{"id":"https://openalex.org/W2091015169","doi":"https://doi.org/10.1145/2492061","title":"Probabilistic Relational Reasoning for Differential Privacy","display_name":"Probabilistic Relational Reasoning for Differential Privacy","publication_year":2013,"publication_date":"2013-11-01","ids":{"openalex":"https://openalex.org/W2091015169","doi":"https://doi.org/10.1145/2492061","mag":"2091015169"},"language":"en","primary_location":{"id":"doi:10.1145/2492061","is_oa":true,"landing_page_url":"https://doi.org/10.1145/2492061","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/2492061","source":{"id":"https://openalex.org/S41449414","display_name":"ACM Transactions on Programming Languages and Systems","issn_l":"0164-0925","issn":["0164-0925","1558-4593"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Programming Languages and Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"bronze","oa_url":"https://dl.acm.org/doi/pdf/10.1145/2492061","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5075577852","display_name":"Gilles Barthe","orcid":"https://orcid.org/0000-0002-3853-1777"},"institutions":[{"id":"https://openalex.org/I4210162154","display_name":"IMDEA Software","ror":"https://ror.org/04xvfkh51","country_code":"ES","type":"facility","lineage":["https://openalex.org/I105140100","https://openalex.org/I4210162154"]}],"countries":["ES"],"is_corresponding":true,"raw_author_name":"Gilles Barthe","raw_affiliation_strings":["IMDEA Software Institute","IMDEA Software Institute#TAB#"],"affiliations":[{"raw_affiliation_string":"IMDEA Software Institute","institution_ids":["https://openalex.org/I4210162154"]},{"raw_affiliation_string":"IMDEA Software Institute#TAB#","institution_ids":["https://openalex.org/I4210162154"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085729110","display_name":"Boris K\u00f6pf","orcid":"https://orcid.org/0009-0005-8004-0743"},"institutions":[{"id":"https://openalex.org/I4210162154","display_name":"IMDEA Software","ror":"https://ror.org/04xvfkh51","country_code":"ES","type":"facility","lineage":["https://openalex.org/I105140100","https://openalex.org/I4210162154"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Boris K\u00f6pf","raw_affiliation_strings":["IMDEA Software Institute","IMDEA Software Institute#TAB#"],"affiliations":[{"raw_affiliation_string":"IMDEA Software Institute","institution_ids":["https://openalex.org/I4210162154"]},{"raw_affiliation_string":"IMDEA Software Institute#TAB#","institution_ids":["https://openalex.org/I4210162154"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5009421242","display_name":"Federico Olmedo","orcid":"https://orcid.org/0000-0003-0217-6483"},"institutions":[{"id":"https://openalex.org/I4210162154","display_name":"IMDEA Software","ror":"https://ror.org/04xvfkh51","country_code":"ES","type":"facility","lineage":["https://openalex.org/I105140100","https://openalex.org/I4210162154"]}],"countries":["ES"],"is_corresponding":false,"raw_author_name":"Federico Olmedo","raw_affiliation_strings":["IMDEA Software Institute","IMDEA Software Institute#TAB#"],"affiliations":[{"raw_affiliation_string":"IMDEA Software Institute","institution_ids":["https://openalex.org/I4210162154"]},{"raw_affiliation_string":"IMDEA Software Institute#TAB#","institution_ids":["https://openalex.org/I4210162154"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5088954009","display_name":"Santiago Zanella-B\u00e9guelin","orcid":"https://orcid.org/0000-0003-0479-9967"},"institutions":[{"id":"https://openalex.org/I4210164937","display_name":"Microsoft Research (United Kingdom)","ror":"https://ror.org/05k87vq12","country_code":"GB","type":"company","lineage":["https://openalex.org/I1290206253","https://openalex.org/I4210164937"]},{"id":"https://openalex.org/I1290206253","display_name":"Microsoft (United States)","ror":"https://ror.org/00d0nc645","country_code":"US","type":"company","lineage":["https://openalex.org/I1290206253"]}],"countries":["GB","US"],"is_corresponding":false,"raw_author_name":"Santiago Zanella-B\u00e9guelin","raw_affiliation_strings":["Microsoft Research","Microsoft research#TAB#"],"affiliations":[{"raw_affiliation_string":"Microsoft Research","institution_ids":["https://openalex.org/I4210164937"]},{"raw_affiliation_string":"Microsoft research#TAB#","institution_ids":["https://openalex.org/I1290206253"]}]}],"institutions":[],"countries_distinct_count":3,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5075577852"],"corresponding_institution_ids":["https://openalex.org/I4210162154"],"apc_list":null,"apc_paid":null,"fwci":8.402,"has_fulltext":true,"cited_by_count":88,"citation_normalized_percentile":{"value":0.97385414,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":100},"biblio":{"volume":"35","issue":"3","first_page":"1","last_page":"49"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9991000294685364,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11045","display_name":"Privacy, Security, and Data Protection","score":0.9908999800682068,"subfield":{"id":"https://openalex.org/subfields/3312","display_name":"Sociology and Political Science"},"field":{"id":"https://openalex.org/fields/33","display_name":"Social