database privacy research stanford an overview
play

Database Privacy Research @Stanford --- An Overview Krishnaram - PowerPoint PPT Presentation

Apr 17, 2023 •14 likes •224 views

Database Privacy Research @Stanford --- An Overview Krishnaram Kenthapadi kngk@cs.stanford.edu Hector Garcia-Molina, Rajeev Motwani G. Aggarwal, M. Bawa, C. Dwork, P. Ganesan, E-J. Goh, N. Mishra, S. Nabar, U. Srivastava, D. Thomas, Y. Xu

  1. Database Privacy Research @Stanford --- An Overview Krishnaram Kenthapadi kngk@cs.stanford.edu Hector Garcia-Molina, Rajeev Motwani G. Aggarwal, M. Bawa, C. Dwork, P. Ganesan, E-J. Goh, N. Mishra, S. Nabar, U. Srivastava, D. Thomas, Y. Xu

  2. Private Information Management � Individual centric privacy � Search over access-controlled data � Aggregates on vertically-partitioned databases � Approximations for k-anonymity Krishnaram Kent hapadi 2 DI MACS Working Group, 17 Mar 2004

  3. Private Information Management � Individual centric privacy � Search over access-controlled data � Aggregates on vertically-partitioned databases � Approximations for k-anonymity � Secure indexes � Secure quantile computation � … Krishnaram Kent hapadi 3 DI MACS Working Group, 17 Mar 2004

  4. Individual Centric Privacy (P4P: Paranoid Platform for Privacy Preferences) [ABG+04] Krishnaram Kent hapadi 4 DI MACS Working Group, 17 Mar 2004

  5. Managing Personal Information � Status � P3P: organization declares privacy policies � Hippocratic DB: organization’s datastore implements policies � Critique � Individual must trust each organization � Ex of misuse: Acxiom, JetBlue, Northwest,… Krishnaram Kent hapadi 5 DI MACS Working Group, 17 Mar 2004

  6. Managing Personal Information � Thesis � Enable an individual to retain “control” over his/her information, even after it has been released to an organization � Plan � Design models and mechanisms for release, acquisition, use and update of personal information ( the P4P framework ) Krishnaram Kent hapadi 6 DI MACS Working Group, 17 Mar 2004

  7. Example: Managing Credit Card Credit Card Number CafeDay George Control: [a] Permission, [b] No copies, [c] No Integration, … Krishnaram Kent hapadi 7 DI MACS Working Group, 17 Mar 2004

  8. Information Types � Ownership � Individual, Organization � Function � Identifier, Service Handle, Input to Predicate, Copy � Control � Complete Privacy, Limited Use, No Predicate Input, No Integration, Accountable, Sharable Goal: Mechanisms for each information type to enforce desired properties Krishnaram Kent hapadi 8 DI MACS Working Group, 17 Mar 2004

  9. Search over access-controlled data (PPI: Privacy-Preserving Indexing) [BBA03] Krishnaram Kent hapadi 9 DI MACS Working Group, 17 Mar 2004

  10. Provider � Shares documents � Enforces access policy P1 P2 P3 P32 P2026 Alzheimer’s Disease (Alice, Bob) AIDS (Alice) … P1 Small-Pox (Alice, Bob, Lisa) Krishnaram Kent hapadi 10 DI MACS Working Group, 17 Mar 2004

  11. Searcher � Has an identity � Wants documents P1 P2 P3 � That match a keyword query Q; and � With appropriate access- P32 P2026 rights Q = “AIDS” Alice Krishnaram Kent hapadi 11 DI MACS Working Group, 17 Mar 2004

  12. Search Engine � Engine not trusted by providers: � Providers do not want to P1 P2 P3 send documents to search engine P32 P2026 � Providers do not want to reveal access-lists to search engine Search Engine How do we enable Q = “AIDS” search? Alice Krishnaram Kent hapadi 12 DI MACS Working Group, 17 Mar 2004

