{"id":"https://openalex.org/W4411408927","doi":"https://doi.org/10.1109/tifs.2025.3581103","title":"Hardening LLM Fine-Tuning: From Differentially Private Data Selection to Trustworthy Model Quantization","display_name":"Hardening LLM Fine-Tuning: From Differentially Private Data Selection to Trustworthy Model Quantization","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W4411408927","doi":"https://doi.org/10.1109/tifs.2025.3581103"},"language":"en","primary_location":{"id":"doi:10.1109/tifs.2025.3581103","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3581103","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5113230472","display_name":"Zehang Deng","orcid":null},"institutions":[{"id":"https://openalex.org/I57093077","display_name":"Swinburne University of Technology","ror":"https://ror.org/031rekg67","country_code":"AU","type":"education","lineage":["https://openalex.org/I57093077"]}],"countries":["AU"],"is_corresponding":true,"raw_author_name":"Zehang Deng","raw_affiliation_strings":["School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia"],"raw_orcid":"https://orcid.org/0009-0000-5469-0762","affiliations":[{"raw_affiliation_string":"School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia","institution_ids":["https://openalex.org/I57093077"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5023380459","display_name":"Ruoxi Sun","orcid":"https://orcid.org/0000-0001-5404-8550"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"government","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I4210091585","display_name":"Quantum (Australia)","ror":"https://ror.org/00bp6rb10","country_code":"AU","type":"company","lineage":["https://openalex.org/I4210091585"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Ruoxi Sun","raw_affiliation_strings":["Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Eveleigh, NSW, Australia","Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Australia"],"raw_orcid":"https://orcid.org/0000-0001-5404-8550","affiliations":[{"raw_affiliation_string":"Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Eveleigh, NSW, Australia","institution_ids":["https://openalex.org/I42894916"]},{"raw_affiliation_string":"Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679","https://openalex.org/I4210091585"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009850797","display_name":"Minhui Xue","orcid":"https://orcid.org/0000-0002-9172-4252"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"government","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I4210091585","display_name":"Quantum (Australia)","ror":"https://ror.org/00bp6rb10","country_code":"AU","type":"company","lineage":["https://openalex.org/I4210091585"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Minhui Xue","raw_affiliation_strings":["Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Eveleigh, NSW, Australia","Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Australia"],"raw_orcid":"https://orcid.org/0000-0002-9172-4252","affiliations":[{"raw_affiliation_string":"Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Eveleigh, NSW, Australia","institution_ids":["https://openalex.org/I42894916"]},{"raw_affiliation_string":"Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679","https://openalex.org/I4210091585"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5011383481","display_name":"Wanlun Ma","orcid":"https://orcid.org/0000-0002-6305-1740"},"institutions":[{"id":"https://openalex.org/I57093077","display_name":"Swinburne University of Technology","ror":"https://ror.org/031rekg67","country_code":"AU","type":"education","lineage":["https://openalex.org/I57093077"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Wanlun Ma","raw_affiliation_strings":["School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia"],"raw_orcid":"https://orcid.org/0000-0002-6305-1740","affiliations":[{"raw_affiliation_string":"School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia","institution_ids":["https://openalex.org/I57093077"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5076576641","display_name":"Sheng Wen","orcid":"https://orcid.org/0000-0003-0655-666X"},"institutions":[{"id":"https://openalex.org/I57093077","display_name":"Swinburne University of Technology","ror":"https://ror.org/031rekg67","country_code":"AU","type":"education","lineage":["https://openalex.org/I57093077"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Sheng Wen","raw_affiliation_strings":["School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia"],"raw_orcid":"https://orcid.org/0000-0003-0655-666X","affiliations":[{"raw_affiliation_string":"School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia","institution_ids":["https://openalex.org/I57093077"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5082256444","display_name":"\u202aSurya Nepal\u202c","orcid":"https://orcid.org/0000-0002-3289-6599"},"institutions":[{"id":"https://openalex.org/I1292875679","display_name":"Commonwealth Scientific and Industrial Research Organisation","ror":"https://ror.org/03qn8fb07","country_code":"AU","type":"government","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I4387156119"]},{"id":"https://openalex.org/I4210091585","display_name":"Quantum (Australia)","ror":"https://ror.org/00bp6rb10","country_code":"AU","type":"company","lineage":["https://openalex.org/I4210091585"]},{"id":"https://openalex.org/I42894916","display_name":"Data61","ror":"https://ror.org/03q397159","country_code":"AU","type":"other","lineage":["https://openalex.org/I1292875679","https://openalex.org/I2801453606","https://openalex.org/I42894916","https://openalex.org/I4387156119"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Surya Nepal","raw_affiliation_strings":["Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Eveleigh, NSW, Australia","Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Australia"],"raw_orcid":"https://orcid.org/0000-0002-3289-6599","affiliations":[{"raw_affiliation_string":"Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Eveleigh, NSW, Australia","institution_ids":["https://openalex.org/I42894916"]},{"raw_affiliation_string":"Cybersecurity and Quantum Systems Group, CSIRO&#x2019;s Data61, Australia","institution_ids":["https://openalex.org/I42894916","https://openalex.org/I1292875679","https://openalex.org/I4210091585"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100666554","display_name":"Yang Xiang","orcid":"https://orcid.org/0000-0001-5252-0831"},"institutions":[{"id":"https://openalex.org/I57093077","display_name":"Swinburne University of Technology","ror":"https://ror.org/031rekg67","country_code":"AU","type":"education","lineage":["https://openalex.org/I57093077"]}],"countries":["AU"],"is_corresponding":false,"raw_author_name":"Yang Xiang","raw_affiliation_strings":["School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia"],"raw_orcid":"https://orcid.org/0000-0001-5252-0831","affiliations":[{"raw_affiliation_string":"School of Science, Computing and Engineering Technologies, Swinburne University of Technology, Melbourne, VIC, Australia","institution_ids":["https://openalex.org/I57093077"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":["https://openalex.org/A5113230472"],"corresponding_institution_ids":["https://openalex.org/I57093077"],"apc_list":null,"apc_paid":null,"fwci":43.8314,"has_fulltext":false,"cited_by_count":23,"citation_normalized_percentile":{"value":0.99782948,"is_in_top_1_percent":true,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":99,"max":100},"biblio":{"volume":"20","issue":null,"first_page":"7211","last_page":"7226"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.8597999811172485,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.8597999811172485,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.7520999908447266,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10927","display_name":"Access Control and Trust","score":0.7246999740600586,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.744593620300293},{"id":"https://openalex.org/keywords/trustworthiness","display_name":"Trustworthiness","score":0.7379041910171509},{"id":"https://openalex.org/keywords/data-modeling","display_name":"Data modeling","score":0.5647217035293579},{"id":"https://openalex.org/keywords/quantization","display_name":"Quantization (signal processing)","score":0.5077798962593079},{"id":"https://openalex.org/keywords/selection","display_name":"Selection (genetic algorithm)","score":0.4151035249233246},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.36971545219421387},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2343994677066803},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.21847409009933472},{"id":"https://openalex.org/keywords/database","display_name":"Database","score":0.2082880437374115},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.1376095414161682}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.744593620300293},{"id":"https://openalex.org/C153701036","wikidata":"https://www.wikidata.org/wiki/Q659974","display_name":"Trustworthiness","level":2,"score":0.7379041910171509},{"id":"https://openalex.org/C67186912","wikidata":"https://www.wikidata.org/wiki/Q367664","display_name":"Data modeling","level":2,"score":0.5647217035293579},{"id":"https://openalex.org/C28855332","wikidata":"https://www.wikidata.org/wiki/Q198099","display_name":"Quantization (signal processing)","level":2,"score":0.5077798962593079},{"id":"https://openalex.org/C81917197","wikidata":"https://www.wikidata.org/wiki/Q628760","display_name":"Selection (genetic algorithm)","level":2,"score":0.4151035249233246},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.36971545219421387},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2343994677066803},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.21847409009933472},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.2082880437374115},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.1376095414161682}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tifs.2025.3581103","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3581103","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":64,"referenced_works":["https://openalex.org/W2251939518","https://openalex.org/W2473418344","https://openalex.org/W2535690855","https://openalex.org/W2966342255","https://openalex.org/W2970641574","https://openalex.org/W2978670439","https://openalex.org/W2979826702","https://openalex.org/W2989743967","https://openalex.org/W2999309192","https://openalex.org/W3012501605","https://openalex.org/W3018102029","https://openalex.org/W3093968407","https://openalex.org/W3111167009","https://openalex.org/W3114757058","https://openalex.org/W3130554079","https://openalex.org/W3175218683","https://openalex.org/W3185902884","https://openalex.org/W3212931265","