{"id":"https://openalex.org/W2964427690","doi":"https://doi.org/10.1145/3341697","title":"Fuzzi: a three-level logic for differential privacy","display_name":"Fuzzi: a three-level logic for differential privacy","publication_year":2019,"publication_date":"2019-07-26","ids":{"openalex":"https://openalex.org/W2964427690","doi":"https://doi.org/10.1145/3341697","mag":"2964427690"},"language":"en","primary_location":{"id":"doi:10.1145/3341697","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3341697","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3341697","source":{"id":"https://openalex.org/S4210216081","display_name":"Proceedings of the ACM on Programming Languages","issn_l":"2475-1421","issn":["2475-1421"],"is_oa":true,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Programming Languages","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3341697","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5010653419","display_name":"Hengchu Zhang","orcid":null},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":true,"raw_author_name":"Hengchu Zhang","raw_affiliation_strings":["University of Pennsylvania, USA"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, USA","institution_ids":["https://openalex.org/I36788626"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085785749","display_name":"Edo Roth","orcid":"https://orcid.org/0009-0008-8126-6009"},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Edo Roth","raw_affiliation_strings":["University of Pennsylvania, USA"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, USA","institution_ids":["https://openalex.org/I36788626"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5057845948","display_name":"Andreas Haeberlen","orcid":"https://orcid.org/0000-0002-3271-8354"},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Andreas Haeberlen","raw_affiliation_strings":["University of Pennsylvania, USA"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, USA","institution_ids":["https://openalex.org/I36788626"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5085361253","display_name":"Benjamin C. Pierce","orcid":"https://orcid.org/0000-0001-7839-1636"},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Benjamin C. Pierce","raw_affiliation_strings":["University of Pennsylvania, USA"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, USA","institution_ids":["https://openalex.org/I36788626"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5057693522","display_name":"Aaron Roth","orcid":"https://orcid.org/0000-0002-0586-0515"},"institutions":[{"id":"https://openalex.org/I36788626","display_name":"California University of Pennsylvania","ror":"https://ror.org/01spssf70","country_code":"US","type":"education","lineage":["https://openalex.org/I36788626"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Aaron Roth","raw_affiliation_strings":["University of Pennsylvania, USA"],"affiliations":[{"raw_affiliation_string":"University of Pennsylvania, USA","institution_ids":["https://openalex.org/I36788626"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5010653419"],"corresponding_institution_ids":["https://openalex.org/I36788626"],"apc_list":null,"apc_paid":null,"fwci":1.8785,"has_fulltext":true,"cited_by_count":18,"citation_normalized_percentile":{"value":0.89432095,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":90,"max":98},"biblio":{"volume":"3","issue":"ICFP","first_page":"1","last_page":"28"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.9994999766349792,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9905999898910522,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/differential-privacy","display_name":"Differential privacy","score":0.7618621587753296},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7121958136558533},{"id":"https://openalex.org/keywords/theoretical-computer-science","display_name":"Theoretical computer science","score":0.5910657644271851},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.5143857598304749},{"id":"https://openalex.org/keywords/mathematical-proof","display_name":"Mathematical proof","score":0.4720422029495239},{"id":"https://openalex.org/keywords/probabilistic-logic","display_name":"Probabilistic logic","score":0.4478055238723755},{"id":"https://openalex.org/keywords/hoare-logic","display_name":"Hoare logic","score":0.41707485914230347},{"id":"https://openalex.org/keywords/statistical-relational-learning","display_name":"Statistical relational