{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,5,22]],"date-time":"2025-05-22T05:50:47Z","timestamp":1747893047649,"version":"3.40.3"},"publisher-location":"Cham","reference-count":122,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031490989"},{"type":"electronic","value":"9783031490996"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-3-031-49099-6_14","type":"book-chapter","created":{"date-parts":[[2023,12,8]],"date-time":"2023-12-08T06:02:34Z","timestamp":1702015354000},"page":"229-248","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Security and\u00a0Privacy in\u00a0Machine Learning"],"prefix":"10.1007","author":[{"given":"Nishanth","family":"Chandran","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,12,9]]},"reference":[{"key":"14_CR1","doi-asserted-by":"crossref","unstructured":"Abadi, M., et al.: Deep learning with differential privacy. In: Weippl, E.R., Katzenbeisser, S., Kruegel, C., Myers, A.C., Halevi, S. (eds.)Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, Vienna, Austria, 24\u201328 October 2016, pp. 308\u2013318. ACM (2016)","DOI":"10.1145\/2976749.2978318"},{"issue":"1","key":"14_CR2","doi-asserted-by":"publisher","first-page":"167","DOI":"10.2478\/popets-2021-0010","volume":"2021","author":"M Abspoel","year":"2021","unstructured":"Abspoel, M., Escudero, D., Volgushev, N.: Secure training of decision trees with continuous attributes. Proc. Priv. Enhancing Technol. 2021(1), 167\u2013187 (2021)","journal-title":"Proc. Priv. Enhancing Technol."},{"issue":"2","key":"14_CR3","doi-asserted-by":"publisher","first-page":"205","DOI":"10.2478\/popets-2022-0042","volume":"2022","author":"S Adams","year":"2022","unstructured":"Adams, S., et al.: Privacy-preserving training of tree ensembles over continuous data. Proc. Priv. Enhancing Technol. 2022(2), 205\u2013226 (2022)","journal-title":"Proc. Priv. Enhancing Technol."},{"key":"14_CR4","doi-asserted-by":"crossref","unstructured":"Agrawal, N., Shahin Shamsabadi, A., Kusner, M.J., Gasc\u00f3n, A.: QUOTIENT: two-party secure neural network training and prediction. In: CCS (2019)","DOI":"10.1145\/3319535.3339819"},{"key":"14_CR5","unstructured":"Alpaydin, E.: Introduction to Machine Learning (Adaptive Computation and Machine Learning ). MIT Press, Cambridge (2004)"},{"key":"14_CR6","unstructured":"AWS. AWS Nitro Enclaves (2023). https:\/\/aws.amazon.com\/ec2\/nitro\/nitro-enclaves\/"},{"key":"14_CR7","unstructured":"Microsoft Azure. DCasv5 and ECasv5 series confidential VMs (2023). https:\/\/learn.microsoft.com\/en-us\/azure\/confidential-computing\/confidential-vm-overview"},{"key":"14_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"420","DOI":"10.1007\/3-540-46766-1_34","volume-title":"Advances in Cryptology \u2014 CRYPTO \u201991","author":"D Beaver","year":"1992","unstructured":"Beaver, D.: Efficient multiparty protocols using circuit randomization. In: Feigenbaum, J. (ed.) CRYPTO 1991. LNCS, vol. 576, pp. 420\u2013432. Springer, Heidelberg (1992). https:\/\/doi.org\/10.1007\/3-540-46766-1_34"},{"key":"14_CR9","doi-asserted-by":"crossref","unstructured":"Beaver, D., Micali, S., Rogaway, P.: The round complexity of secure protocols (extended abstract). In: Ortiz, H. (ed.) Proceedings of the 22nd Annual ACM Symposium on Theory of Computing, 13\u201317, May 1990, Baltimore, Maryland, USA, pp. 503\u2013513. ACM (1990)","DOI":"10.1145\/100216.100287"},{"key":"14_CR10","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"92","DOI":"10.1007\/bfb0053428","volume-title":"Advances in Cryptology - EUROCRYPT \u201994","author":"M Bellare","year":"1994","unstructured":"Bellare, M., Rogaway, P.: Optimal asymmetric encryption. In: De Santis, A. (ed.) EUROCRYPT 1994. LNCS, vol. 950, pp. 92\u2013111. Springer, Heidelberg (1994). https:\/\/doi.org\/10.1007\/bfb0053428"},{"key":"14_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"500","DOI":"10.1007\/978-3-319-78375-8_17","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2018","author":"F Benhamouda","year":"2018","unstructured":"Benhamouda, F., Lin, H.: k-round multiparty computation from k-round oblivious transfer via garbled interactive circuits. In: Nielsen, J.B., Rijmen, V. (eds.) EUROCRYPT 2018. LNCS, vol. 10821, pp. 500\u2013532. