pretsa event log sanitization for privacy aware process
play

PRETSA: Event Log Sanitization for Privacy-aware Process Discovery - PowerPoint PPT Presentation

Apr 16, 2023 •466 likes •670 views

PRETSA: Event Log Sanitization for Privacy-aware Process Discovery Stephan A. Fahrenkrog-Petersen, Han van der Aa & Matthias Weidlich Motivation hu-berlin.de/pda 2 Related Work [Sweeney et al., 2002] Process Mining [Monreale et

  1. PRETSA: 
 Event Log Sanitization for Privacy-aware Process Discovery Stephan A. Fahrenkrog-Petersen, Han van der Aa & Matthias Weidlich

  2. Motivation hu-berlin.de/pda � 2

  3. Related Work [Sweeney et al., 2002] Process Mining [Monreale et al., 2014] Sanitized 
 Process Mining 
 Event Log 
 Sanitization Event Data Artifact Data Contribution Privatized Process Mining Data Extraction Process Mining 
 Individual Information System Event Data Artifact [Mannhardt et al., 2019] hu-berlin.de/pda � 3

  4. Research Problem • Use Case: Process Discovery with performance data • Privacy Issue: Surveillance of individual process workers 
 —> Illegal e.g. in Germany • Preserve as much utility as possible hu-berlin.de/pda � 4

  5. Attack Model • Trace Linkage Attack • Link trace with background knowledge • Identity Disclosure • Membership Disclosure • Attribute Disclosure hu-berlin.de/pda � 5

  6. Background: k-anonymity hu-berlin.de/pda � 6

  7. Background: t-closeness • Extension of k-anonymity • Limiting di ff erence in global and local distribution • Earth Mover’s Distance as measure hu-berlin.de/pda � 7

  8. PRETSA: PREfix-Tree based event log SAnitization Process Discovery PRETSA Event Log Process Model 
 Event Log 
 with 
 with 
 Performance Data k-anonymity 
 & 
 t-closeness hu-berlin.de/pda � 8

  9. PRETSA - Walkthrough Sequence variant # create po , update po , receive gd , check in , pay in 10 σ 1 create po , update po , receive gd , check in , reject in 5 σ 2 create po , receive gd , update po , check in , pay in 7 σ 3 create po , receive gd , update po , check in , reject in 5 σ 4 create po , receive gd , update po , update po , check in , pay in 1 σ 5 • Example with an Order-to-Cash process • Assume k=8 hu-berlin.de/pda � 9

  10. PRETSA - Prefix tree Root create_po (28) update_po (15) receive_gd (13) • PRETSA generates a prefix tree from an event update_po (13) receive_gd (15) log update_po (1) check_in (12) • Each node in the tree is check_in (15) check_in (1) an equivalence class reject_in 
 pay_in (7) (5) pay_in (10) pay_in (1) reject_in (5) hu-berlin.de/pda � 10

  11. PRETSA - Walkthrough Root k=8 create_po (28) update_po (15) receive_gd (13) • Go through the tree until update_po (13) receive_gd (15) violation is found update_po (1) check_in (12) check_in (15) check_in (1) reject_in 
 pay_in (7) (5) pay_in (10) pay_in (1) reject_in (5) hu-berlin.de/pda � 11

  12. PRETSA - Walkthrough Root k=8 create_po (28) update_po (15) receive_gd (13) • PRETSA deleted the branch with violation update_po (13) receive_gd (15) • Move the traces into update_po (1) check_in (12) most similar branch check_in (15) check_in (1) reject_in 
 pay_in (7) (5) pay_in (15) pay_in (1) hu-berlin.de/pda � 12

  13. PRETSA - Result Root k=8 create_po (28) update_po (15) receive_gd (13) • Resulting tree receive_gd (15) update_po (13) check_in (15) check_in (13) pay_in (15) pay_in (13) hu-berlin.de/pda � 13

  14. Evaluation Setup • Utility benefit? • PRETSA vs. Baseline • Datasets: Tra ffi c fines, Sepsis & CoSeLog hu-berlin.de/pda � 14

