protecting privacy by l sweeney
play

protecting privacy ( By L.Sweeney ) Presented by : Navreet Kaur - PowerPoint PPT Presentation

Sep 02, 2023 •280 likes •575 views

k-ANONYMITY: A model for protecting privacy ( By L.Sweeney ) Presented by : Navreet Kaur ROADMAP Data sharing and data privacy Related background work k-anonymity model Possible attacks against k-Anonymity Weaknesses of

  1. k-ANONYMITY: A model for protecting privacy ( By L.Sweeney ) Presented by : Navreet Kaur

  2. ROADMAP • Data sharing and data privacy • Related background work • k-anonymity model • Possible attacks against k-Anonymity • Weaknesses of k-Anonymity • Extensions • Conclusion

  3. Data Sharing : • Data sharing is making data used for scholarly research available to other investigators.* • An exponential growth in number and variety of data collection containing person specific information. • Collection of data is beneficial both in research and business. * http://en.wikipedia.org/wiki/Data_sharing

  4. Eg : Why Medical Data Sharing ? Support Health Medical Insurance Research Companies Measure effectiveness of medical treatments Tracking Contagious Diseases

  5. *

  6. Objective : ❏ Maximizing data utility while limiting disclosure risk to an acceptable level. ❏ How can a data holder release a version of its private data with guarantees that subjects of data cannot be re-identified and data is practically useful ?

  7. Existing Works : ❏ Statistical Databases : This technique involves various ways of adding noise while still maintaining some statistical invariance. Limitations : ● Destroys integrity of data.

  8. Existing works (contd) : ❏ Multi-level databases : ➔ Data is stored at different security classifications and users have different security clearances (Denning & Lunt). ➔ Suppression :Sensitive information and all information that allows inference of sensitive information is not released(Su and Ozsoyoglu). Limitations : • Protection only against known attacks. • Suppression reduces quality of data.

  9. Existing Works (contd): ❏ Computer Security : Computer security is not privacy protection. • It ensures that the recipient of information has the authority to receive information. • Only prevents direct disclosures. Privacy Protection : Release all the information such that identities of people who are subjects of data are protected.

  10. k- Anonymity : • It is a framework for constructing and evaluating algorithms & systems that release information such that released information limits what can be revealed about the properties of entities that are to be protected. • Eg: If you want to identify a person and the only information you have is gender and zip code - there should be at least k number of people meeting the requirement.

  11. Quasi Identifier : • Attributes which appear in private data and also appear in public data are candidates for linking, these attributes constitute the Quasi Identifier and disclosure of these attributes should be controlled. • Eg : {YOB, Gender, 3-digit Zip code} unique for 0.04% of US citizens vs {DOB, Gender, 5-digit Zip code} unique for 87% of US citizens* *Sweeney. Achieving k-anonymity privacy protection using generalization and suppression. IJUFKS. 2002

  12. Hospital Patient Data Voter Registration Data NAME DOB SEX ZIP DOB SEX ZIP DISEASE BETH 10/21/74 M 528705 10/21/74 M 528705 DIABETES BOB 4/5/85 M 528975 1/22/86 F 528718 BROKEN ARM KEELE 8/7/74 F 528741 8/12/74 M 528745 HEPATITIS MIKE 6/6/65 M 528985 5/7/74 M 528760 FLU LOLA 9/6/76 F 528356 4/13/86 F 528652 FLU BILL 8/7/69 M 528459 9/5/74 F 528258 BRONCHITIS ❖ Beth has diabetes

  13. Hospital Patient Data Voter Registration Data NAME DOB SEX ZIP YOB SEX ZIP DISEASE BETH 10/21/74 M 528705 1974 M 5287** DIABETES BOB 4/5/85 M 528975 1986 F 5287** BROKEN ARM KEELE 8/7/74 F 528741 1974 M 5287** HEPATITIS MIKE 6/6/65 M 528985 1974 M 5287** FLU LOLA 9/6/76 F 528356 1986 F 5286** FLU BILL 8/7/69 M 528459 1974 F 5282** BRONCHITIS Release of Data Preventing linking of data.

