{"id":"https://openalex.org/W4297632117","doi":"https://doi.org/10.1145/3548606.3560619","title":"On the Privacy Risks of Cell-Based NAS Architectures","display_name":"On the Privacy Risks of Cell-Based NAS Architectures","publication_year":2022,"publication_date":"2022-11-07","ids":{"openalex":"https://openalex.org/W4297632117","doi":"https://doi.org/10.1145/3548606.3560619"},"language":"en","primary_location":{"id":"doi:10.1145/3548606.3560619","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3548606.3560619","pdf_url":null,"source":{"id":"https://openalex.org/S4363608815","display_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["arxiv","crossref","datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2209.01688","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5004441629","display_name":"Hai Huang","orcid":"https://orcid.org/0000-0001-9841-1147"},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":true,"raw_author_name":"Hai Huang","raw_affiliation_strings":["CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany"],"affiliations":[{"raw_affiliation_string":"CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany","institution_ids":["https://openalex.org/I4210128801"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100746182","display_name":"Zhikun Zhang","orcid":"https://orcid.org/0000-0001-7208-3392"},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Zhikun Zhang","raw_affiliation_strings":["CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany"],"affiliations":[{"raw_affiliation_string":"CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany","institution_ids":["https://openalex.org/I4210128801"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5050781579","display_name":"Yun Shen","orcid":"https://orcid.org/0000-0001-7863-8475"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Yun Shen","raw_affiliation_strings":["NetApp, Bristol, England UK"],"affiliations":[{"raw_affiliation_string":"NetApp, Bristol, England UK","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5004014878","display_name":"Michael Backes","orcid":"https://orcid.org/0000-0002-9326-6400"},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Michael Backes","raw_affiliation_strings":["CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany"],"affiliations":[{"raw_affiliation_string":"CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany","institution_ids":["https://openalex.org/I4210128801"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100350165","display_name":"Qi Li","orcid":"https://orcid.org/0000-0001-8776-8730"},"institutions":[{"id":"https://openalex.org/I99065089","display_name":"Tsinghua University","ror":"https://ror.org/03cve4549","country_code":"CN","type":"education","lineage":["https://openalex.org/I99065089"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Qi Li","raw_affiliation_strings":["Tsinghua University, Zhongguancun Lab, Beijing, China"],"affiliations":[{"raw_affiliation_string":"Tsinghua University, Zhongguancun Lab, Beijing, China","institution_ids":["https://openalex.org/I99065089"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5100354608","display_name":"Yang Zhang","orcid":"https://orcid.org/0000-0001-9229-7689"},"institutions":[{"id":"https://openalex.org/I4210128801","display_name":"Helmholtz Center for Information Security","ror":"https://ror.org/02njgxr09","country_code":"DE","type":"facility","lineage":["https://openalex.org/I1305996414","https://openalex.org/I4210128801"]}],"countries":["DE"],"is_corresponding":false,"raw_author_name":"Yang Zhang","raw_affiliation_strings":["CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany"],"affiliations":[{"raw_affiliation_string":"CISPA Helmholtz Center for Information Security, Saarbr\u00fccken, Germany","institution_ids":["https://openalex.org/I4210128801"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":6,"corresponding_author_ids":["https://openalex.org/A5004441629"],"corresponding_institution_ids":["https://openalex.org/I4210128801"],"apc_list":null,"apc_paid":null,"fwci":0.626,"has_fulltext":false,"cited_by_count":6,"citation_normalized_percentile":{"value":0.67800742,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"1427","last_page":"1441"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11689","display_name":"Adversarial