  15. Experimental Setup • Compare… • …generated event logs —> Nr. Variants • …fitness/precision of process models • …performance annotations relative error hu-berlin.de/pda � 15

  16. Utility Evaluation - Baseline Sequence variant # create po , update po , receive gd , check in , pay in 10 σ 1 create po , update po , receive gd , check in , reject in 5 σ 2 create po , receive gd , update po , check in , pay in 7 σ 3 create po , receive gd , update po , check in , reject in 5 σ 4 create po , receive gd , update po , update po , check in , pay in 1 σ 5 • Only release variants that fulfill: • k-anonymity • t-closeness • Delete all other variants hu-berlin.de/pda � 16

  17. Evaluation - Event Logs hu-berlin.de/pda � 17

  18. Evaluation - Process Models hu-berlin.de/pda � 18

  19. Evaluation - Perfomance Annotations hu-berlin.de/pda � 19

  20. PRETSA… …ensures privacy (k-anonymity & t-closeness) for event logs …uses a prefix tree representation of the event log …provides event logs with high utility for process discovery …is available on GitHub under MIT license: 
 github.com/samadeusfp/PRETSA Questions? Reach out to fahrenks@hu-berlin.de hu-berlin.de/pda � 20

Recommend

Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by

Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by

Privacy by Design Principles of Privacy-Aware Ubiquitous Systems Marc Langheinrich Privacy by Design ETH Zurich, Switzerland www.inf.ethz.ch/~langhein Ubicomp 2001, Atlanta Contents Ubicomp 2001, Atlanta ! Privacy primer Does privacy

680 views • 22 slides
Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo

Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo

Security and Privacy-Aware Cyber-Physical Systems: Legal Considerations Christopher S. Yoo University of Pennsylvania July 12, 2018 Overview of Research Tort and products liability for CPS Privacy and cybersecurity regulation NHTSA

472 views • 25 slides
to Enable Privacy-aware SOA L. Bussard European Microsoft Innovation Center (joint work with M.

to Enable Privacy-aware SOA L. Bussard European Microsoft Innovation Center (joint work with M.

Data Privacy Management (DPM09) September 24, 2009 Obligation Language and Framework to Enable Privacy-aware SOA L. Bussard European Microsoft Innovation Center (joint work with M. Ali and U. Pinsdorf) A research project funded by the

394 views • 23 slides
Designing Privacy-Aware Social Networks: A Mul:-Agent Approach

Designing Privacy-Aware Social Networks: A Mul:-Agent Approach

4th workshop on Web Intelligence & Communities, Lyon, 16th April 2012 Designing Privacy-Aware Social Networks: A Mul:-Agent Approach Andrei Ciortea 1 , Yann Krupa 2 , Laurent

630 views • 21 slides
Privacy-Aware Machine Learning Systems Borja Balle Data is the New Oil The Economist, May 2017

Privacy-Aware Machine Learning Systems Borja Balle Data is the New Oil The Economist, May 2017

Privacy-Aware Machine Learning Systems Borja Balle Data is the New Oil The Economist, May 2017 The Importance of (Data) Privacy 4.5.2016 Official Journal of the European Union L 119/1 EN Universal declaration of human rights

605 views • 36 slides
Collaborative and privacy-aware sensing for Gon calves, Rui Jos e, Carlos Baquero

Collaborative and privacy-aware sensing for Gon calves, Rui Jos e, Carlos Baquero

Collaborative and privacy-aware sensing for observing urban movement patterns Nelson Collaborative and privacy-aware sensing for Gon calves, Rui Jos e, Carlos Baquero observing urban movement patterns Universidade do Minho and

643 views • 16 slides
What Do You Want to Share Today? Building Privacy-Aware AmI-Systems Marc Langheinrich

What Do You Want to Share Today? Building Privacy-Aware AmI-Systems Marc Langheinrich

What Do You Want to Share Today? Building Privacy-Aware AmI-Systems Marc Langheinrich Institute for Pervasive Computing ETH Zrich March 21. 2006 SWAMI Conference, Brussels 1 Fair Information Principles (FIP) Drawn up by the OECD,