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-78375-8_17"},{"key":"14_CR12","unstructured":"Biggio, B., Nelson, B., Laskov, P.: Poisoning attacks against support vector machines. In: Proceedings of the 29th International Conference on Machine Learning, ICML 2012, Edinburgh, Scotland, UK, June 26 - July 1, 2012. icml.cc\/Omnipress (2012)"},{"key":"14_CR13","doi-asserted-by":"publisher","first-page":"52","DOI":"10.1007\/978-1-4419-5906-5_548","volume-title":"Encyclopedia of Cryptography and Security","author":"J Black","year":"2011","unstructured":"Black, J.: Authenticated encryption. In: van Tilborg, H.C.A., Jajodia, S. (eds.) Encyclopedia of Cryptography and Security, 2nd edn., pp. 52\u201361. Springer, Boston (2011). https:\/\/doi.org\/10.1007\/978-1-4419-5906-5_548","edition":"2"},{"key":"14_CR14","doi-asserted-by":"crossref","unstructured":"Blatt, M., Gusev, A., Polyakov, Y., Rohloff, K., Vaikuntanathan, V.: Optimized homomorphic encryption solution for secure genome-wide association studies. IACR Cryptol. ePrint Arch., p. 223 (2019)","DOI":"10.1186\/s12920-020-0719-9"},{"key":"14_CR15","doi-asserted-by":"crossref","unstructured":"Bonawitz, K.A., et al.: Practical secure aggregation for privacy-preserving machine learning. In: Thuraisingham, B., Evans, D., Malkin, T., Xu, D. (eds.) Proceedings of the 2017 ACM SIGSAC Conference on Computer and Communications Security, CCS 2017, Dallas, TX, USA, October 30 - November 03, 2017, pp. 1175\u20131191. ACM (2017)","DOI":"10.1145\/3133956.3133982"},{"key":"14_CR16","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"565","DOI":"10.1007\/978-3-319-96884-1_19","volume-title":"Advances in Cryptology \u2013 CRYPTO 2018","author":"D Boneh","year":"2018","unstructured":"Boneh, D., et al.: Threshold cryptosystems from threshold fully homomorphic encryption. In: Shacham, H., Boldyreva, A. (eds.) CRYPTO 2018. LNCS, vol. 10991, pp. 565\u2013596. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-96884-1_19"},{"key":"14_CR17","doi-asserted-by":"crossref","unstructured":"Bost, R., Popa, R.A., Tu, S., Goldwasser, S.: Machine learning classification over encrypted data. In: NDSS (2015)","DOI":"10.14722\/ndss.2015.23241"},{"key":"14_CR18","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"871","DOI":"10.1007\/978-3-030-77886-6_30","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2021","author":"E Boyle","year":"2021","unstructured":"Boyle, E., et al.: Function secret sharing for mixed-mode and fixed-point secure computation. In: Canteaut, A., Standaert, F.-X. (eds.) EUROCRYPT 2021. LNCS, vol. 12697, pp. 871\u2013900. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-77886-6_30"},{"key":"14_CR19","doi-asserted-by":"crossref","unstructured":"Boyle, E., et al.: Efficient two-round OT extension and silent non-interactive secure computation. In: CCS (2019)","DOI":"10.1145\/3319535.3354255"},{"key":"14_CR20","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"337","DOI":"10.1007\/978-3-662-46803-6_12","volume-title":"Advances in Cryptology - EUROCRYPT 2015","author":"E Boyle","year":"2015","unstructured":"Boyle, E., Gilboa, N., Ishai, Y.: Function secret sharing. In: Oswald, E., Fischlin, M. (eds.) EUROCRYPT 2015. LNCS, vol. 9057, pp. 337\u2013367. Springer, Heidelberg (2015). https:\/\/doi.org\/10.1007\/978-3-662-46803-6_12"},{"key":"14_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"509","DOI":"10.1007\/978-3-662-53018-4_19","volume-title":"Advances in Cryptology \u2013 CRYPTO 2016","author":"E Boyle","year":"2016","unstructured":"Boyle, E., Gilboa, N., Ishai, Y.: Breaking the circuit size barrier for secure computation under DDH. In: Robshaw, M., Katz, J. (eds.) CRYPTO 2016. LNCS, vol. 9814, pp. 509\u2013539. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53018-4_19"},{"key":"14_CR22","doi-asserted-by":"crossref","unstructured":"Boyle, E., Gilboa, N., Ishai, Y.: Function secret sharing: improvements and extensions. In: CCS (2016)","DOI":"10.1145\/2976749.2978429"},{"key":"14_CR23","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"341","DOI":"10.1007\/978-3-030-36030-6_14","volume-title":"Theory of Cryptography","author":"E Boyle","year":"2019","unstructured":"Boyle, E., Gilboa, N., Ishai, Y.: Secure computation with preprocessing via function secret sharing. In: Hofheinz, D., Rosen, A. (eds.) TCC 2019. LNCS, vol. 11891, pp. 341\u2013371. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-36030-6_14"},{"key":"14_CR24","unstructured":"Brown, T.B., et al.: Language models are few-shot learners. In: Larochelle, H., Ranzato, M., Hadsell, R., Balcan, M.F., Lin, H.T. (eds.) Advances in Neural Information Processing Systems, vol. 33. Annual Conference on Neural Information Processing Systems 2020, NeurIPS 2020, 6\u201312 December 2020, virtual (2020)"},{"key":"14_CR25","unstructured":"Brown, T.B., et al.:. Language models are few-shot learners (2020)"},{"issue":"2","key":"14_CR26","doi-asserted-by":"publisher","first-page":"459","DOI":"10.2478\/popets-2020-0036","volume":"2020","author":"M Byali","year":"2020","unstructured":"Byali, M., Chaudhari, H., Patra, A., Suresh, A.: FLASH: fast and robust framework for privacy-preserving machine learning. Proc. Priv. Enhancing Technol. 