user privacy vicen c torra february 2018
play

User privacy Vicen c Torra February, 2018 SAIL + PICS, School of - PowerPoint PPT Presentation

Sep 14, 2022 •457 likes •836 views

User privacy Vicen c Torra February, 2018 SAIL + PICS, School of Informatics, University of Sk ovde, Sweden Outline Outline 1. User privacy 1 / 25 Outline User privacy 2 / 25 DP > Dimensions Outline Data Privacy Classification

  1. User privacy Vicen¸ c Torra February, 2018 SAIL + PICS, School of Informatics, University of Sk¨ ovde, Sweden

  2. Outline Outline 1. User privacy 1 / 25

  3. Outline User privacy 2 / 25

  4. DP > Dimensions Outline Data Privacy Classification 1: On whose privacy is being sought • Respondent privacy • Owner privacy • User privacy 3 / 25

  5. DP > User privacy: PIR Outline Data Privacy User privacy • Protecting the identity of the user • Protecting the data generated by the activity of the user 4 / 25

  6. DP > User privacy: PIR Outline Data Privacy User privacy • Protecting the identity of the user • Protecting the data generated by the activity of the user Tools for anonymous communications belong to user privacy 4 / 25

  7. DP > User privacy: PIR Outline Data Privacy User privacy • Protecting the identity of the user • Protecting the data generated by the activity of the user Tools for anonymous communications belong to user privacy Other examples with users querying databases 4 / 25

  8. DP > User privacy: PIR Outline Data Privacy User privacy in database search • Protecting the identity of the user ◦ Protect who is making a query 5 / 25

  9. DP > User privacy: PIR Outline Data Privacy User privacy in database search • Protecting the identity of the user ◦ Protect who is making a query → Anonymous database search • Protecting the data generated by the user 5 / 25

  10. DP > User privacy: PIR Outline Data Privacy User privacy in database search • Protecting the identity of the user ◦ Protect who is making a query → Anonymous database search • Protecting the data generated by the user ◦ Protect the query of the user 5 / 25

  11. DP > User privacy: PIR Outline Data Privacy User privacy in database search • Protecting the identity of the user ◦ Protect who is making a query → Anonymous database search • Protecting the data generated by the user ◦ Protect the query of the user → Private Information Retrieval (PIR) 5 / 25

  12. DP > User privacy: PIR Outline Data Privacy User privacy • Private Information Retrieval (PIR) • Anonymous database search 6 / 25

  13. DP > User privacy: PIR Outline Data Privacy User privacy • Private Information Retrieval (PIR) ◦ How a user should retrieve an element from a DB or a search engine, without the system or the server being able to deduce which element is the object of the user’s interest. 7 / 25

  14. DP > User privacy: PIR Outline Data Privacy User privacy • Private Information Retrieval (PIR) ◦ (Information Theoretic) Private Information Retrieval (PIR) ◦ Computational PIR (cPIR) ◦ Trusted-hardware PIR ◦ Other approaches ⋆ Goopir ⋆ TrackMeNot 8 / 25

  15. DP > User privacy: PIR Outline Data Privacy User privacy • (Information Theoretic) Private Information Retrieval (PIR) ◦ Information theoretic: cannot be broken with unlimited computing power 9 / 25

  16. DP > User privacy: PIR Outline Data Privacy User privacy • (Information Theoretic) Private Information Retrieval (PIR) ◦ Information theoretic: cannot be broken with unlimited computing power ◦ Every (information theoretic) PIR scheme with a single-database (with n bits) requires Ω( n ) bits of communication. 9 / 25

  17. DP > User privacy: PIR Outline Data Privacy User privacy • (Information Theoretic) Private Information Retrieval (PIR) ◦ Information theoretic: cannot be broken with unlimited computing power ◦ Every (information theoretic) PIR scheme with a single-database (with n bits) requires Ω( n ) bits of communication. ◦ It can be proven (Chor et al. 1998) that if a user wants to keep its privacy (in the information theoretic sense), then essentially the only thing he can do is to ask for a copy of the whole database. 9 / 25

  18. DP > User privacy: PIR > IT-PIR Outline Data Privacy User privacy • (Information Theoretic) PIR: ◦ Communication complexity is reduced: sublinear in n by assuming that the data is replicated. 10 / 25

  19. DP > User privacy: PIR > IT-PIR Outline Data Privacy User privacy • (Information Theoretic) PIR: ◦ Communication complexity is reduced: sublinear in n by assuming that the data is replicated. ⋆ k copies of the database are considered ⋆ DB copies do not collaborate 10 / 25

  20. DP > User privacy: PIR > IT-PIR Outline Data Privacy User privacy • (Information Theoretic) PIR: ◦ Communication complexity is reduced: sublinear in n by assuming that the data is replicated. ⋆ k copies of the database are considered ⋆ DB copies do not collaborate ◦ Example. Scheme in (Chor et al., 1999) with communication complexity O ( n 1 / 3 ) for k = 2 10 / 25