Robustness in Machine Learning","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11612","display_name":"Stochastic Gradient Optimization Techniques","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8025585412979126},{"id":"https://openalex.org/keywords/architecture","display_name":"Architecture","score":0.6154598593711853},{"id":"https://openalex.org/keywords/information-privacy","display_name":"Information privacy","score":0.5465036630630493},{"id":"https://openalex.org/keywords/focus","display_name":"Focus (optics)","score":0.5429553389549255},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4226738214492798}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8025585412979126},{"id":"https://openalex.org/C123657996","wikidata":"https://www.wikidata.org/wiki/Q12271","display_name":"Architecture","level":2,"score":0.6154598593711853},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.5465036630630493},{"id":"https://openalex.org/C192209626","wikidata":"https://www.wikidata.org/wiki/Q190909","display_name":"Focus (optics)","level":2,"score":0.5429553389549255},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4226738214492798},{"id":"https://openalex.org/C142362112","wikidata":"https://www.wikidata.org/wiki/Q735","display_name":"Art","level":0,"score":0.0},{"id":"https://openalex.org/C153349607","wikidata":"https://www.wikidata.org/wiki/Q36649","display_name":"Visual arts","level":1,"score":0.0},{"id":"https://openalex.org/C120665830","wikidata":"https://www.wikidata.org/wiki/Q14620","display_name":"Optics","level":1,"score":0.0},{"id":"https://openalex.org/C121332964","wikidata":"https://www.wikidata.org/wiki/Q413","display_name":"Physics","level":0,"score":0.0}],"mesh":[],"locations_count":4,"locations":[{"id":"doi:10.1145/3548606.3560619","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3548606.3560619","pdf_url":null,"source":{"id":"https://openalex.org/S4363608815","display_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","raw_type":"proceedings-article"},{"id":"pmh:oai:arXiv.org:2209.01688","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2209.01688","pdf_url":"https://arxiv.org/pdf/2209.01688","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},{"id":"pmh:oai:figshare.com:article/24614466","is_oa":true,"landing_page_url":"https://figshare.com/articles/conference_contribution/On_the_Privacy_Risks_of_Cell-Based_NAS_Architectures/24614466","pdf_url":null,"source":{"id":"https://openalex.org/S4377196282","display_name":"Figshare","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210132348","host_organization_name":"Figshare (United Kingdom)","host_organization_lineage":["https://openalex.org/I4210132348"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Text"},{"id":"doi:10.60882/cispa.24614466.v1","is_oa":true,"landing_page_url":"https://doi.org/10.60882/cispa.24614466.v1","pdf_url":null,"source":{"id":"https://openalex.org/S7407050916","display_name":"CISPA Helmholtz Center","issn_l":null,"issn":[],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2209.01688","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2209.01688","pdf_url":"https://arxiv.org/pdf/2209.01688","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G1231421488","display_name":null,"funder_award_id":"under","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G1966752340","display_name":null,"funder_award_id":"ZT-I-OO1 4","funder_id":"https://openalex.org/F4320325698","funder_display_name":"Helmholtz Association"},{"id":"https://openalex.org/G37568934","display_name":null,"funder_award_id":"Grant","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G7155321176","display_name":null,"funder_award_id":"62132011","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"},{"id":"https://openalex.org/F4320325698","display_name":"Helmholtz