2020(2), 459\u2013480 (2020)","journal-title":"Proc. Priv. Enhancing Technol."},{"key":"14_CR27","doi-asserted-by":"publisher","first-page":"143","DOI":"10.1007\/s001459910006","volume":"13","author":"R Canetti","year":"2000","unstructured":"Canetti, R.: Security and composition of multiparty cryptographic protocols. J. Cryptology 13, 143\u2013202 (2000)","journal-title":"J. Cryptology"},{"key":"14_CR28","unstructured":"Chandran, N., Gupta, D., Obbattu, S.L.B., Shah, A.: SIMC: ML inference secure against malicious clients at semi-honest cost. In: USENIX Security Symposium (2022)"},{"key":"14_CR29","doi-asserted-by":"crossref","unstructured":"Chandran, N., Gupta, D., Rastogi, A., Sharma, R., Tripathi, S.: EzPC: programmable and efficient secure two-party computation for machine learning. In:2019 IEEE European Symposium on Security and Privacy (EuroS &P), pp. 496\u2013511 (2019)","DOI":"10.1109\/EuroSP.2019.00043"},{"key":"14_CR30","doi-asserted-by":"crossref","unstructured":"Chen, M.X., et al.: Gmail smart compose: real-time assisted writing. In: Teredesai, A., Kumar, V., Li, Y., Rosales, R., Terzi, E., Karypis, G. (eds.) Proceedings of the 25th ACM SIGKDD International Conference on Knowledge Discovery & Data Mining, KDD 2019, Anchorage, AK, USA, 4\u20138 August 2019, pp. 2287\u20132295. ACM (2019)","DOI":"10.1145\/3292500.3330723"},{"key":"14_CR31","unstructured":"Chen, V., Pastro, V., Raykova, M.: Secure computation for machine learning with SPDZ. In: Workshop on PPML at NeurIPS (2018)"},{"key":"14_CR32","unstructured":"Google Cloud. Confidential Computing concepts (2023). https:\/\/cloud.google.com\/confidential-computing\/confidential-vm\/docs\/about-cvm"},{"key":"14_CR33","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"473","DOI":"10.1007\/978-3-030-17656-3_17","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2019","author":"G Couteau","year":"2019","unstructured":"Couteau, G.: A note on the communication complexity of multiparty computation in the correlated randomness model. In: Ishai, Y., Rijmen, V. (eds.) EUROCRYPT 2019. LNCS, vol. 11477, pp. 473\u2013503. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-17656-3_17"},{"key":"14_CR34","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"769","DOI":"10.1007\/978-3-319-96881-0_26","volume-title":"Advances in Cryptology \u2013 CRYPTO 2018","author":"R Cramer","year":"2018","unstructured":"Cramer, R., Damg\u00e5rd, I., Escudero, D., Scholl, P., Xing, C.: SPD$$\\mathbb{Z}_{2^k}$$: efficient MPC mod $$2^k$$ for dishonest majority. In: Shacham, H., Boldyreva, A. (eds.) CRYPTO 2018. LNCS, vol. 10992, pp. 769\u2013798. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-96881-0_26"},{"issue":"4","key":"14_CR35","doi-asserted-by":"publisher","first-page":"19","DOI":"10.1109\/MSEC.2021.3076443","volume":"19","author":"E De Cristofaro","year":"2021","unstructured":"De Cristofaro, E.: A critical overview of privacy in machine learning. IEEE Secur. Priv. 19(4), 19\u201327 (2021)","journal-title":"IEEE Secur. Priv."},{"key":"14_CR36","series-title":"Information Security and Cryptography","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-60769-5","volume-title":"The Design of Rijndael - The Advanced Encryption Standard (AES)","author":"J Daemen","year":"2020","unstructured":"Daemen, J., Rijmen, V.: The Design of Rijndael - The Advanced Encryption Standard (AES). Information Security and Cryptography, 2nd edn. Springer, Heidelberg (2020). https:\/\/doi.org\/10.1007\/978-3-662-60769-5","edition":"2"},{"key":"14_CR37","doi-asserted-by":"crossref","unstructured":"Dalvi, N., Domingos, P., Mausam, Sanghai, S., Verma, D.: Adversarial classification. In: Kim, W., Kohavi, R., Gehrke, J., DuMouchel, W. (eds.) Proceedings of the Tenth ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, Seattle, Washington, USA, 22\u201325 August 2004, pp. 99\u2013108. ACM (2004)","DOI":"10.1145\/1014052.1014066"},{"key":"14_CR38","doi-asserted-by":"crossref","unstructured":"Damg\u00e5rd, I., Escudero, D., Frederiksen, T., Keller, M., Scholl, P., Volgushev, N.: New primitives for actively-secure MPC over rings with applications to private machine learning. In: 2019 IEEE Symposium on Security and Privacy, SP 2019, San Francisco, CA, USA, 19\u201323 May 2019, pp. 1102\u20131120. IEEE (2019)","DOI":"10.1109\/SP.2019.00078"},{"key":"14_CR39","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"378","DOI":"10.1007\/11535218_23","volume-title":"Advances in Cryptology \u2013 CRYPTO 2005","author":"I Damg\u00e5rd","year":"2005","unstructured":"Damg\u00e5rd, I., Ishai, Y.: Constant-round multiparty computation using a black-box pseudorandom generator. In: Shoup, V. (ed.) CRYPTO 2005. LNCS, vol. 3621, pp. 378\u2013394. Springer, Heidelberg (2005). https:\/\/doi.org\/10.1007\/11535218_23"},{"key":"14_CR40","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"643","DOI":"10.1007\/978-3-642-32009-5_38","volume-title":"Advances in Cryptology \u2013 CRYPTO 2012","author":"I Damg\u00e5rd","year":"2012","unstructured":"Damg\u00e5rd, I., Pastro, V., Smart, N., Zakarias, S.: Multiparty computation from somewhat homomorphic encryption. In: Safavi-Naini, R., Canetti, R. (eds.) CRYPTO 2012. LNCS, vol. 7417, pp. 643\u2013662. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-32009-5_38"},{"key":"14_CR41","doi-asserted-by":"crossref","unstructured":"Dathathri, R., et al.: CHET: an optimizing compiler for fully-homomorphic neural-network inferencing. In: PLDI (2019)","DOI":"10.1145\/3314221.3314628"},{"key":"14_CR42","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"179","DOI":"10.1007\/978-3-662-45472-5_12","volume-title":"Financial Cryptography and Data Security","author":"S de Hoogh","year":"2014","unstructured":"de Hoogh, S., Schoenmakers, B., Chen, P., op den Akker, H.: Practical secure decision tree learning in a teletreatment application. In: Christin, N., Safavi-Naini, R. (eds.) FC 2014. LNCS, vol. 8437, pp. 179\u2013194. Springer, Heidelberg (2014). https:\/\/doi.org\/10.1007\/978-3-662-45472-5_12"},{"key":"14_CR43","doi-asserted-by":"crossref","unstructured":"Demmler, D., Schneider, T., Zohner, M.: ABY-a framework for efficient mixed-protocol secure two-party computation. In: NDSS (2015)","DOI":"10.14722\/ndss.2015.23113"},{"key":"14_CR44","doi-asserted-by":"crossref","unstructured":"Deng, J., Dong, W., Socher, R., Li, L.-J., Li, K., Fei-Fei, L.: ImageNet: a large-scale hierarchical image database. In: CVPR (2009)","DOI":"10.1109\/CVPR.2009.5206848"},{"issue":"6","key":"14_CR45","doi-asserted-by":"publisher","first-page":"141","DOI":"10.1109\/MSP.2012.2211477","volume":"29","author":"L Deng","year":"2012","unstructured":"Deng, L.: The MNIST database of handwritten digit images for machine learning research. IEEE Signal Process. Mag. 29(6), 141\u2013142 (2012)","journal-title":"IEEE Signal Process. Mag."},{"key":"14_CR46","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-030-41068-1","volume-title":"Machine Learning in Finance","author":"MF Dixon","year":"2020","unstructured":"Dixon, M.F., Halperin, I., Bilokon, P.: Machine Learning in Finance. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-41068-1"},{"issue":"3","key":"14_CR47","first-page":"552","volume":"105","author":"N Dowlin","year":"2017","unstructured":"Dowlin, N., Gilad-Bachrach, R., Laine, K., Lauter, K.E., Naehrig, M., Wernsing, J.: Manual for using homomorphic encryption for bioinformatics. Proc. IEEE 105(3), 552\u2013567 (2017)","journal-title":"Proc. IEEE"},{"key":"14_CR48","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"265","DOI":"10.1007\/11681878_14","volume-title":"Theory of Cryptography","author":"C Dwork","year":"2006","unstructured":"Dwork, C., McSherry, F., Nissim, K., Smith, A.: Calibrating noise to sensitivity in private data analysis. In: Halevi, S., Rabin, T. (eds.) TCC 2006. LNCS, vol. 3876, pp. 265\u2013284. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11681878_14"},{"key":"14_CR49","unstructured":"European Commission. Regulation (EU) 2016\/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95\/46\/EC (General Data Protection Regulation) (Text with EEA relevance) (2016)"},{"key":"14_CR50","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"468","DOI":"10.1007\/978-3-319-78375-8_16","volume-title":"Advances in Cryptology \u2013 EUROCRYPT 2018","author":"S Garg","year":"2018","unstructured":"Garg, S., Srinivasan, A.: Two-round multiparty secure computation from minimal assumptions. In: Nielsen, J.B., Rijmen, V. (eds.) EUROCRYPT 2018. LNCS, vol. 10821, pp. 468\u2013499. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-78375-8_16"},{"key":"14_CR51","unstructured":"Gazette of India. The digital personal data protection act (2023)"},{"key":"14_CR52","doi-asserted-by":"crossref","unstructured":"Gentry, C.: Fully homomorphic encryption using ideal lattices. In: Mitzenmacher, M. (ed.) Proceedings of the 41st Annual ACM Symposium on Theory of Computing, STOC 2009, Bethesda, MD, USA, May 31 - June 2, 2009, pp. 169\u2013178. ACM (2009)","DOI":"10.1145\/1536414.1536440"},{"key":"14_CR53","doi-asserted-by":"crossref","unstructured":"Geva, R., et al.: Collaborative privacy-preserving analysis of oncological data using multiparty homomorphic encryption. In: IACR Cryptol. ePrint Arch., p. 1203 (2023)","DOI":"10.1073\/pnas.2304415120"},{"key":"14_CR54","unstructured":"Gilad-Bachrach, R., Dowlin, N., Laine, K., Lauter, K., Naehrig, M., Wernsing, J.: CryptoNets: applying neural networks to encrypted data with high throughput and accuracy. In: Balcan, M.F., Weinberger, K.Q. (ed.) ICML (2016)"},{"key":"14_CR55","doi-asserted-by":"publisher","first-page":"5","DOI":"10.1145\/103162.103163","volume":"23","author":"D Goldberg","year":"1991","unstructured":"Goldberg, D.: What every computer scientist should know about floating-point arithmetic. ACM Comput. Surv. 23, 5\u201348 (1991)","journal-title":"ACM Comput. Surv."},{"key":"14_CR56","unstructured":"Goldreich, O.: The Foundations of Cryptography - Volume 2: Basic Applications. Cambridge University Press, Cambridge (2004)"},{"key":"14_CR57","doi-asserted-by":"crossref","unstructured":"Goldreich, O., Micali, S., Wigderson, A.: How to play any mental game or a completeness theorem for protocols with honest majority. In: STOC (1987)","DOI":"10.1145\/28395.28420"},{"issue":"3","key":"14_CR58","doi-asserted-by":"publisher","first-page":"431","DOI":"10.1145\/233551.233553","volume":"43","author":"O Goldreich","year":"1996","unstructured":"Goldreich, O., Ostrovsky, R.: Software protection and simulation on oblivious rams. J. ACM 43(3), 431\u2013473 (1996)","journal-title":"J. ACM"},{"key":"14_CR59","unstructured":"Gupta, K., et al.:. SIGMA: secure GPT inference with function secret sharing. Cryptology ePrint Archive, Paper 2023\/1269 (2023). https:\/\/eprint.iacr.org\/2023\/1269"},{"key":"14_CR60","doi-asserted-by":"crossref","unstructured":"Gupta, K., Kumaraswamy, D., Chandran, N., Gupta, D.: Llama: a low latency math library for secure inference. In: PETS (2022)","DOI":"10.56553\/popets-2022-0109"},{"key":"14_CR61","doi-asserted-by":"crossref","unstructured":"Habehh, H., Gohel, S.: Machine learning in healthcare. 22(4), 291\u2013300 (2021)","DOI":"10.2174\/1389202922666210705124359"},{"issue":"1","key":"14_CR62","doi-asserted-by":"publisher","first-page":"343","DOI":"10.56553\/popets-2023-0021","volume":"2023","author":"K Hamada","year":"2023","unstructured":"Hamada, K., Ikarashi, D., Kikuchi, R., Chida, K.: Efficient decision tree training with new data structure for secure multi-party computation. Proc. Priv. Enhancing Technol. 2023(1), 343\u2013364 (2023)","journal-title":"Proc. Priv. Enhancing Technol."},{"key":"14_CR63","unstructured":"Hao, M., Li, H., Chen, H., Xing, P., Guowen, X., Zhang, T.: Iron: private inference on transformers. In: NeurIPS (2022)"},{"key":"14_CR64","unstructured":"Huang, Z., Lu, W.J., Hong, C., Ding, J.: Cheetah: lean and fast secure two-party deep neural network inference. In: USENIX Security Symposium (2022)"},{"key":"14_CR65","unstructured":"Intel. Intel Software Guard Extensions (2020). https:\/\/www.intel.com\/content\/www\/us\/en\/developer\/tools\/software-guard-extensions\/overview.html"},{"key":"14_CR66","doi-asserted-by":"crossref","unstructured":"Irvin, J., et al.: CheXpert: a large chest radiograph dataset with uncertainty labels and expert comparison. In: The Thirty-Third AAAI Conference on Artificial Intelligence, AAAI 2019, The Thirty-First Innovative Applications of Artificial Intelligence Conference, IAAI 2019, The Ninth AAAI Symposium on Educational Advances in Artificial Intelligence, EAAI 2019, Honolulu, Hawaii, USA, January 27 - February 1, 2019, pp. 590\u2013597. AAAI Press (2019)","DOI":"10.1609\/aaai.v33i01.3301590"},{"key":"14_CR67","doi-asserted-by":"crossref","unstructured":"Jawalkar, N., Gupta, K., Basu, A., Chandran, N., Gupta, D., Sharma, R.: Orca: FSS-based secure training with GPUs. In: IEEE S &P (2024)","DOI":"10.1109\/SP54263.2024.00063"},{"key":"14_CR68","unstructured":"Juvekar, C., Vaikuntanathan, V., Chandrakasan, A.: GAZELLE: a low latency framework for secure neural network inference. In USENIX Security Symposium (2018)"},{"key":"14_CR69","unstructured":"Kelkar, M., Le, P.H., Raykova, M., Seth, K.: Secure poisson regression. In: USENIX Security Symposium (2022)"},{"key":"14_CR70","doi-asserted-by":"crossref","unstructured":"Keller, M.: MP-SPDZ: a versatile framework for multi-party computation. In: CCS (2020)","DOI":"10.1145\/3372297.3417872"},{"key":"14_CR71","unstructured":"Keller, M., Sun, K.: Secure quantized training for deep learning. In: ICML (2022)"},{"key":"14_CR72","doi-asserted-by":"crossref","unstructured":"Kim, M., Lauter, K.E.: Private genome analysis through homomorphic encryption. BMC Med. Inform. Decis. Mak. 15-S(5), 1\u201312 (2015)","DOI":"10.1186\/1472-6947-15-S5-S3"},{"key":"14_CR73","unstructured":"Knott, B., Venkataraman, S., Hannun, A., Sengupta, S., Ibrahim, M., van der Maaten, L.: CrypTen: secure multi-party computation meets machine learning. In: NeurIPS (2021)"},{"key":"14_CR74","unstructured":"Koblitz, A.H., Koblitz, N., Menezes, A.: Elliptic curve cryptography: the serpentine course of a paradigm shift. In: IACR Cryptol. ePrint Arch., p. 390 (2008)"},{"key":"14_CR75","unstructured":"Kone\u010dn\u00fd, J., McMahan, B., Ramage, D.: Federated optimization: distributed optimization beyond the datacenter. CoRR, abs\/1511.03575 (2015)"},{"key":"14_CR76","unstructured":"Koti, N., Pancholi, M., Patra, A., Suresh, A.: SWIFT: super-fast and robust privacy-preserving machine learning. In: USENIX Security Symposium (2021)"},{"key":"14_CR77","doi-asserted-by":"crossref","unstructured":"Kumar, N., Rathee, M., Chandran, N., Gupta, D., Rastogi, A., Sharma, R.: CrypTflow: secure tensorflow inference. In: IEEE S &P (2020)","DOI":"10.1109\/SP40000.2020.00092"},{"key":"14_CR78","unstructured":"Lehmkuhl, R., Mishra, P., Srinivasan, A., Popa, R.A.: Muse: secure inference resilient to malicious clients. In: USENIX Security Symposium (2021)"},{"key":"14_CR79","series-title":"Information Security and Cryptography","doi-asserted-by":"publisher","first-page":"277","DOI":"10.1007\/978-3-319-57048-8_6","volume-title":"Tutorials on the Foundations of Cryptography","author":"Y Lindell","year":"2017","unstructured":"Lindell, Y.: How to simulate it \u2013 a tutorial on the simulation proof technique. In: Tutorials on the Foundations of Cryptography. ISC, pp. 277\u2013346. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-57048-8_6"},{"issue":"3","key":"14_CR80","doi-asserted-by":"publisher","first-page":"177","DOI":"10.1007\/s00145-001-0019-2","volume":"15","author":"Y Lindell","year":"2002","unstructured":"Lindell, Y., Pinkas, B.: Privacy preserving data mining. J. Cryptol. 15(3), 177\u2013206 (2002)","journal-title":"J. Cryptol."},{"key":"14_CR81","doi-asserted-by":"crossref","unstructured":"Liu, J., Juuti, M., Yao, L., Asokan, N.: Oblivious neural network predictions via MiniONN transformations. In: CCS (2017)","DOI":"10.1145\/3133956.3134056"},{"key":"14_CR82","doi-asserted-by":"crossref","unstructured":"Lowd, D., Meek, C.: Adversarial learning. In: Grossman, R., Bayardo, R.J., Bennett, K.P. (eds.) Proceedings of the Eleventh ACM SIGKDD International Conference on Knowledge Discovery and Data Mining, Chicago, Illinois, USA, 21\u201324 August 2005, pp. 641\u2013647. ACM (2005)","DOI":"10.1145\/1081870.1081950"},{"key":"14_CR83","doi-asserted-by":"crossref","unstructured":"Mann, Z.A., Weinert, C., Chabal, D., Bos, J.W.: Towards practical secure neural network inference: the journey so far and the road ahead. In: IACR Cryptol. ePrint Arch., p. 1483 (2022)","DOI":"10.1145\/3628446"},{"key":"14_CR84","doi-asserted-by":"crossref","unstructured":"McSherry, F.: Privacy integrated queries: an extensible platform for privacy-preserving data analysis. In: \u00c7etintemel, U., Zdonik, S.B., Kossmann, D., Tatbul, N. (eds.) Proceedings of the ACM SIGMOD International Conference on Management of Data, SIGMOD 2009, Providence, Rhode Island, USA, June 29 - July 2, 2009, pp. 19\u201330. ACM (2009)","DOI":"10.1145\/1559845.1559850"},{"key":"14_CR85","unstructured":"Mehr, H.: Artificial intelligence for citizen services and government. Harvard Kennedy School (2017)"},{"key":"14_CR86","unstructured":"Microsoft. Azure confidential computing (2023). https:\/\/azure.microsoft.com\/en-in\/solutions\/confidential-compute\/"},{"key":"14_CR87","doi-asserted-by":"crossref","unstructured":"Mishra, P., Lehmkuhl, R., Srinivasan, A., Zheng, W., Popa, R.A.: DELPHI: a cryptographic inference service for neural networks. In: USENIX Security Symposium (2020)","DOI":"10.1145\/3411501.3419418"},{"key":"14_CR88","unstructured":"Mohassel, P., Rindal, P.: $$\\text{ABY}^{3}$$: a mixed protocol framework for machine learning. In: CCS (2018)"},{"key":"14_CR89","doi-asserted-by":"crossref","unstructured":"Mohassel, P., Zhang, Y.: SecureML: a system for scalable privacy-preserving machine learning. In: IEEE S &P (2017)","DOI":"10.1109\/SP.2017.12"},{"key":"14_CR90","doi-asserted-by":"crossref","unstructured":"Muller, J.M., et al.: Handbook of Floating-Point Arithmetic. 