  21. DP > User privacy: PIR > IT-PIR Outline Data Privacy User privacy • (Information Theoretic) PIR: k copies of the database (not being intercommunicated) ◦ Problem. ⋆ Database. A binary string x = x 1 · · · x n of length n (Identical copies of this string are stored in k ≥ 2 servers) ⋆ User. Given index i , is interested in obtaining the value of bit x i ⋆ Solution: The user queries each of the servers and gets replies from which the desired bit x i can be computed. The server does not gain any information about i from the query. 11 / 25

  22. DP > User privacy: PIR > IT-PIR Outline Data Privacy Definition of the problem. (Information Theoretic) PIR (I) • Input ◦ i ∈ [ n ] where [ n ] = { 1 , . . . , n } ◦ r random input of length ℓ rnd • Overview of the process ◦ k queries Q 1 ( i, r ) , . . . , Q k ( i, r ) of length ℓ q each ◦ Servers respond according to strategies A 1 , . . . , A k with replies of length ℓ a according to the content of the DB x ◦ The user reconstructs the desired bit x i from the k replies, together with i and r 12 / 25

  23. DP > User privacy: PIR > IT-PIR Outline Data Privacy Definition of the problem. (Information Theoretic) PIR (I) • Formalization ◦ A k -server PIR scheme for database length n consists of ⋆ k query functions Q 1 , . . . , Q k : [ n ] × { 0 , 1 } ℓ rnd → { 0 , 1 } l q ⋆ k answer functions, A 1 , . . . , A k : { 0 , 1 } n × { 0 , 1 } l q → { 0 , 1 } l a ⋆ a reconstruction function R : [ n ] ×{ 0 , 1 } l rnd × ( { 0 , 1 } l a ) k → { 0 , 1 } ◦ These functions should satisfy 13 / 25

  24. DP > User privacy: PIR > IT-PIR Outline Data Privacy Definition of the problem. (Information Theoretic) PIR (I) • Formalization ◦ A k -server PIR scheme for database length n consists of ⋆ k query functions Q 1 , . . . , Q k : [ n ] × { 0 , 1 } ℓ rnd → { 0 , 1 } l q ⋆ k answer functions, A 1 , . . . , A k : { 0 , 1 } n × { 0 , 1 } l q → { 0 , 1 } l a ⋆ a reconstruction function R : [ n ] ×{ 0 , 1 } l rnd × ( { 0 , 1 } l a ) k → { 0 , 1 } ◦ These functions should satisfy ⋆ Correctness. For every x ∈ { 0 , 1 } n , i ∈ [ n ] , and r ∈ { 0 , 1 } ℓ rnd R ( i, r, A 1 ( x, Q 1 ( i, r )) , . . . , A k ( x, Q k ( i, r ))) = x i 13 / 25

  25. DP > User privacy: PIR > IT-PIR Outline Data Privacy Definition of the problem. (Information Theoretic) PIR (I) • Formalization ◦ A k -server PIR scheme for database length n consists of ⋆ k query functions Q 1 , . . . , Q k : [ n ] × { 0 , 1 } ℓ rnd → { 0 , 1 } l q ⋆ k answer functions, A 1 , . . . , A k : { 0 , 1 } n × { 0 , 1 } l q → { 0 , 1 } l a ⋆ a reconstruction function R : [ n ] ×{ 0 , 1 } l rnd × ( { 0 , 1 } l a ) k → { 0 , 1 } ◦ These functions should satisfy ⋆ Correctness. For every x ∈ { 0 , 1 } n , i ∈ [ n ] , and r ∈ { 0 , 1 } ℓ rnd R ( i, r, A 1 ( x, Q 1 ( i, r )) , . . . , A k ( x, Q k ( i, r ))) = x i ⋆ Privacy. For every i, j ∈ [ n ] , s ∈ [ k ] , and q ∈ { 0 , 1 } l q Pr ( Q s ( i, r ) = q ) = Pr ( Q s ( j, r ) = q ) where the probabilities are taken over uniformy chosen r ∈ { 0 , 1 } ℓ rnd 13 / 25

  26. DP > User privacy: PIR > IT-PIR Outline Data Privacy User privacy • (Information Theoretic) PIR: k copies of the database (not being intercommunicated) ◦ Variations. ⋆ Protocols can be defined to coalitions of up to t < k servers 14 / 25

  27. DP > User privacy: PIR > cPIR Outline Data Privacy User privacy • Computational PIR (cPIR): privacy against one single database ◦ The server has limited computational capacity ⋆ The computations the server has to perform in order to gather enough information on the searches of a user to vulnerate her privacy, exceeds the capacity of the server. 15 / 25

  28. DP > User privacy: PIR > cPIR Outline Data Privacy User privacy • Computational PIR (cPIR): privacy against one single database ◦ First approaches: ◦ (Chor, Gilboa, 1997) For every 0 < c < 1 there is a cPIR scheme for k = 2 DB with communication complexity O ( n c ) . ◦ (Kushilevitz, Ostrovsky, 1997) For every c > 0 there exists a single-database cPIR scheme with communication complexity O ( n c ) , assuming the hardness of deciding quadratic residuosity 1 . Linear time for the DB with respect to the number of rows. → They present a basic scheme and a recursive scheme 1 Given ( x, N ) where N is a composite number, it is difficult to determine whether x is a quadratic residue modulo N (i.e., x = y 2 mod N for a certain y ). 16 / 25

