{"id":"https://openalex.org/W7161935321","doi":"https://doi.org/10.48550/arxiv.2605.21378","title":"Auditing Apple's DifferentialPrivacy.framework: Implementation Bugs, Misconfigurations, and Practical Risks","display_name":"Auditing Apple's DifferentialPrivacy.framework: Implementation Bugs, Misconfigurations, and Practical Risks","publication_year":2026,"publication_date":"2026-05-20","ids":{"openalex":"https://openalex.org/W7161935321","doi":"https://doi.org/10.48550/arxiv.2605.21378"},"language":null,"primary_location":{"id":"doi:10.48550/arxiv.2605.21378","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.21378","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"type":"preprint","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://doi.org/10.48550/arxiv.2605.21378","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5049298311","display_name":"Rishav Chourasia","orcid":"https://orcid.org/0000-0001-7975-0530"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Chourasia, Rishav","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5089624047","display_name":"Ergute Bao","orcid":"https://orcid.org/0000-0002-4438-8065"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Bao, Ergute","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5006869006","display_name":"Uzair Javaid","orcid":"https://orcid.org/0000-0001-6184-2867"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Javaid, Uzair","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5136395842","display_name":"Xiaokui Xiao","orcid":"https://orcid.org/0000-0003-0914-4580"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Xiao, Xiaokui","raw_affiliation_strings":[],"raw_orcid":null,"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":null,"has_fulltext":false,"cited_by_count":0,"citation_normalized_percentile":null,"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.6797000169754028,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.6797000169754028,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.07850000262260437,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.04989999905228615,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/audit","display_name":"Audit","score":0.7961000204086304},{"id":"https://openalex.org/keywords/analytics","display_name":"Analytics","score":0.5121999979019165},{"id":"https://openalex.org/keywords/audit-trail","display_name":"Audit trail","score":0.5087000131607056},{"id":"https://openalex.org/keywords/differential-privacy","display_name":"Differential privacy","score":0.5041000247001648},{"id":"https://openalex.org/keywords/data-collection","display_name":"Data collection","score":0.42719998955726624},{"id":"https://openalex.org/keywords/noise","display_name":"Noise (video)","score":0.33649998903274536}],"concepts":[{"id":"https://openalex.org/C199521495","wikidata":"https://www.wikidata.org/wiki/Q181487","display_name":"Audit","level":2,"score":0.7961000204086304},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6697999835014343},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5590999722480774},{"id":"https://openalex.org/C79158427","wikidata":"https://www.wikidata.org/wiki/Q485396","display_name":"Analytics","level":2,"score":0.5121999979019165},{"id":"https://openalex.org/C80958533","wikidata":"https://www.wikidata.org/wiki/Q1047174","display_name":"Audit trail","level":3,"score":0.5087000131607056},{"id":"https://openalex.org/C23130292","wikidata":"https://www.wikidata.org/wiki/Q5275358","display_name":"Differential privacy","level":2,"score":0.5041000247001648},{"id":"https://openalex.org/C133462117","wikidata":"https://www.wikidata.org/wiki/Q4929239","display_name":"Data collection","level":2,"score":0.42719998955726624},{"id":"https://openalex.org/C99498987","wikidata":"https://www.wikidata.org/wiki/Q2210247","display_name":"Noise (video)","level":3,"score":0.33649998903274536},{"id":"https://openalex.org/C108827166","wikidata":"https://www.wikidata.org/wiki/Q175975","display_name":"Internet privacy","level":1,"score":0.32899999618530273},{"id":"https://openalex.org/C77088390","wikidata":"https://www.wikidata.org/wiki/Q8513","display_name":"Database","level":1,"score":0.3208000063896179},{"id":"https://openalex.org/C123201435","wikidata":"https://www.wikidata.org/wiki/Q456632","display_name":"Information