  13. Aggregates on vertically-partitioned databases [AST04] Krishnaram Kent hapadi 13 DI MACS Working Group, 17 Mar 2004

  14. Vertically-Partitioned Databases Name State Sex Name Salary Age John NJ M John 120K 35 Alice NJ F Alice 80K 22 Mary CA F Mary 100K 26 Tom CA M Tom 200K 72 Census Bureau Dept. of HRD A: Q: Select State, Avg(Salary) State Salary Where Census.Name = HRD.Name NJ 100K From Census, HRD Groupby State CA 150K Krishnaram Kent hapadi 14 DI MACS Working Group, 17 Mar 2004

  15. Vertically-Partitioned Databases � Privacy concerns � Databases cannot be released as-is � Databases can be released after data has been perturbed Goal: Return high precision aggregate answers Krishnaram Kent hapadi 15 DI MACS Working Group, 17 Mar 2004

  16. Approximations for k-anonymity [AFK+04] Krishnaram Kent hapadi 16 DI MACS Working Group, 17 Mar 2004

  17. k-anonymity SSN Name Age Sex Zip Symptom 614 Joe 23 M 94305 Flu 615 Alice 32 F 94301 Flu 629 Jen 18 F 95102 Cold 710 Kate 22 F 95103 Rashes 840 Eve 20 F 95103 Cold Krishnaram Kent hapadi 17 DI MACS Working Group, 17 Mar 2004

  18. k-anonymity: suppress keys Age Sex Zip Symptom 23 M 94305 Flu 32 F 94301 Flu 18 F 95102 Cold 22 F 95103 Rashes 20 F 95103 Cold Krishnaram Kent hapadi 18 DI MACS Working Group, 17 Mar 2004

  19. k-anonymity: generalize attributes Age Sex Zip Symptom [20-35] * 9430* Flu [20-35] * 9430* Flu k = 2 [15-25] F 9510* * [15-25] F 9510* * [15-25] F 9510* * Krishnaram Kent hapadi 19 DI MACS Working Group, 17 Mar 2004

  20. k-anonymity – work in progress � [MW04] � NP-hardness � O(k log k) - approximation algorithm � O(k) - approximation algorithm Krishnaram Kent hapadi 20 DI MACS Working Group, 17 Mar 2004

  21. References http://theory.stanford.edu/~rajeev/privacy.html � [ABG+04]: Stanford Database Privacy Group . Enabling privacy for the paranoids. � [BBA03]: Bawa, Bayardo Jr., Agrawal . Privacy-preserving indexing of documents on the network. � [AST04]: Agrawal, Srikant, Thomas . Privacy preserving OLAP. � [AFK+04]: Aggarwal, Feder, Kenthapadi, Motwani, Panigrahy, Thomas, Zhu . k-anonymity: Hardness and approximation results. � [AMP04]: Aggarwal, Mishra, Pinkas. Privacy-preserving computation of the k th -ranked element. � [Goh03]: Goh . Secure indexes. Krishnaram Kent hapadi 21 DI MACS Working Group, 17 Mar 2004

Recommend

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy -

CISPA Center for IT Security, Privacy and Accountabiltiy Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when,

573 views • 26 slides
Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals,

Introduction to Cybersecurity Database Privacy Review: Anonymity vs. Privacy Privacy - Privacy is the claim of individuals, groups, or institutions to determine for themselves when, how, and to what extent information about them is

1.01k views • 76 slides
Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics

Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics

ECE598NB Privacy Enhancing Technologies Spring 2006 Outline Privacy Overview Course Topics Course Structure Privacy Define privacy Privacy History Privacy has always existed Cities / large populations have made

173 views • 14 slides
ONLINE PRIVACY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Some of the

ONLINE PRIVACY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Some of the

ONLINE PRIVACY Ben Livshits, Microsoft Research Overview of Todays Lecture 2 Some of the current Ad ecosystem and problems in online user targeting privacy Solutions for tracking Tracking mechanisms prevention Cookies