2nd edn. Springer, Cham (2018)","DOI":"10.1007\/978-3-319-76526-6"},{"key":"14_CR91","unstructured":"Ohrimenko, O., et al.: Oblivious multi-party machine learning on trusted processors. In: Holz, T., Savage, S. (eds.) 25th USENIX Security Symposium, USENIX Security 16, Austin, TX, USA, 10\u201312 August 2016, pp. 619\u2013636. USENIX Association (2016)"},{"key":"14_CR92","unstructured":"Oldenhof, M., et al.:. Industry-scale orchestrated federated learning for drug discovery. In: Williams, B., Chen, Y., Neville, J. (eds.) Thirty-Seventh AAAI Conference on Artificial Intelligence, AAAI 2023, Thirty-Fifth Conference on Innovative Applications of Artificial Intelligence, IAAI 2023, Thirteenth Symposium on Educational Advances in Artificial Intelligence, EAAI 2023, Washington, DC, USA, 7\u201314 February 2023, pp. 15576\u201315584. AAAI Press (2023)"},{"key":"14_CR93","unstructured":"OpenFHE. OpenFHE (2022). https:\/\/www.openfhe.org\/"},{"key":"14_CR94","doi-asserted-by":"crossref","unstructured":"Papernot, N., McDaniel, P., Sinha, A., Wellman, M.P.: SoK: security and privacy in machine learning. In: 2018 IEEE European Symposium on Security and Privacy, EuroS &P 2018, London, United Kingdom, 24\u201326 April 2018, pp. 399\u2013414. IEEE (2018)","DOI":"10.1109\/EuroSP.2018.00035"},{"key":"14_CR95","unstructured":"Patra, A., Schneider, T., Suresh, A., Yalame, H.: ABY2.0: improved mixed-protocol secure two-party computation. In: USENIX Security Symposium (2021)"},{"key":"14_CR96","doi-asserted-by":"crossref","unstructured":"Patra, A., Suresh, A.: BLAZE: blazing fast privacy-preserving machine learning. In: NDSS (2020)","DOI":"10.14722\/ndss.2020.24202"},{"key":"14_CR97","doi-asserted-by":"publisher","first-page":"1113","DOI":"10.1613\/jair.1.14649","volume":"77","author":"N Ponomareva","year":"2023","unstructured":"Ponomareva, N., et al.: How to DP-FY ML: a practical guide to machine learning with differential privacy. J. Artif. Intell. Res. 77, 1113\u20131201 (2023)","journal-title":"J. Artif. Intell. Res."},{"key":"14_CR98","unstructured":"Rathee, D., Bhattacharya, A., Gupta, D., Sharma, R., Song, D.: Secure floating-point training. In: 32nd USENIX Security Symposium (USENIX Security 23), pp. 6329\u20136346. USENIX Association, Anaheim, CA (2023)"},{"key":"14_CR99","doi-asserted-by":"crossref","unstructured":"Rathee, D., Bhattacharya, A., Sharma, R., Gupta, D., Chandran, N., Rastogi, A.: SecFloat: Accurate floating-point meets secure 2-party computation. In: IEEE S &P (2022)","DOI":"10.1109\/SP46214.2022.9833697"},{"key":"14_CR100","doi-asserted-by":"crossref","unstructured":"Rathee, D., et al.: SIRNN: a math library for secure inference of RNNs. In: IEEE S &P (2021)","DOI":"10.1109\/SP40001.2021.00086"},{"key":"14_CR101","doi-asserted-by":"crossref","unstructured":"Rathee, D., et al.: CrypTFlow2: practical 2-party secure inference. In: CCS (2020)","DOI":"10.1145\/3372297.3417274"},{"key":"14_CR102","doi-asserted-by":"crossref","unstructured":"Rescorla, E.: The transport layer security (TLS) protocol version 1.3. RFC 8446 (2018)","DOI":"10.17487\/RFC8446"},{"key":"14_CR103","unstructured":"Microsoft Research. Privacy preserving machine learning: maintaining confidentiality and preserving trust (2021). https:\/\/shorturl.at\/guFLM"},{"key":"14_CR104","unstructured":"Riazi, M.S., Samragh, M., Chen, H., Laine, K., Lauter, K., Koushanfar, F.: XONN: XNOR-based Oblivious Deep Neural Network Inference. In: USENIX Security (2019)"},{"issue":"2","key":"14_CR105","doi-asserted-by":"publisher","first-page":"120","DOI":"10.1145\/359340.359342","volume":"21","author":"RL Rivest","year":"1978","unstructured":"Rivest, R.L., Shamir, A., Adleman, L.M.: A method for obtaining digital signatures and public-key cryptosystems. Commun. ACM 21(2), 120\u2013126 (1978)","journal-title":"Commun. ACM"},{"issue":"6","key":"14_CR106","doi-asserted-by":"publisher","first-page":"54","DOI":"10.1145\/3453930","volume":"64","author":"M Russinovich","year":"2021","unstructured":"Russinovich, M., et al.: Toward confidential cloud computing. Commun. ACM 64(6), 54\u201361 (2021)","journal-title":"Commun. ACM"},{"key":"14_CR107","doi-asserted-by":"crossref","unstructured":"Ryffel, T., Pointcheval, D., Bach, F.: ARIANN: Low-interaction privacy-preserving deep learning via function secret sharing. In: PETS (2022)","DOI":"10.2478\/popets-2022-0015"},{"key":"14_CR108","unstructured":"Microsoft SEAL (release 4.1) (2023). https:\/\/github.com\/Microsoft\/SEAL. Microsoft