privacy","level":2,"score":0.3082999885082245},{"id":"https://openalex.org/C2778775528","wikidata":"https://www.wikidata.org/wiki/Q5135432","display_name":"Closing (real estate)","level":2,"score":0.3059000074863434},{"id":"https://openalex.org/C175801342","wikidata":"https://www.wikidata.org/wiki/Q1988917","display_name":"Data analysis","level":2,"score":0.2930000126361847},{"id":"https://openalex.org/C93518851","wikidata":"https://www.wikidata.org/wiki/Q180160","display_name":"Metadata","level":2,"score":0.28459998965263367},{"id":"https://openalex.org/C2777267654","wikidata":"https://www.wikidata.org/wiki/Q3519023","display_name":"Test (biology)","level":2,"score":0.26109999418258667},{"id":"https://openalex.org/C33762810","wikidata":"https://www.wikidata.org/wiki/Q461671","display_name":"Data integrity","level":2,"score":0.25940001010894775}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.48550/arxiv.2605.21378","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.21378","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":"article"}],"best_oa_location":{"id":"doi:10.48550/arxiv.2605.21378","is_oa":true,"landing_page_url":"https://doi.org/10.48550/arxiv.2605.21378","pdf_url":null,"source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"article"},"sustainable_development_goals":[{"id":"https://metadata.un.org/sdg/16","display_name":"Peace, Justice and strong institutions","score":0.4111349284648895}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Since":[0],"2016,":[1],"Apple":[2,44],"has":[3,45],"claimed":[4],"that":[5,88,132,205],"device":[6],"analytics":[7],"collected":[8],"to":[9,57,138,148,167,172,209],"improve":[10],"user":[11],"experience":[12],"are":[13],"protected":[14],"by":[15],"differential":[16],"privacy":[17,52,101],"(DP).":[18],"Apple's":[19,66,90],"DifferentialPrivacy":[20],"framework":[21,68],"is":[22],"deployed":[23,91,109],"across":[24],"its":[25,48,140],"operating":[26],"systems":[27],"and":[28,40,73,93,118,127,194,216],"handles":[29],"sensitive":[30],"signals":[31],"such":[32],"as":[33],"Safari":[34,214],"domains,":[35],"keyboard":[36,217],"events,":[37],"photo":[38],"attributes,":[39],"health-related":[41],"reports.":[42],"Because":[43],"not":[46],"open-sourced":[47],"privatization":[49],"algorithms,":[50],"these":[51],"claims":[53],"have":[54],"been":[55],"difficult":[56],"verify":[58],"independently.":[59],"We":[60,76,122,155,198],"present":[61],"a":[62],"client-side":[63],"audit":[64,104],"of":[65,182,188],"DP":[67,142,162,178],"on":[69,134],"macOS":[70,192],"Sonoma":[71,193],"14.2":[72],"Sequoia":[74],"15.6.":[75],"reverse":[77],"engineer":[78],"the":[79,99],"shipped":[80],"binaries,":[81],"recover":[82,210],"Objective-C":[83],"interfaces,":[84],"build":[85],"runtime":[86],"harnesses":[87],"execute":[89],"mechanisms,":[92,110,117,185],"test":[94],"whether":[95],"their":[96],"outputs":[97],"match":[98],"advertised":[100,141],"guarantees.":[102],"Our":[103],"covers":[105],"nearly":[106],"all":[107],"active":[108],"including":[111,213],"Count":[112],"Median":[113],"Sketch,":[114],"Hadamard-CMS,":[115],"randomized-response":[116],"Prio-style":[119],"secure":[120],"aggregation.":[121],"find":[123,157,177],"multiple":[124],"implementation":[125],"bugs":[126],"misconfigurations.":[128],"Every":[129],"audited":[130,184],"mechanism":[131],"relies":[133],"floating-point":[135,153],"noise":[136],"fails":[137],"meet":[139],"or":[143],"zero-knowledge":[144],"proof":[145],"guarantee,":[146],"due":[147],"insecure":[149],"samplers":[150],"with":[151,160,170],"known":[152],"vulnerabilities.":[154],"also":[156,199],"secure-aggregation":[158],"configurations":[159],"local":[161],"disabled,":[163],"exposing":[164],"pre-aggregation":[165],"records":[166],"any":[168],"party":[169],"access":[171],"those":[173],"logs.":[174],"Overall,":[175],"we":[176],"violations":[179],"in":[180,191,196],"5":[181],"9":[183],"affecting":[186],"87%":[187],"data":[189],"collection":[190],"68%":[195],"Sequoia.":[197],"identify":[200],"public":[201],"leaked":[202],"iPhone":[203],"logs":[204],"can":[206],"be":[207],"decoded":[208],"private":[211],"information,":[212],"domains":[215],"emoji":[218],"signals.":[219]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-05-22T00:00:00"}