DP-MGTD: Privacy-Preserving Machine-Generated Text Detection via Adaptive Differentially Private Entity Sanitization

The deployment of Machine-Generated Text (MGT) detection systems necessitates processing sensitive user data, creating a fundamental conflict between authorship verification and privacy preservation. Standard anonymization techniques often disrupt linguistic fluency, while rigorous Differential Privacy (DP) mechanisms typically degrade the statistical signals required for accurate detection. To resolve this dilemma, we propose \textbf{DP-MGTD}, a framework incorporating an Adaptive Differentially Private Entity Sanitization algorithm. Our approach utilizes a two-stage mechanism that performs noisy frequency estimation and dynamically calibrates privacy budgets, applying Laplace and Exponential mechanisms to numerical and textual entities respectively. Crucially, we identify a counter-intuitive phenomenon where the application of DP noise amplifies the distinguishability between human and machine text by exposing distinct sensitivity patterns to perturbation. Extensive experiments on the MGTBench-2.0 dataset show that our method achieves near-perfect detection accuracy, significantly outperforming non-private baselines while satisfying strict privacy guarantees.

Key Contributions

• Adaptive Differentially Private Entity Sanitization algorithm with a two-stage mechanism (noisy frequency estimation + dynamic privacy budget calibration) for privacy-preserving MGT detection
• Counter-intuitive empirical finding that DP noise amplifies distinguishability between human and machine text by exposing differential sensitivity patterns
• Near-perfect MGT detection accuracy on MGTBench-2.0 while satisfying strict DP guarantees, outperforming non-private baselines

🛡️ Threat Analysis

Details

Similar Papers