https://openalex.org/W4205228770","https://openalex.org/W4206199121","https://openalex.org/W4300672471","https://openalex.org/W4309151968","https://openalex.org/W4385571534","https://openalex.org/W4389520346","https://openalex.org/W4391971084","https://openalex.org/W4391974554","https://openalex.org/W4392353733","https://openalex.org/W4393372064","https://openalex.org/W4399971973","https://openalex.org/W4400365782","https://openalex.org/W4404293760","https://openalex.org/W4406610709","https://openalex.org/W4407236106","https://openalex.org/W4410394431","https://openalex.org/W6682631176","https://openalex.org/W6685053522","https://openalex.org/W6773039429","https://openalex.org/W6782879696","https://openalex.org/W6784577980","https://openalex.org/W6787335730","https://openalex.org/W6788175385","https://openalex.org/W6802709103","https://openalex.org/W6803256842","https://openalex.org/W6810116260","https://openalex.org/W6810332117","https://openalex.org/W6842258392","https://openalex.org/W6846164622","https://openalex.org/W6846577953","https://openalex.org/W6848451824","https://openalex.org/W6849705120","https://openalex.org/W6853048723","https://openalex.org/W6853341658","https://openalex.org/W6853658832","https://openalex.org/W6854094408","https://openalex.org/W6854866820","https://openalex.org/W6856696905","https://openalex.org/W6856969750","https://openalex.org/W6861295083","https://openalex.org/W6862247577","https://openalex.org/W6862705496","https://openalex.org/W6863042553","https://openalex.org/W6863281303","https://openalex.org/W6866399300","https://openalex.org/W6866626949"],"related_works":["https://openalex.org/W2076536433","https://openalex.org/W90316445","https://openalex.org/W4327743613","https://openalex.org/W2965447900","https://openalex.org/W3199750033","https://openalex.org/W4391815708","https://openalex.org/W2374509987","https://openalex.org/W3163373470","https://openalex.org/W3005856188","https://openalex.org/W1898221464"],"abstract_inverted_index":{"Critical":[0],"infrastructures":[1],"are":[2,20,31],"increasingly":[3],"integrating":[4],"artificial":[5],"intelligence":[6],"(AI)":[7],"technologies,":[8],"including":[9],"large":[10],"language":[11],"models":[12],"(LLMs),":[13],"into":[14],"essential":[15],"systems":[16],"and":[17,48,66,82,128,140,148,170],"services":[18],"that":[19,117],"vital":[21],"to":[22,71,77,159],"societal":[23],"functioning.":[24],"Fine-tuning":[25,95],"LLMs":[26,161,232],"for":[27,33,74],"specific":[28],"domain":[29],"tasks":[30],"crucial":[32],"their":[34],"effective":[35],"deployment":[36],"in":[37,204],"these":[38,100],"contexts,":[39],"but":[40],"this":[41,87],"process":[42],"must":[43],"carefully":[44],"address":[45],"both":[46],"privacy":[47,119,189,191,221],"security":[49],"concerns.":[50],"Without":[51],"proper":[52],"safeguards,":[53],"such":[54,60,163],"integration":[55],"can":[56],"introduce":[57,153],"additional":[58],"risks,":[59],"as":[61,164],"data":[62,114,139],"leakage":[63,142],"during":[64],"training":[65,122,146],"diminished":[67],"model":[68,75,124,156,178],"trustworthiness":[69,229],"due":[70],"the":[72,123,145,184,219,228],"need":[73],"compression":[76,249],"operate":[78],"within":[79],"limited":[80],"bandwidth":[81],"computational":[83],"capacity":[84],"constraints.":[85],"In":[86],"paper,":[88],"we":[89,109,152],"propose":[90],"<italic":[91],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[92,107,150],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">Hardening":[93],"LLM":[94],"framework</i>":[96],"(HARDLLM),":[97],"which":[98],"addresses":[99],"challenges":[101],"through":[102],"two":[103],"key":[104],"components:":[105],"(<italic":[106,149],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">i</i>)":[108],"develop":[110],"a":[111,154,201,240,247],"differentially":[112],"private":[113,138],"selection":[115],"method":[116],"ensures":[118,187],"protection":[120],"by":[121,233],"exclusively":[125],"on":[126,177],"sampled":[127],"synthesized":[129],"public":[130],"data,":[131],"thereby":[132],"preventing":[133],"any":[134],"direct":[135],"use":[136],"of":[137,214,230,236],"enhancing":[141,167],"resilience":[143],"throughout":[144],"process,":[147],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">ii</i>)":[151],"trustworthiness-aware":[155],"quantization":[157,225],"approach":[158,226],"improve":[160],"performance,":[162],"reducing":[165],"toxicity,":[166],"adversarial":[168],"robustness,":[169],"mitigating":[171],"stereotypes,":[172],"while":[173,206],"maintaining":[174],"negligible":[175,241],"impact":[176],"utility.":[179],"Experimental":[180],"results":[181],"show":[182],"that,":[183],"proposed":[185],"algorithm":[186],"differential":[188],"when":[190],"budget":[192],"is":[193],"set":[194],"at":[195,215,246],"\u03f5":[196],"=":[197],"0.5,":[198],"with":[199,238],"only":[200,239],"1%":[202],"drop":[203,213],"accuracy,":[205],"other":[207],"state-of-the-art":[208],"methods":[209],"experience":[210],"an":[211,234],"accuracy":[212],"least":[216],"20%":[217],"under":[218],"same":[220],"budget.":[222],"Additionally,":[223],"our":[224],"improves":[227],"fine-tuned":[231],"average":[235],"3-4%,":[237],"utility":[242],"loss":[243],"(approximately":[244],"1%)":[245],"50%":[248],"rate.":[250]},"counts_by_year":[{"year":2026,"cited_by_count":6},{"year":2025,"cited_by_count":17}],"updated_date":"2026-05-23T08:51:43.019350","created_date":"2025-10-10T00:00:00"}