{"id":"https://openalex.org/W7154467102","doi":"https://doi.org/10.48550/arxiv.2604.12713","title":"Modular Verification of Differential Privacy in Probabilistic Higher-Order Separation Logic (Extended Version)","display_name":"Modular Verification of Differential Privacy in Probabilistic Higher-Order Separation Logic (Extended Version)","publication_year":2026,"publication_date":"2026-04-14","ids":{"openalex":"https://openalex.org/W7154467102","doi":"https://doi.org/10.48550/arxiv.2604.12713"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2604.12713","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.12713","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2604.12713","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5012595992","display_name":"Philipp G. Haselwarter","orcid":"https://orcid.org/0000-0003-0198-7751"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Haselwarter, Philipp G.","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5133701732","display_name":"Alejandro Aguirre","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Aguirre, Alejandro","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5075470273","display_name":"Simon Oddershede Gregersen","orcid":"https://orcid.org/0000-0001-6045-5232"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Gregersen, Simon Oddershede","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069949583","display_name":"Kwing Hei Li","orcid":"https://orcid.org/0000-0002-4124-5720"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Li, Kwing Hei","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5073987903","display_name":"Joseph Tassarotti","orcid":"https://orcid.org/0000-0001-5692-3347"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Tassarotti, Joseph","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5055959064","display_name":"Lars Birkedal","orcid":"https://orcid.org/0000-0003-1320-0098"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Birkedal, Lars","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":6,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.3711000084877014,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.3711000084877014,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10764","display_name":"Privacy-Preserving Technologies in Data","score":0.31220000982284546,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.07779999822378159,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/differential-privacy","display_name":"Differential privacy","score":0.8679999709129333},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.5852000117301941},{"id":"https://openalex.org/keywords/separation-logic","display_name":"Separation logic","score":0.5652999877929688},{"id":"https://openalex.org/keywords/modular-design","display_name":"Modular design","score":0.4851999878883362},{"id":"https://openalex.org/keywords/logic-programming","display_name":"Logic programming","score":0.42590001225471497},{"id":"https://openalex.org/keywords/probabilistic-logic","display_name":"Probabilistic logic","score":0.4237000048160553},{"id":"https://openalex.org/keywords/scope","display_name":"Scope (computer science)","score":0.4165000021457672},{"id":"https://openalex.org/keywords/formal-methods","display_name":"Formal methods","score":0.3822000026702881},{"id":"https://openalex.org/keywords/debugging","display_name":"Debugging","score":0.3752000033855438}],"concepts":[{"id":"https://openalex.org/C23130292","wikidata":"https://www.wikidata.org/wiki/Q5275358","display_name":"Differential privacy","level":2,"score":0.8679999709129333},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8159000277519226},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.5852000117301941},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.5737000107765198},{"id":"https://openalex.org/C173856430","wikidata":"https://www.wikidata.org/wiki/Q3257964","display_name":"Separation logic","level":2,"score":0.5652999877929688},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.4893999993801117},{"id":"https://openalex.org/C101468663","wikidata":"https://www.wikidata.org/wiki/Q1620158","display_name":"Modular design","level":2,"score":0.4851999878883362},{"id":"https://openalex.org/C128838566","wikidata":"https://www.wikidata.org/wiki/Q275603","display_name":"Logic programming","level":2,"score":0.42590001225471497},{"id":"https://openalex.org/C49937458","wikidata":"https://www.wikidata.org/wiki/Q2599292","display_name":"Probabilistic logic","level":2,"score":0.4237000048160553},{"id":"https://openalex.org/C2778012447","wikidata":"https://www.wikidata.org/wiki/Q1034415","display_name":"Scope (computer science)","level":2,"score":0.4165000021457672},{"id":"https://openalex.org/C75606506","wikidata":"https://www.wikidata.org/wiki/Q1049183","display_name":"Formal methods","level":2,"score":0.3822000026702881},{"id":"https://openalex.org/C168065819","wikidata":"https://www.wikidata.org/wiki/Q845566","display_name":"Debugging","level":2,"score":0.3752000033855438},{"id":"https://openalex.org/C111498074","wikidata":"https://www.wikidata.org/wiki/Q173326","display_name":"Formal verification","level":2,"score":0.36880001425743103},{"id":"https://openalex.org/C106131492","wikidata":"https://www.wikidata.org/wiki/Q3072260","display_name":"Filter (signal