":[60],"accuracy,":[61],"effectiveness":[63,101],"against":[64],"both":[65],"NN":[66],"Metric-based":[68],"MIAs.":[69],"Therefore,":[70],"we":[71,104],"propose":[72],"a":[73],"strategy":[75],"DifGuard,":[77,103],"which":[78],"is":[79],"based":[80],"differential":[82],"privacy":[83,87],"uses":[85],"different":[86],"budgets":[88],"depending":[89],"during":[93],"model":[95],"phase.":[97],"validate":[99],"of":[102,131],"conducted":[105],"extensive":[106],"experiments":[107],"multiple":[109],"publicly":[110],"available":[111],"datasets.":[112],"Experimental":[113],"results":[114],"demonstrate":[115],"that,":[116],"compared":[117],"state-of-the-art":[120],"strategies,":[122],"Dif-":[123],"Guard":[124],"more":[126],"effectively":[127],"mitigate":[128],"risks":[130],"MIA":[132],"without":[133],"compromising":[134],"classification":[135],"accuracy.":[136]},"counts_by_year":[],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}