737 views • 52 slides
Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on

Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on

Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on Avoiding Threats May 28, 2015 Malcolm Townsend, IT Research Analyst Overview Background Trends Threat landscape Privacy regulatory

102 views • 8 slides
Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues

Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues

Simone Fischer-Hbner Privacy October 2006 Overview I. Definition II. Basic Privacy Principles III. Privacy Issues (LBS, RFID,...) IV. European Privacy Legislation/ Directives I. Definition Warren & Brandeis 1890 The right to

694 views • 30 slides
Research Overview Big Data Large Structured into multiple vertical Database of application

Research Overview Big Data Large Structured into multiple vertical Database of application

To create the largest structured domain object database in Asia for rapid & rich mobile search Research Overview Big Data Large Structured into multiple vertical Database of application domains (structured) Media Objects For machine

400 views • 11 slides
Medical Privacy and Business Process Design John C Mitchell Stanford Motivating examples

Medical Privacy and Business Process Design John C Mitchell Stanford Motivating examples

Stanford Computer Forum March 17, 2008 Medical Privacy and Business Process Design John C Mitchell Stanford Motivating examples Vanderbilt Hospital Patient Portal Messaging system that route requests, responses Workflow: patient

389 views • 37 slides
Would that it were so simple: Yet another theory of privacy John Mitchell (Stanford) Avradip

Would that it were so simple: Yet another theory of privacy John Mitchell (Stanford) Avradip

Would that it were so simple: Yet another theory of privacy John Mitchell (Stanford) Avradip Mandal, Hart Montgomery, Arnab Roy (Fujitsu) It seems Allegras a noshow, which is simply a bore, but Ill partner you in bridge. 2 Would

553 views • 26 slides
Express: Lowering the Cost of Metadata-hiding Communication with Cryptographic Privacy Saba

Express: Lowering the Cost of Metadata-hiding Communication with Cryptographic Privacy Saba

Express: Lowering the Cost of Metadata-hiding Communication with Cryptographic Privacy Saba Eskandarian, Henry Corrigan-Gibbs, Matei Zaharia, Dan Boneh Stanford MIT CSAIL Stanford Stanford Our Story Our Story How to Communicate

1.35k views • 66 slides
ISDA Research Area: Privacy and Ethics ISDA Research Description Understanding the privacy and

ISDA Research Area: Privacy and Ethics ISDA Research Description Understanding the privacy and

5/18/2017 ISDA Research Area: Privacy and Ethics ISDA Research Description Understanding the privacy and ethical issues that derive from potential harmful uses of individual data in the pursuit of security. Adaptation of the existing and the

549 views • 5 slides
Security Control Methods for Statistical Database Li Xiong CS573 Data Privacy and Security

Security Control Methods for Statistical Database Li Xiong CS573 Data Privacy and Security

Security Control Methods for Statistical Database Li Xiong CS573 Data Privacy and Security Statistical Database A statistical database is a database which provides statistics on subsets of records OLAP vs. OLTP Statistics may be

397 views • 37 slides
Research use of network data vs. privacy Overview of Section 222 If an ISP receives customer

Research use of network data vs. privacy Overview of Section 222 If an ISP receives customer

Scott Jordan Department of Computer Science University of California, Irvine Research use of network data vs. privacy Overview of Section 222 If an ISP receives customer propriety information by virtue of its provision of the Broadband

483 views • 6 slides
Privacy Protection Overview Hiroshi Nakagawa The University of Tokyo Overview of Privacy

Privacy Protection Overview Hiroshi Nakagawa The University of Tokyo Overview of Privacy

International Workshop on Spatial and Temporal Modeling from Statistical, Machine Learning and Engineering perspectives:STM2016 23 July 2016 Privacy Protection Overview Hiroshi Nakagawa The University of Tokyo Overview of Privacy Protection

1.35k views • 79 slides
Overview of Database Systems CS3860 - Jay Urbain, PhD Introduction to Database Systems 1 2 UFR

Overview of Database Systems CS3860 - Jay Urbain, PhD Introduction to Database Systems 1 2 UFR