  14. k-Anonymity Protection Model : Let RT (A1…….An) be a table, QI RT be the quasi-identifier associated with it. RT is said to satisfy k-anonymity if and only if each sequence of values in RT [QI RT ] appears with at least k occurrences in RT[QI RT ],where : ❏ PT is private table. ❏ RT,GT1,GT2 are released tables. ❏ QI : Quasi Identifier ❏ (A1,A2,.....An) : Attributes Assumption : Data holder has already identified the Quasi Identifier.

  15. For every combination of values of quasi identifiers in the 2-anonymous table,there are at least 2 records that share those values. Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  16. Attacks against k-anonymity: ❏ Unsorted matching attack : This attack is based on the order in which the tuples appear in the released table. Solution : Randomly sort the tuples of the solution table. Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  17. Attacks against k-anonymity (contd): ❏ Complementary Release Attack : Subsequent releases of private data might compromise k-anonymity protection. Solution : • Consider attributes of previously released tables before releasing the new table. • Base the subsequent releases on the initially released table.

  18. Contemporary Attack (contd.) : Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  19. Contemporary Attack (Contd.) : Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  20. Attacks against k-anonymity(contd): ❏ Temporal attack : Data collections are dynamic. Adding,changing or removing tuples may compromise k-anonymity. Solution : • All the attributes released in an initial table should be considered as quasi identifiers for subsequent releases. • Subsequent releases should be based on initial releases. Conclude : K-Anonymity ensures that individuals cannot be identified by linking attacks

  21. A little more…..

  22. Limitations of k-anonymity: ❏ Homogeneity Attack :

  23. Limitations of k-Anonymity (contd.) ❏ Background Knowledge :

  24. Weaknesses of the paper : • How to identify a set of “Quasi Identifier”? • Dealing with large number of Quasi Identifiers could be problematic. It generalizes or suppresses quasi identifiers to protect data which reduces quality of data.

  25. Major Contribution • This paper was one of the most initial attempts in privacy protection. • It is used as a base for most of the privacy protection models.

  26. Extensions to k-Anonymity model: • l-Diversity • t-Closeness • a-k Anonymity • e-m Anonymity, range diversity • Personalized privacy

  27. Conclusion ❏ Data sharing is important. ❏ Data utility needs to be maximised while private data should be protected. ❏ For every combination of values of quasi identifiers in the k-anonymous table , there are at least k records that share those values. ❏ k-anonymity protects data against linking attacks. ❏ But it was extended further as : > k-anonymity can leak information due to lack of diversity. > k-anonymity does not protect against attacks based on background knowledge.

  28. Questions ?

Recommend

Privacy in D.A.T.A. Latanya Sweeney, Ph.D. Assistant Professor of Computer Science, Technology

Privacy in D.A.T.A. Latanya Sweeney, Ph.D. Assistant Professor of Computer Science, Technology

Privacy in D.A.T.A. Latanya Sweeney, Ph.D. Assistant Professor of Computer Science, Technology & Policy Carnegie Mellon University latanya@privacy.cs.cmu.edu http://privacy.cs.cmu.edu/ The Question in this Talk Can computer scientists

801 views • 77 slides
Privacy, Economics, and Immediate Gratification: Why Protecting Privacy is Easy, But Selling It

Privacy, Economics, and Immediate Gratification: Why Protecting Privacy is Easy, But Selling It

Privacy, Economics, and Immediate Gratification: Why Protecting Privacy is Easy, But Selling It is Not Alessandro Acquisti Heinz School, Carnegie Mellon University PGuardian Technologies, Inc. acquisti@andrew.cmu.edu Why do we have great

1.13k views • 73 slides
Privacy & Security Matters: Privacy & Security Matters: Protecting Personal Data

Privacy & Security Matters: Privacy & Security Matters: Protecting Personal Data

Privacy & Security Matters: Privacy & Security Matters: Protecting Personal Data Protecting Personal Data Privacy & Security Project HIPAA: What it is Health Insurance Portability and Accountability Act of 1996 Also known as

445 views • 26 slides
Protecting Privacy in Connected Learning Linnette Attai Project Director, CoSN Protecting

Protecting Privacy in Connected Learning Linnette Attai Project Director, CoSN Protecting