Research, Redmond, WA"},{"key":"14_CR109","doi-asserted-by":"crossref","unstructured":"Shokri, R., Stronati, M., Song, C., Shmatikov, V.: Membership inference attacks against machine learning models. In: 2017 IEEE Symposium on Security and Privacy, SP 2017, San Jose, CA, USA, 22\u201326 May 2017, pp. 3\u201318. IEEE Computer Society (2017)","DOI":"10.1109\/SP.2017.41"},{"key":"14_CR110","doi-asserted-by":"crossref","unstructured":"Soin, A., et al.: Multi-institution encrypted medical imaging AI validation without data sharing (2021)","DOI":"10.2139\/ssrn.3942127"},{"key":"14_CR111","unstructured":"Storrier, K., Vadapalli, A., Lyons, A., Henry, R.: Grotto: screaming fast $$(2 + 1)$$-pc for $$\\mathbb{Z} _{2^{n}}$$ via (2, 2)-DPFs. In: CCS (2023)"},{"key":"14_CR112","doi-asserted-by":"crossref","unstructured":"Tan, S., Knott, B., Tian, Y., Wu, D.J.: CryptGPU: fast privacy-preserving machine learning on the GPU. In: IEEE S &P (2021)","DOI":"10.1109\/SP40001.2021.00098"},{"key":"14_CR113","unstructured":"Tram\u00e8r, F., Zhang, F., Juels, A., Reiter, M.K., Ristenpart, T.: Stealing machine learning models via prediction APIs. In: Holz, T., Savage, S. (eds.) 25th USENIX Security Symposium, USENIX Security 16, Austin, TX, USA, 10\u201312 August 2016, pp. 601\u2013618. USENIX Association (2016)"},{"key":"14_CR114","unstructured":"Vaswani, A., et al.: Attention is all you need. In: NeurIPS (2017)"},{"key":"14_CR115","unstructured":"Vaswani, K., et al.: Confidential computing within an AI accelerator. In: Lawall, J., Williams, D. (eds.) 2023 USENIX Annual Technical Conference, USENIX ATC 2023, Boston, MA, USA, 10\u201312 July 2023, pp. 501\u2013518. USENIX Association (2023)"},{"key":"14_CR116","unstructured":"Volos, S., Vaswani, K., Bruno, R.: Graviton: trusted execution environments on GPUs. In: Arpaci-Dusseau, A.C., Voelker, G. (eds.) 13th USENIX Symposium on Operating Systems Design and Implementation, OSDI 2018, Carlsbad, CA, USA, 8\u201310 October 2018, pp. 681\u2013696. USENIX Association (2018)"},{"key":"14_CR117","doi-asserted-by":"crossref","unstructured":"Wagh, S.: Pika: secure computation using function secret sharing over rings. In: PETS (2022)","DOI":"10.56553\/popets-2022-0113"},{"key":"14_CR118","doi-asserted-by":"publisher","first-page":"26","DOI":"10.2478\/popets-2019-0035","volume":"2019","author":"S Wagh","year":"2019","unstructured":"Wagh, S., Gupta, D., Chandran, N.: SecureNN: 3-party secure computation for neural network training. PoPETs 2019, 26\u201349 (2019)","journal-title":"PoPETs"},{"key":"14_CR119","doi-asserted-by":"crossref","unstructured":"Wagh, S., Tople, S., Benhamouda, F., Kushilevitz, E., Mittal, P., Rabin, T.: Falcon: honest-majority maliciously secure framework for private deep learning. In: PoPETs (2021)","DOI":"10.2478\/popets-2021-0011"},{"key":"14_CR120","unstructured":"Watson, J.-L., Wagh, S., Popa, R.A.: Piranha: a GPU platform for secure computation. In: USENIX Security Symposium (2022)"},{"key":"14_CR121","unstructured":"Yang, Y., Hui, B., Yuan, H., Gong, N., Cao, Y.: PrivateFL: accurate, differentially private federated learning via personalized data transformation. In: 32nd USENIX Security Symposium (USENIX Security 23), pp. 1595\u20131612. USENIX Association, Anaheim, CA (2023)"},{"key":"14_CR122","doi-asserted-by":"crossref","unstructured":"Yao, A.: How to generate and exchange secrets (extended abstract). In: FOCS (1986)","DOI":"10.1109\/SFCS.1986.25"}],"container-title":["Lecture Notes in Computer Science","Information Systems Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-49099-6_14","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,11,5]],"date-time":"2024-11-05T16:16:11Z","timestamp":1730823371000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-49099-6_14"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9783031490989","9783031490996"],"references-count":122,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-49099-6_14","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"9 December 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICISS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Information Systems Security","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Raipur","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"India","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"16 December 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"20 December 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"19","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"iciss2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/iciss.isrdc.in\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}