Sciences"},"domain":{"id":"https://openalex.org/domains/2","display_name":"Social Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/differential-privacy","display_name":"Differential privacy","score":0.935606062412262},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.886696457862854},{"id":"https://openalex.org/keywords/correctness","display_name":"Correctness","score":0.7263643741607666},{"id":"https://openalex.org/keywords/hoare-logic","display_name":"Hoare logic","score":0.7227678298950195},{"id":"https://openalex.org/keywords/probabilistic-logic","display_name":"Probabilistic logic","score":0.5802138447761536},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.5463569164276123},{"id":"https://openalex.org/keywords/mathematical-proof","display_name":"Mathematical proof","score":0.5372109413146973},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.25292104482650757},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.22173094749450684},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.21468210220336914},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.09254485368728638}],"concepts":[{"id":"https://openalex.org/C23130292","wikidata":"https://www.wikidata.org/wiki/Q5275358","display_name":"Differential privacy","level":2,"score":0.935606062412262},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.886696457862854},{"id":"https://openalex.org/C55439883","wikidata":"https://www.wikidata.org/wiki/Q360812","display_name":"Correctness","level":2,"score":0.7263643741607666},{"id":"https://openalex.org/C104949639","wikidata":"https://www.wikidata.org/wiki/Q1375924","display_name":"Hoare logic","level":3,"score":0.7227678298950195},{"id":"https://openalex.org/C49937458","wikidata":"https://www.wikidata.org/wiki/Q2599292","display_name":"Probabilistic logic","level":2,"score":0.5802138447761536},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.5463569164276123},{"id":"https://openalex.org/C108710211","wikidata":"https://www.wikidata.org/wiki/Q11538","display_name":"Mathematical proof","level":2,"score":0.5372109413146973},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.25292104482650757},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.22173094749450684},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.21468210220336914},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.09254485368728638},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0}],"mesh":[],"locations_count":5,"locations":[{"id":"doi:10.1145/2492061","is_oa":true,"landing_page_url":"https://doi.org/10.1145/2492061","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/2492061","source":{"id":"https://openalex.org/S41449414","display_name":"ACM Transactions on Programming Languages and Systems","issn_l":"0164-0925","issn":["0164-0925","1558-4593"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Programming Languages and Systems","raw_type":"journal-article"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.220.5756","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.220.5756","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://www-sop.inria.fr/everest/personnel/Santiago.Zanella/Zanella.2012.POPL.pdf","raw_type":"text"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.378.1927","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.378.1927","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://easycrypt.gforge.inria.fr/2013.TOPLAS.pdf","raw_type":"text"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.378.2409","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.378.2409","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://easycrypt.gforge.inria.fr/2012.POPL.pdf","raw_type":"text"},{"id":"pmh:oai:CiteSeerX.psu:10.1.1.671.4413","is_oa":false,"landing_page_url":"http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.671.4413","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"http://software.imdea.org/%7Ebkoepf/papers/popl12.pdf","raw_type":"text"}],"best_oa_location":{"id":"doi:10.1145/2492061","is_oa":true,"landing_page_url":"https://doi.org/10.1145/2492061","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/2492061","source":{"id":"https://openalex.org/S41449414","display_name":"ACM Transactions on Programming Languages and Systems","issn_l":"0164-0925","issn":["0164-0925","1558-4593"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ACM Transactions on Programming Languages and Systems","raw_type":"journal-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.7599999904632568,"id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G4569304576","display_name":null,"funder_award_id":"FP7-256980 NESSoS, FP7-229599 AMAROUT","funder_id":"https://openalex.org/F4320334960","funder_display_name":"Seventh Framework Programme"}],"funders":[{"id":"https://openalex.org/F4320320883","display_name":"Agence Nationale de la Recherche","ror":"https://ror.org/00rbzpz17"},{"id":"https://openalex.org/F4320334960","display_name":"Seventh Framework