learning","score":0.41387131810188293},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.25851351022720337},{"id":"https://openalex.org/keywords/relational-database","display_name":"Relational database","score":0.25076478719711304},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2318098247051239},{"id":"https://openalex.org/keywords/mathematics","display_name":"Mathematics","score":0.1875184178352356},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.11813190579414368}],"concepts":[{"id":"https://openalex.org/C23130292","wikidata":"https://www.wikidata.org/wiki/Q5275358","display_name":"Differential privacy","level":2,"score":0.7618621587753296},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7121958136558533},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.5910657644271851},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.5143857598304749},{"id":"https://openalex.org/C108710211","wikidata":"https://www.wikidata.org/wiki/Q11538","display_name":"Mathematical proof","level":2,"score":0.4720422029495239},{"id":"https://openalex.org/C49937458","wikidata":"https://www.wikidata.org/wiki/Q2599292","display_name":"Probabilistic logic","level":2,"score":0.4478055238723755},{"id":"https://openalex.org/C104949639","wikidata":"https://www.wikidata.org/wiki/Q1375924","display_name":"Hoare logic","level":3,"score":0.41707485914230347},{"id":"https://openalex.org/C177877439","wikidata":"https://www.wikidata.org/wiki/Q7604413","display_name":"Statistical relational learning","level":3,"score":0.41387131810188293},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.25851351022720337},{"id":"https://openalex.org/C5655090","wikidata":"https://www.wikidata.org/wiki/Q192588","display_name":"Relational database","level":2,"score":0.25076478719711304},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2318098247051239},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.1875184178352356},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.11813190579414368},{"id":"https://openalex.org/C55439883","wikidata":"https://www.wikidata.org/wiki/Q360812","display_name":"Correctness","level":2,"score":0.0},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3341697","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3341697","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3341697","source":{"id":"https://openalex.org/S4210216081","display_name":"Proceedings of the ACM on Programming Languages","issn_l":"2475-1421","issn":["2475-1421"],"is_oa":true,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Programming Languages","raw_type":"journal-article"}],"best_oa_location":{"id":"doi:10.1145/3341697","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3341697","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3341697","source":{"id":"https://openalex.org/S4210216081","display_name":"Proceedings of the ACM on Programming Languages","issn_l":"2475-1421","issn":["2475-1421"],"is_oa":true,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the ACM on Programming Languages","raw_type":"journal-article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","score":0.6800000071525574,"display_name":"Peace, Justice and strong institutions"}],"awards":[{"id":"https://openalex.org/G1164608561","display_name":null,"funder_award_id":"CNS-1065060 and CNS-1513694","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G1640709811","display_name":null,"funder_award_id":"CNS-1065060,CNS-1513694","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G2852898138","display_name":null,"funder_award_id":"CNS-1513694","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G4127031992","display_name":"TC: Medium: Putting Differential Privacy To Work","funder_award_id":"1065060","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G5900154129","display_name":"TWC: Medium: Distributed Differential Privacy","funder_award_id":"1513694","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G8128174158","display_name":null,"funder_award_id":"CNS-1065060","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G848032724","display_name":null,"funder_award_id":"Science","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320309370","display_name":"University of