973 views • 18 slides
Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and

Synergy: Collaborative: Security and Privacy-Aware Cyber-Physical Systems (NSF CNS-1505799 and the Intel-NSF Partnership for Cyber- Physical Systems Security and Privacy) Insup Lee (PI) PRECISE Center School of Engineering and Applied Science

1.11k views • 34 slides
USEMP vision for privacy-aware digital marketing & advertising, a proposal for a

USEMP vision for privacy-aware digital marketing & advertising, a proposal for a

USEMP vision for privacy-aware digital marketing & advertising, a proposal for a useragent-centric model Authors: T.Michalareas (VELTI) & USEMP consortium partners (see ref.1 ) Abstract In this position paper we present

792 views • 5 slides
I n p u t sanitization); drop table slides New attacks and countermeasures: SQL

I n p u t sanitization); drop table slides New attacks and countermeasures: SQL

This time Continuing with Software Getting insane with Security I n p u t sanitization); drop table slides New attacks and countermeasures: SQL injection Background on web architectures A very basic web architecture Client

1.22k views • 102 slides
Enabling Privacy-Aware Zone Exchanges Among Authoritative and Recursive DNS Servers Nikos

Enabling Privacy-Aware Zone Exchanges Among Authoritative and Recursive DNS Servers Nikos

Enabling Privacy-Aware Zone Exchanges Among Authoritative and Recursive DNS Servers Nikos Kostopoulos, Dimitris Kalogeras and Vasilis Maglaris NET work M anagement & O ptimal De sign ( NETMODE ) Laboratory School of Electrical & Computer

309 views • 17 slides
Process and Accountability How do we get from event sold to event successfully completed? A

Process and Accountability How do we get from event sold to event successfully completed? A

The Warehouse Process and Accountability How do we get from event sold to event successfully completed? A discussion of our process and who is accountable from pallet racks, packs and lists Where we were What caused our issues? Since

252 views • 24 slides
Building a geo-aware OS Zeeshan Ali (khattak) NO KAT PICTUREZ! What am I babbling about?

Building a geo-aware OS Zeeshan Ali (khattak) NO KAT PICTUREZ! What am I babbling about?

Building a geo-aware OS Zeeshan Ali (khattak) NO KAT PICTUREZ! What am I babbling about? Geo-aware GNOME Geoclue Over-complicated Geoclue2 Simple Privacy 3 sources Mozilla Location Services GeoIP Accuracy: City-level

834 views • 49 slides
Paper review 1 Privacy is a Process, not a PET A Theory for Effective Privacy Practice

Paper review 1 Privacy is a Process, not a PET A Theory for Effective Privacy Practice

Paper review 1 Privacy is a Process, not a PET A Theory for Effective Privacy Practice Accepted at New Security Paradigms Workshop 2012 Paper review 2 Too Close for Comfort: A Study of the Effectiveness and Acceptability of

515 views • 18 slides
Preserving Privacy in GPS Traces via Uncertainty-Aware Path Cloaking Baik Hoh, Marco Gruteser

Preserving Privacy in GPS Traces via Uncertainty-Aware Path Cloaking Baik Hoh, Marco Gruteser

Preserving Privacy in GPS Traces via Uncertainty-Aware Path Cloaking Baik Hoh, Marco Gruteser (WINLAB) Hui Xiong (Rutgers Univ.) and Ansaf Alrabady (General Motors Corp.) WINLAB Research Review May. 2007 1 Motivation: Traffic Monitoring

261 views • 12 slides
Oblivious Computation in Public Cloud for Privacy-aware Access Control Policies and Data Search

Oblivious Computation in Public Cloud for Privacy-aware Access Control Policies and Data Search

Oblivious Computation in Public Cloud for Privacy-aware Access Control Policies and Data Search Ph.D. Dissertation Defense Zeeshan Pervez Department of Computer Engineering Kyung Hee University, Global Campus, Korea email:

650 views • 24 slides
Resilient Cyber Security and Privacy Butler Lampson Microsoft Research Cyberforum April 7,

Resilient Cyber Security and Privacy Butler Lampson Microsoft Research Cyberforum April 7,

Resilient Cyber Security and Privacy Butler Lampson Microsoft Research Cyberforum April 7, 2015 Security: What we know how to do Secure something simple very well Protect complexity by isolation and sanitization Stage security

399 views • 18 slides
Engineering Multiagent Systems for Ethics and Privacy-Aware Social Computing Nirav Ajmeri (Under

Engineering Multiagent Systems for Ethics and Privacy-Aware Social Computing Nirav Ajmeri (Under

Engineering Multiagent Systems for Ethics and Privacy-Aware Social Computing Nirav Ajmeri (Under the guidance of Professor Munindar P. Singh) Department of Computer Science North Carolina State University December 2018 Nirav Ajmeri EMAS for

752 views • 43 slides
Privacy-aware Document Ranking with Neural Signals Jinjin Shao, Shiyu Ji, Tao Yang Department of

Privacy-aware Document Ranking with Neural Signals Jinjin Shao, Shiyu Ji, Tao Yang Department of

Privacy-aware Document Ranking with Neural Signals Jinjin Shao, Shiyu Ji, Tao Yang Department of Computer Science University of California, Santa Barbara United States Challenge for Private Ranking Client uploads encrypted documents and

795 views • 20 slides
TOWARDS PRIVACY-AWARE RESEARCH AND DEVELOPMENT IN WEARABLE HEALTH A WEAR BLES one survey

TOWARDS PRIVACY-AWARE RESEARCH AND DEVELOPMENT IN WEARABLE HEALTH A WEAR BLES one survey

Center for Democracy Technology & TOWARDS PRIVACY-AWARE RESEARCH AND DEVELOPMENT IN WEARABLE HEALTH A WEAR BLES one survey found that 68.1 million wearables there are 211 million

372 views • 11 slides
CS412 Software Security Program Testing Sanitization Mathias Payer EPFL, Spring 2019

CS412 Software Security Program Testing Sanitization Mathias Payer EPFL, Spring 2019

CS412 Software Security Program Testing Sanitization Mathias Payer EPFL, Spring 2019 Mathias Payer CS412 Software Security Why testing? Testing is the process of executing a program to find errors. An error is a deviation between

503 views • 28 slides
Event announcement Topic: Thermal-Aware Design of 2D/3D Many-Core Servers with Inter- Tier

Event announcement Topic: Thermal-Aware Design of 2D/3D Many-Core Servers with Inter- Tier

Event announcement Topic: Thermal-Aware Design of 2D/3D Many-Core Servers with Inter- Tier Liquid Cooling Speaker: Prof. David Atienza, cole polytechnique fdrale de Lausanne (EPFL), Switzerland Time/Location: Monday, July 7th, 16:00,

458 views • 31 slides
Sedic: Privacy-Aware Data Intensive Computing on Hybrid Clouds K. Zhang, X. Zhou, Y. Chen, X.

Sedic: Privacy-Aware Data Intensive Computing on Hybrid Clouds K. Zhang, X. Zhou, Y. Chen, X.

UT DALLAS UT DALLAS Erik Jonsson School of Engineering & Computer Science Sedic: Privacy-Aware Data Intensive Computing on Hybrid Clouds K. Zhang, X. Zhou, Y. Chen, X. Wang, Y. Ruan FEARLESS engineering Motivation Rapid growth of

258 views • 11 slides
Discrete Event Simulation And Discrete Event Simulation And Evaluation Of A Firewall Aware

Discrete Event Simulation And Discrete Event Simulation And Evaluation Of A Firewall Aware

Discrete Event Simulation And Discrete Event Simulation And Evaluation Of A Firewall Aware Evaluation Of A Firewall Aware Architecture For Mobile IP Architecture For Mobile IP Artur Hecker Artur Hecker Supervisors: Supervisors: Prof. Dr.

260 views • 22 slides

More recommend