Programme","ror":"https://ror.org/00k4n6c32"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2091015169.pdf","grobid_xml":"https://content.openalex.org/works/W2091015169.grobid-xml"},"referenced_works_count":62,"referenced_works":["https://openalex.org/W55681943","https://openalex.org/W57185801","https://openalex.org/W124871053","https://openalex.org/W192814132","https://openalex.org/W1492711856","https://openalex.org/W1493407996","https://openalex.org/W1550074586","https://openalex.org/W1557833142","https://openalex.org/W1587844310","https://openalex.org/W1597181838","https://openalex.org/W1668939463","https://openalex.org/W1814275833","https://openalex.org/W1867052887","https://openalex.org/W1872473787","https://openalex.org/W1873763122","https://openalex.org/W1984960155","https://openalex.org/W1986681115","https://openalex.org/W1993116423","https://openalex.org/W1994278052","https://openalex.org/W2000108089","https://openalex.org/W2011086847","https://openalex.org/W2041467928","https://openalex.org/W2044186952","https://openalex.org/W2050509196","https://openalex.org/W2054922243","https://openalex.org/W2064868049","https://openalex.org/W2073961002","https://openalex.org/W2074503439","https://openalex.org/W2077217970","https://openalex.org/W2084147655","https://openalex.org/W2095840868","https://openalex.org/W2096870293","https://openalex.org/W2097061283","https://openalex.org/W2107220315","https://openalex.org/W2108104925","https://openalex.org/W2108886305","https://openalex.org/W2109426455","https://openalex.org/W2113081700","https://openalex.org/W2118504961","https://openalex.org/W2123991163","https://openalex.org/W2125690626","https://openalex.org/W2131628270","https://openalex.org/W2136052444","https://openalex.org/W2139799388","https://openalex.org/W2141670510","https://openalex.org/W2147436337","https://openalex.org/W2149996206","https://openalex.org/W2154231274","https://openalex.org/W2154711640","https://openalex.org/W2163830226","https://openalex.org/W2167372639","https://openalex.org/W2168686464","https://openalex.org/W2177254373","https://openalex.org/W2207879440","https://openalex.org/W2288127207","https://openalex.org/W2487908531","https://openalex.org/W2510179671","https://openalex.org/W2561675875","https://openalex.org/W2950343740","https://openalex.org/W2980069606","https://openalex.org/W3039999392","https://openalex.org/W3145555275"],"related_works":["https://openalex.org/W55831818","https://openalex.org/W4288108404","https://openalex.org/W2972369428","https://openalex.org/W4238067631","https://openalex.org/W2047749307","https://openalex.org/W2091015169","https://openalex.org/W1518667287","https://openalex.org/W2031506341","https://openalex.org/W2100877271","https://openalex.org/W2041039571"],"abstract_inverted_index":{"Differential":[0],"privacy":[1,17,22,55,73,80,92,112,141,190],"is":[2,23,126,162],"a":[3,24,105,127,155],"notion":[4],"of":[5,18,52,61,93,116,124,130,152,157,164,167,178,180,188,191],"confidentiality":[6],"that":[7,29,58,67,77,135],"allows":[8],"useful":[9],"computations":[10],"on":[11,39,103,114,154],"sensible":[12],"data":[13],"while":[14],"protecting":[15],"the":[16,91,117,150,165,174,181,189,197],"individuals.":[19],"Proving":[20],"differential":[21,72,79,111,140],"difficult":[25],"and":[26,34,42,75,184,187,193],"error-prone":[27],"task":[28],"calls":[30],"for":[31,69,88,108,143],"principled":[32],"approaches":[33],"tool":[35],"support.":[36],"Approaches":[37],"based":[38],"linear":[40],"types":[41],"static":[43],"analysis":[44,161],"have":[45],"recently":[46],"emerged;":[47],"however,":[48],"an":[49,98],"increasing":[50],"number":[51,156],"programs":[53,66,76,95,144],"achieve":[54,78],"using":[56,82],"techniques":[57],"fall":[59],"out":[60,163],"their":[62],"scope.":[63],"Examples":[64],"include":[65],"aim":[68],"weaker,":[70],"approximate":[71],"guarantees":[74,142],"without":[81],"any":[83],"standard":[84],"mechanisms.":[85],"Providing":[86],"support":[87],"reasoning":[89,109],"about":[90,110],"such":[94],"has":[96],"been":[97],"open":[99],"problem.":[100],"We":[101,148],"report":[102],"CertiPriv,":[104],"machine-checked":[106,176],"framework":[107],"built":[113],"top":[115],"Coq":[118],"proof":[119],"assistant.":[120],"The":[121],"central":[122],"component":[123],"CertiPriv":[125,153],"quantitative":[128],"extension":[129],"probabilistic":[131],"relational":[132],"Hoare":[133],"logic":[134],"enables":[136],"one":[137],"to":[138],"derive":[139],"from":[145,196],"first":[146,175],"principles.":[147],"demonstrate":[149],"applicability":[151],"examples":[158],"whose":[159],"formal":[160],"reach":[166],"previous":[168],"techniques.":[169],"In":[170],"particular,":[171],"we":[172],"provide":[173],"proofs":[177],"correctness":[179],"Laplacian,":[182],"Gaussian,":[183],"exponential":[185],"mechanisms":[186],"randomized":[192],"streaming":[194],"algorithms":[195],"literature.":[198]},"counts_by_year":[{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":2},{"year":2023,"cited_by_count":7},{"year":2022,"cited_by_count":8},{"year":2021,"cited_by_count":11},{"year":2020,"cited_by_count":4},{"year":2019,"cited_by_count":14},{"year":2018,"cited_by_count":9},{"year":2017,"cited_by_count":7},{"year":2016,"cited_by_count":8},{"year":2015,"cited_by_count":3},{"year":2014,"cited_by_count":5},{"year":2013,"cited_by_count":1}],"updated_date":"2026-04-05T17:49:38.594831","created_date":"2025-10-10T00:00:00"}