Protecting Privacy in Connected Learning Linnette Attai Project Director, CoSN Protecting Privacy in Connected Learning and Trusted Learning Environment Programs Transforming Education Through Visionary Technology Leadership About CoSN:

640 views • 49 slides
Protecting Personally Identifiable Information (PII) Privacy Act Training for Housing Counselors

Protecting Personally Identifiable Information (PII) Privacy Act Training for Housing Counselors

Protecting Personally Identifiable Information (PII) Privacy Act Training for Housing Counselors Presented by the Office of Housing Counseling and The Office of the Chief Information Officer Privacy Program August 12, 2014 1 Protecting

590 views • 43 slides
#MicroFocusCyberSummit Cloud-based Data Privacy and Protection Protecting data and privacy

#MicroFocusCyberSummit Cloud-based Data Privacy and Protection Protecting data and privacy

#MicroFocusCyberSummit Cloud-based Data Privacy and Protection Protecting data and privacy across hybrid IT Farshad Ghazi - Moderator Mat Spitz Lacy Gruen #MicroFocusCyberSummit Reiner Kappenberger Cloud-based Data Privacy and Protection:

455 views • 10 slides
Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on

Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on

Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on Avoiding Threats May 28, 2015 Malcolm Townsend, IT Research Analyst Overview Background Trends Threat landscape Privacy regulatory

102 views • 8 slides
Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program

Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program

3/27/2015 Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program Considerations August 14, 2014 Presentation by: Jennifer L. Cox, J.D. Cox & Osowiecki, LLC Hartford, Connecticut 1 Todays Privacy &

475 views • 24 slides
EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

28/05/15 Outline Data privacy and the evolving regulation Privacy threats from LBS to geoSN EveryWare Lab Main (location) privacy protection techniques Data Management for Mobile Protecting geo-tagged resource publication

411 views • 7 slides
K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang

K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang

K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang 515030910412 ABSTRACT The rapid development of social communication network has increased the risk in privacy protection, the association between people has

385 views • 4 slides
A Privacy-Protecting Architecture for Collaborative Filtering via Forgery and Suppression of

A Privacy-Protecting Architecture for Collaborative Filtering via Forgery and Suppression of

A Privacy-Protecting Architecture for Collaborative Filtering via Forgery and Suppression of Ratings Javier Parra-Arnau , David Rebollo-Monedero and Jordi Forn http://sites.google.com/site/javierparraarnau/ Department of Telematics

920 views • 34 slides
Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda Protecting mobile devices and your privacy Protecting Mobile Devices and Your Privacy Before We Start The City of Phoenix does not

971 views • 52 slides
Ensuring Access to Information and Protecting Privacy Brian Beamish Commissioner Reaching Out

Ensuring Access to Information and Protecting Privacy Brian Beamish Commissioner Reaching Out

Ensuring Access to Information and Protecting Privacy Brian Beamish Commissioner Reaching Out to Ontario Queens University, Kingston May 4, 2016 Our Office The Information and Privacy Commissioner (IPC) provides an independent review

511 views • 36 slides
Protecting Your Privacy Training Module Introduction How private is your Internet experience?

Protecting Your Privacy Training Module Introduction How private is your Internet experience?

Welcome to the Protecting Your Privacy Training Module Introduction How private is your Internet experience? Introduction Laws concerning the privacy of 1 personal information vary from country to country. Many of the worlds legal

576 views • 26 slides
Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 /

Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 /

Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 / 26 State Surveillance Over the summer, weve learned about a number of NSA programs that spy on . . . , well, just about everyone.