Pennsylvania","ror":"https://ror.org/00b30xv10"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2964427690.pdf","grobid_xml":"https://content.openalex.org/works/W2964427690.grobid-xml"},"referenced_works_count":33,"referenced_works":["https://openalex.org/W1508098446","https://openalex.org/W1873763122","https://openalex.org/W1991984504","https://openalex.org/W2001619934","https://openalex.org/W2012992615","https://openalex.org/W2022097286","https://openalex.org/W2027193703","https://openalex.org/W2042946599","https://openalex.org/W2096870293","https://openalex.org/W2112796928","https://openalex.org/W2149996206","https://openalex.org/W2155863409","https://openalex.org/W2163552400","https://openalex.org/W2167372639","https://openalex.org/W2294955337","https://openalex.org/W2295961883","https://openalex.org/W2473418344","https://openalex.org/W2753900993","https://openalex.org/W2754729435","https://openalex.org/W2779850521","https://openalex.org/W2798618564","https://openalex.org/W2799269185","https://openalex.org/W2886153332","https://openalex.org/W2987907651","https://openalex.org/W2990138404","https://openalex.org/W3009518942","https://openalex.org/W3098696637","https://openalex.org/W3099979833","https://openalex.org/W3100637409","https://openalex.org/W3123629616","https://openalex.org/W4205228770","https://openalex.org/W4229652664","https://openalex.org/W4248861293"],"related_works":["https://openalex.org/W3038283795","https://openalex.org/W2604501336","https://openalex.org/W2734500670","https://openalex.org/W2558166297","https://openalex.org/W2808944898","https://openalex.org/W2047749307","https://openalex.org/W2091015169","https://openalex.org/W2100877271","https://openalex.org/W2397542107","https://openalex.org/W2094260934"],"abstract_inverted_index":{"Curators":[0],"of":[1,19,123,137,152,165,205],"sensitive":[2],"datasets":[3],"sometimes":[4],"need":[5],"to":[6,197,226],"know":[7],"whether":[8],"queries":[9],"against":[10],"the":[11,119,140,144,148,153,177,194],"data":[12],"are":[13],"differentially":[14,126],"private":[15,127,216],".":[16],"Two":[17],"sorts":[18],"logics":[20,52],"have":[21],"been":[22],"proposed":[23],"for":[24,82,193,202],"checking":[25],"this":[26],"property:":[27],"(1)":[28],"type":[29,121],"systems":[30],"and":[31,45,48,89,108,143,150,176,219],"other":[32],"static":[33],"analyses,":[34],"which":[35,62],"fully":[36],"automate":[37],"straightforward":[38],"reasoning":[39,66],"with":[40],"concepts":[41],"like":[42],"\u201cprogram":[43],"sensitivity\u201d":[44],"\u201cprivacy":[46],"loss,\u201d":[47],"(2)":[49],"full-blown":[50],"program":[51],"such":[53],"as":[54,183],"apRHL":[55,175],"(an":[56],"approximate,":[57],"probabilistic,":[58],"relational":[59],"Hoare":[60],"logic),":[61],"support":[63],"more":[64],"flexible":[65],"about":[67],"subtle":[68],"privacy-preserving":[69],"algorithmic":[70,167],"techniques":[71],"but":[72],"offer":[73],"only":[74],"minimal":[75],"automation.":[76],"We":[77,208],"propose":[78],"a":[79,91,100,113,125,134,191],"three-level":[80],"logic":[81,116,142,155,196],"differential":[83],"privacy":[84,163,200],"in":[85,174],"an":[86],"imperative":[87],"setting":[88],"present":[90],"prototype":[92],"implementation":[93],"called":[94],"Fuzzi.":[95],"Fuzzi\u2019s":[96,210,222],"lowest":[97],"level":[98,105,111],"is":[99,106,112,133,224],"general-purpose":[101],"logic;":[102],"its":[103,109],"middle":[104],"apRHL;":[107,161],"top":[110],"novel":[114],"sensitivity":[115,141,154,195,229],"adapted":[117],"from":[118],"linear-logic-inspired":[120],"system":[122],"Fuzz,":[124],"functional":[128],"language.":[129],"The":[130],"key":[131,166],"novelty":[132],"high":[135],"degree":[136],"integration":[138],"between":[139],"two":[145],"lower-level":[146],"logics:":[147],"judgments":[149],"proofs":[151,201],"can":[156,170,187],"be":[157,171,188],"easily":[158],"translated":[159],"into":[160],"conversely,":[162],"properties":[164],"building":[168],"blocks":[169],"proved":[172],"manually":[173],"base":[178],"logic,":[179],"then":[180],"packaged":[181],"up":[182],"typing":[184],"rules":[185],"that":[186,221],"applied":[189],"by":[190,212],"checker":[192,223],"automatically":[198],"construct":[199],"composite":[203],"programs":[204],"arbitrary":[206],"size.":[207],"demonstrate":[209],"utility":[211],"implementing":[213],"four":[214],"different":[215],"machine-learning":[217],"algorithms":[218],"showing":[220],"able":[225],"derive":[227],"tight":[228],"bounds.":[230]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":1},{"year":2023,"cited_by_count":3},{"year":2022,"cited_by_count":4},{"year":2021,"cited_by_count":2},{"year":2020,"cited_by_count":6},{"year":2019,"cited_by_count":1}],"updated_date":"2026-03-18T14:38:29.013473","created_date":"2025-10-10T00:00:00"}