processing)","level":2,"score":0.34860000014305115},{"id":"https://openalex.org/C102993220","wikidata":"https://www.wikidata.org/wiki/Q387196","display_name":"Description logic","level":2,"score":0.34450000524520874},{"id":"https://openalex.org/C93226319","wikidata":"https://www.wikidata.org/wiki/Q193137","display_name":"Differential (mechanical device)","level":2,"score":0.33180001378059387},{"id":"https://openalex.org/C76214141","wikidata":"https://www.wikidata.org/wiki/Q2465506","display_name":"Separation of concerns","level":3,"score":0.3068999946117401},{"id":"https://openalex.org/C2779639559","wikidata":"https://www.wikidata.org/wiki/Q7661178","display_name":"Symbolic execution","level":3,"score":0.3034999966621399},{"id":"https://openalex.org/C519991488","wikidata":"https://www.wikidata.org/wiki/Q28865","display_name":"Python (programming language)","level":2,"score":0.29420000314712524},{"id":"https://openalex.org/C201677973","wikidata":"https://www.wikidata.org/wiki/Q1209840","display_name":"Specification language","level":2,"score":0.28760001063346863},{"id":"https://openalex.org/C19024347","wikidata":"https://www.wikidata.org/wiki/Q211496","display_name":"High-level programming language","level":3,"score":0.2874000072479248},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.28189998865127563},{"id":"https://openalex.org/C62460635","wikidata":"https://www.wikidata.org/wiki/Q5508853","display_name":"Functional verification","level":3,"score":0.28139999508857727},{"id":"https://openalex.org/C110251889","wikidata":"https://www.wikidata.org/wiki/Q1569697","display_name":"Model checking","level":2,"score":0.2775000035762787},{"id":"https://openalex.org/C162319229","wikidata":"https://www.wikidata.org/wiki/Q175263","display_name":"Data structure","level":2,"score":0.2651999890804291},{"id":"https://openalex.org/C164155591","wikidata":"https://www.wikidata.org/wiki/Q2067766","display_name":"Satisfiability modulo theories","level":2,"score":0.2578999996185303}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2604.12713","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.12713","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2604.12713","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2604.12713","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[{"display_name":"Partnerships for the goals","score":0.4031849503517151,"id":"https://metadata.un.org/sdg/17"}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Differential":[0],"privacy":[1,97,132,152,182,197],"is":[2,25],"the":[3,17,37,51,56,66,107,110,123,170,189,201,214,250],"standard":[4],"method":[5],"for":[6,78,94,127,144,151],"privacy-preserving":[7],"data":[8],"analysis.":[9],"The":[10,104],"importance":[11],"of":[12,19,21,53,65,68,106,125,172,180,188,216,238,242],"having":[13],"strong":[14],"guarantees":[15,54,143],"on":[16,33,141,209],"reliability":[18],"implementations":[20,82],"differentially":[22,80],"private":[23,81],"algorithms":[24],"widely":[26],"recognized":[27],"and":[28,40,109,134,165,220,230],"has":[29,91,139],"sparked":[30],"fruitful":[31],"research":[32],"formal":[34],"methods.":[35],"However,":[36],"design":[38],"patterns":[39,120],"language":[41,112],"features":[42],"used":[43,121],"in":[44,84,122,147,154,249],"modern":[45],"DP":[46],"libraries":[47,126],"as":[48,50,99,131,193,195],"well":[49,194],"classes":[52],"that":[55,225],"library":[57,179,204],"designers":[58],"wish":[59],"to":[60,116,212,235],"establish":[61],"often":[62],"fall":[63],"outside":[64],"scope":[67],"previous":[69,137],"verification":[70],"approaches.":[71],"We":[72,168,223],"introduce":[73],"a":[74,100,177,196],"program":[75],"logic":[76,90,102,108,157],"suitable":[77],"verifying":[79],"written":[83,146],"complex,":[85],"general-purpose":[86],"programming":[87,119],"languages.":[88],"Our":[89],"first-class":[92],"support":[93],"reasoning":[95],"about":[96,161],"budgets":[98],"separation":[101],"resource.":[103],"expressiveness":[105],"target":[111],"allow":[113],"our":[114,156,173,210,226,239,243],"approach":[115,174],"handle":[117,213],"common":[118],"implementation":[124],"differential":[128,181],"privacy,":[129],"such":[130],"filters":[133],"caching.":[135],"While":[136],"work":[138],"focused":[140],"developing":[142],"programs":[145],"domain-specific":[148],"languages":[149],"or":[150],"mechanisms":[153],"isolation,":[155],"can":[158],"reason":[159],"modularly":[160],"primitives,":[162],"higher-order":[163,221],"combinators,":[164],"interactive":[166],"algorithms.":[167],"demonstrate":[169,224],"applicability":[171],"by":[175,200,232],"implementing":[176],"verified":[178,248],"mechanisms,":[183],"including":[184],"an":[185],"online":[186],"version":[187],"Sparse":[190],"Vector":[191],"Technique,":[192],"filter":[198],"inspired":[199],"popular":[202],"Python":[203],"OpenDP,":[205],"which":[206],"crucially":[207],"relies":[208],"ability":[211],"combination":[215],"randomization,":[217],"local":[218],"state,":[219],"functions.":[222],"specifications":[227],"are":[228],"general":[229],"reusable":[231],"instantiating":[233],"them":[234],"verify":[236],"clients":[237],"library.":[240],"All":[241],"results":[244],"have":[245],"been":[246],"foundationally":[247],"Rocq":[251],"Prover.":[252]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-04-16T00:00:00"}