753 views • 26 slides
Telemedicine Credentialing and Privileging Protecting Patient Privacy, Avoiding Fraud and Abuse

Telemedicine Credentialing and Privileging Protecting Patient Privacy, Avoiding Fraud and Abuse

Presenting a live 90 minute webinar with interactive Q&A Telemedicine Credentialing and Privileging Protecting Patient Privacy, Avoiding Fraud and Abuse Liability, Ensuring Quality Care WEDNES DAY, AUGUS T 21, 2013 1pm Eastern |

947 views • 61 slides
Protecting your Privacy with FreeBSD and Tor Christian Brffer brueffer@FreeBSD.org MeetBSD

Protecting your Privacy with FreeBSD and Tor Christian Brffer brueffer@FreeBSD.org MeetBSD

Protecting your Privacy with FreeBSD and Tor Christian Brffer brueffer@FreeBSD.org MeetBSD Warsaw, Poland November 18, 2007 Overview Who needs anonymity anyway? Anonymization concepts T or FreeBSD What else to take

465 views • 34 slides
GUARDIANS AD LITEM IN CRIMINAL COURT PROTECTING A CHILDS RIGHT TO PRIVACY Why Should a Court

GUARDIANS AD LITEM IN CRIMINAL COURT PROTECTING A CHILDS RIGHT TO PRIVACY Why Should a Court

GUARDIANS AD LITEM IN CRIMINAL COURT PROTECTING A CHILDS RIGHT TO PRIVACY Why Should a Court Appoint a GAL or Counsel for a Child in a CR Case? Colorado courts have recognized that the patient holds the privilege. When the patient is a

1.35k views • 56 slides
Protecting the Privacy of Healthcare Data While Preserving the Utility of Geographic Location

Protecting the Privacy of Healthcare Data While Preserving the Utility of Geographic Location

Protecting the Privacy of Healthcare Data While Preserving the Utility of Geographic Location Information for Epidemiologic Research Daniel C. Barth-Jones, M.P.H., Ph.D. Center for Healthcare Effectiveness Research Wayne State University (

652 views • 61 slides
Adversary for Social Good: Protecting Familial Privacy through Joint Adversarial Attacks Chetan

Adversary for Social Good: Protecting Familial Privacy through Joint Adversarial Attacks Chetan

Adversary for Social Good: Protecting Familial Privacy through Joint Adversarial Attacks Chetan Kumar, Riazat Ryan, Ming Shao Department of Computer and Information Science, University of Massachusetts, Dartmouth Data Leakage: Limited time

294 views • 27 slides
Eternal Sunshine of the Spotless Machine: Protecting Privacy with Ephemeral Channels Alan M. Dunn

Eternal Sunshine of the Spotless Machine: Protecting Privacy with Ephemeral Channels Alan M. Dunn

Eternal Sunshine of the Spotless Machine: Protecting Privacy with Ephemeral Channels Alan M. Dunn , Michael Z. Lee, Suman Jana, Sangman Kim, Mark Silberstein, Yuanzhong Xu, Vitaly Shmatikov, Emmett Witchel University of Texas at Austin OSDI 2012

277 views • 26 slides
Balancing Privacy and Safety: Protecting Driver Identity in Naturalistic Driving Video Data

Balancing Privacy and Safety: Protecting Driver Identity in Naturalistic Driving Video Data

Balancing Privacy and Safety: Protecting Driver Identity in Naturalistic Driving Video Data Sujitha Martin, Ashish Tawari and Mohan M. Trivedi Laboratory of Intelligent and Safe Automobiles September 19 th , 2014 1 2 Question: Can you tell

705 views • 21 slides
Voice-Indistinguishability Protecting Voiceprint in Privacy-Preserving Speech Data Release

Voice-Indistinguishability Protecting Voiceprint in Privacy-Preserving Speech Data Release

Voice-Indistinguishability Protecting Voiceprint in Privacy-Preserving Speech Data Release Yaowei Han, Sheng Li, Yang Cao, Qiang Ma, Masatoshi Yoshikawa Department of Social Informatics, Kyoto University, Kyoto, Japan 1 National Institute of

611 views • 27 slides
Protecting Privacy in Connected Learning March 15, 2017 Sheryl Abshire, Ph.D. @sherylabshire

Protecting Privacy in Connected Learning March 15, 2017 Sheryl Abshire, Ph.D. @sherylabshire

Protecting Privacy in Connected Learning March 15, 2017 Sheryl Abshire, Ph.D. @sherylabshire sheryl.abshire@cpsb.org Chief Technology Officer CoSN Board Calcasieu Parish Public Schools Lake Charles, Louisiana Transforming Education

983 views • 59 slides

More recommend