Overview of Database Systems CS3860 - Jay Urbain, PhD Introduction to Database Systems 1 2 UFR Uniform Financial Report (I think) What is a database? 3 What is a database? Collection of data Files, notes, to do list, patient records,

1.13k views • 26 slides
Stanford Microfluidics Microfluidics Lab Lab Stanford Juan G. Santiago Research Examples:

Stanford Microfluidics Microfluidics Lab Lab Stanford Juan G. Santiago Research Examples:

Stanford Microfluidics Microfluidics Lab Lab Stanford Juan G. Santiago Research Examples: Research Examples: Optimized Geometries: Stanford Microfluidics Lab Stanford University microfluidics.stanford.edu Activities: Diagnostics

758 views • 48 slides
Information Systems An Overview of Database Management Temur Kutsia Research Institute for

Information Systems An Overview of Database Management Temur Kutsia Research Institute for

Information Systems An Overview of Database Management Temur Kutsia Research Institute for Symbolic Computation Johannes Kepler University of Linz, Austria kutsia@risc.uni-linz.ac.at Outline Introduction What Are Database Systems? What Is a

850 views • 71 slides
Information Systems An Overview of Database Management Nikolaj Popov Research Institute for

Information Systems An Overview of Database Management Nikolaj Popov Research Institute for

Information Systems An Overview of Database Management Nikolaj Popov Research Institute for Symbolic Computation Johannes Kepler University of Linz, Austria popov@risc.uni-linz.ac.at Outline Introduction What Are Database Systems? What Is a

967 views • 67 slides
Information Systems An Overview of Database Management Temur Kutsia Research Institute for

Information Systems An Overview of Database Management Temur Kutsia Research Institute for

Information Systems An Overview of Database Management Temur Kutsia Research Institute for Symbolic Computation Johannes Kepler University of Linz, Austria kutsia@risc.uni-linz.ac.at Outline Introduction What Are Database Systems? What Is a

1.24k views • 111 slides
Authorization, Security, and Privacy 5DV119 Introduction to Database Management Ume a

Authorization, Security, and Privacy 5DV119 Introduction to Database Management Ume a

Authorization, Security, and Privacy 5DV119 Introduction to Database Management Ume a University Department of Computing Science Stephen J. Hegner hegner@cs.umu.se http://www.cs.umu.se/~hegner Authorization, Security, and Privacy

537 views • 40 slides
CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security

CS573 Data Privacy and Security Data Privacy and Security in Healthcare Data Privacy and Security in Healthcare Li Xiong Healthcare security and privacy HIPAA overview Research survey on information security and privacy in healthcare

1.05k views • 57 slides
Towards Privacy in Public Databases Shuchi Chawla, Cynthia Dwork, Frank McSherry, Adam Smith,

Towards Privacy in Public Databases Shuchi Chawla, Cynthia Dwork, Frank McSherry, Adam Smith,

Towards Privacy in Public Databases Shuchi Chawla, Cynthia Dwork, Frank McSherry, Adam Smith, Larry Stockmeyer, Hoeteck Wee Work Done at Microsoft Research Database Privacy Think Census - Individuals provide information - Census

254 views • 22 slides
Crowd-Blending Privacy Johannes Gehrke, Michael Hay, Edward Lui, Rafael Pass Cornell University

Crowd-Blending Privacy Johannes Gehrke, Michael Hay, Edward Lui, Rafael Pass Cornell University

Crowd-Blending Privacy Johannes Gehrke, Michael Hay, Edward Lui, Rafael Pass Cornell University Data Privacy Alice Users Bob Jack San . . . Database Jane mechanism Database containing data. E.g., census data, medical records, etc.

437 views • 19 slides
Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR

Privacy & Data Protection Laws Overview and History Introduction to Privacy and the GDPR Simone Fischer-Hbner CC-BY-4.0 Privacy Legislation - History 1950 Art. 8 ECHR: Everyone has the right to respect for his private and family

413 views • 4 slides

More recommend