Association","ror":null}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":78,"referenced_works":["https://openalex.org/W398859631","https://openalex.org/W569478347","https://openalex.org/W1686810756","https://openalex.org/W1873763122","https://openalex.org/W1930624869","https://openalex.org/W2118858186","https://openalex.org/W2183341477","https://openalex.org/W2295598076","https://openalex.org/W2535690855","https://openalex.org/W2553303224","https://openalex.org/W2556833785","https://openalex.org/W2593390416","https://openalex.org/W2595713799","https://openalex.org/W2612445135","https://openalex.org/W2613718673","https://openalex.org/W2768348081","https://openalex.org/W2785366763","https://openalex.org/W2795435272","https://openalex.org/W2803311163","https://openalex.org/W2807096445","https://openalex.org/W2884943453","https://openalex.org/W2930926105","https://openalex.org/W2946948417","https://openalex.org/W2947693768","https://openalex.org/W2951589468","https://openalex.org/W2960010704","https://openalex.org/W2976822050","https://openalex.org/W2980270353","https://openalex.org/W2981406437","https://openalex.org/W2981613165","https://openalex.org/W2987301155","https://openalex.org/W2998030011","https://openalex.org/W3006500080","https://openalex.org/W3015146382","https://openalex.org/W3023742835","https://openalex.org/W3030163527","https://openalex.org/W3035467354","https://openalex.org/W3042011474","https://openalex.org/W3046102592","https://openalex.org/W3071470454","https://openalex.org/W3081305497","https://openalex.org/W3090543239","https://openalex.org/W3103245149","https://openalex.org/W3106873467","https://openalex.org/W3109935598","https://openalex.org/W3115042282","https://openalex.org/W3120629159","https://openalex.org/W3125962578","https://openalex.org/W3126152116","https://openalex.org/W3126536942","https://openalex.org/W3126787694","https://openalex.org/W3127447688","https://openalex.org/W3138815606","https://openalex.org/W3157230571","https://openalex.org/W3193397148","https://openalex.org/W3201159406","https://openalex.org/W3211363117","https://openalex.org/W3212115349","https://openalex.org/W3212600502","https://openalex.org/W4221157063","https://openalex.org/W4256549584","https://openalex.org/W6638891565","https://openalex.org/W6680532697","https://openalex.org/W6687483927","https://openalex.org/W6742028206","https://openalex.org/W6743923790","https://openalex.org/W6747381837","https://openalex.org/W6752515464","https://openalex.org/W6754884518","https://openalex.org/W6776188000","https://openalex.org/W6779628490","https://openalex.org/W6787376386","https://openalex.org/W6790978476","https://openalex.org/W6792711564","https://openalex.org/W6802757820","https://openalex.org/W6804505112","https://openalex.org/W6841867693","https://openalex.org/W6843439598"],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W4402327032","https://openalex.org/W2382290278"],"abstract_inverted_index":{"Existing":[0],"studies":[1],"on":[2,9,103],"neural":[3],"architecture":[4],"search":[5],"(NAS)":[6],"mainly":[7],"focus":[8],"efficiently":[10],"and":[11,58,84,113,128],"effectively":[12],"searching":[13],"for":[14],"network":[15],"architectures":[16,31,45,83,109,127],"with":[17],"better":[18],"performance.":[19],"Little":[20],"progress":[21],"has":[22,40],"been":[23],"made":[24],"to":[25,34,48,105,119],"systematically":[26,59],"understand":[27,120],"if":[28],"the":[29,61,68,77,87,91,121,125],"NAS-searched":[30,95,126],"are":[32,46],"robust":[33,107],"privacy":[35,49,62,92,111,130],"attacks":[36],"while":[37],"abundant":[38],"work":[39],"already":[41],"shown":[42],"that":[43],"human-designed":[44],"prone":[47],"attacks.":[50],"In":[51],"this":[52,56],"paper,":[53],"we":[54,74,100],"fill":[55],"gap":[57],"measure":[60],"risks":[63,93],"of":[64,80,94],"NAS":[65,82,108],"architectures.":[66,96],"Leveraging":[67],"insights":[69],"from":[70],"our":[71],"measurement":[72],"study,":[73],"further":[75],"explore":[76],"cell":[78,88],"patterns":[79,89],"cell-based":[81],"evaluate":[85],"how":[86,104],"affect":[90],"Through":[97],"extensive":[98],"experiments,":[99],"shed":[101],"light":[102],"design":[106],"against":[110],"attacks,":[112],"also":[114],"offer":[115],"a":[116],"general":[117],"methodology":[118],"hidden":[122],"correlation":[123],"between":[124],"other":[129],"risks.":[131]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":3},{"year":2023,"cited_by_count":2}],"updated_date":"2026-04-16T08:26:57.006410","created_date":"2025-10-10T00:00:00"}