  29. DP > User privacy: PIR > thPIR Outline Data Privacy User privacy • Trusted-hardware Private Information Retrieval (hardware-based Private Information Retrieval) ◦ PIR protocols based on the assumption of a trusted hardware 17 / 25

Recommend

Data privacy. Introduction Vicen c Torra February, 2018 Introduction Outline Introduction

Data privacy. Introduction Vicen c Torra February, 2018 Introduction Outline Introduction

Data privacy. Introduction Vicen c Torra February, 2018 Introduction Outline Introduction Goals: / Topics Privacy from three different perspectives: anonymous communications/privacy enhancing technologies, privacy preserving data

197 views • 6 slides
Data privacy: introduction Vicen c Torra January 15, 2018 Privacy, Information and

Data privacy: introduction Vicen c Torra January 15, 2018 Privacy, Information and

Oslo, 2018 Data privacy: introduction Vicen c Torra January 15, 2018 Privacy, Information and Cyber-Security Center SAIL, School of Informatics, University of Sk ovde, Sweden Outline Outline 1. Motivation 2. Privacy models and

1.14k views • 57 slides
Data privacy. A briefer. Vicen c Torra (vtorra@ieee.org) May 31st, 2018 Privacy, Information

Data privacy. A briefer. Vicen c Torra (vtorra@ieee.org) May 31st, 2018 Privacy, Information

IEEE Chapter Meeting, Sk ovde Data privacy. A briefer. Vicen c Torra (vtorra@ieee.org) May 31st, 2018 Privacy, Information and Cyber-Security Center SAIL, School of Informatics, University of Sk ovde, Sweden Outline Outline 1.

841 views • 35 slides
Data privacy: an introduction (part II) Vicen c Torra February, 2017 School of Informatics,

Data privacy: an introduction (part II) Vicen c Torra February, 2017 School of Informatics,

Sk ovde 2017 Data privacy: an introduction (part II) Vicen c Torra February, 2017 School of Informatics, University of Sk ovde, Sweden Outline Outline 1. Basics 2. A classification Dimensions 3. Masking methods 4. Privacy

449 views • 41 slides
Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University,

Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University,

Data privacy: Introduction Vicen c Torra March, 2019 Hamilton Institute, Maynooth University, Ireland Outline Outline 1. Motivation 2. Difficulties 3. Terminology 4. Disclosure 5. Transparency 6. Privacy by design 7. Summary 1 / 37

510 views • 38 slides
On machine learning for data privacy Vicen c Torra Dec. 7, 2016 School of Informatics,

On machine learning for data privacy Vicen c Torra Dec. 7, 2016 School of Informatics,

Link oping 2016 On machine learning for data privacy Vicen c Torra Dec. 7, 2016 School of Informatics, University of Sk ovde, Sweden Outline Outline Outline Disclosure risk. A quantitative measures: record linkage The worst-case

1.29k views • 101 slides
Data privacy: an overview Vicen c Torra December, 2019 Hamilton Institute, Maynooth

Data privacy: an overview Vicen c Torra December, 2019 Hamilton Institute, Maynooth

Data privacy: an overview Vicen c Torra December, 2019 Hamilton Institute, Maynooth University, Ireland Overview Outline Overview What is data privacy? Why is it necessary and why it is challenging/difficult? Some definitions

2.02k views • 188 slides
Data privacy: Privacy models Vicen c Torra March, 2019 Hamilton Institute, Maynooth

Data privacy: Privacy models Vicen c Torra March, 2019 Hamilton Institute, Maynooth

Data privacy: Privacy models Vicen c Torra March, 2019 Hamilton Institute, Maynooth University, Ireland Outline Outline Privacy models 1 / 11 Data privacy &gt; Privacy models Outline Privacy models ? 2 / 11 Data privacy &gt; Privacy

695 views • 12 slides
Transparency and disclosure risk in data privacy c Torra 1 Vicen March, 2015 1 School of

Transparency and disclosure risk in data privacy c Torra 1 Vicen March, 2015 1 School of

PAIS 2015 Transparency and disclosure risk in data privacy c Torra 1 Vicen March, 2015 1 School of Informatics, University of Sk ovde, Sweden Outline Outline Outline Quantitative measures of risk: record linkage Transparency principle:

1.35k views • 91 slides
Noise Graph Addition: A New Perspective for Graph Anonymization Vicen Torra, Julin Salas

Noise Graph Addition: A New Perspective for Graph Anonymization Vicen Torra, Julin Salas

Graph Perturbation as Noise Graph Addition: A New Perspective for Graph Anonymization Vicen Torra, Julin Salas Data Privacy Management Luxembourg, 26 September 2019 Outline 1. Introduction Motivations and objectives Random graph

355 views • 20 slides
Choquet integral in decision making and metric learning Vicen c Torra Hamilton Institute,

Choquet integral in decision making and metric learning Vicen c Torra Hamilton Institute,

IUKM 2019 - Nara, Japan Choquet integral in decision making and metric learning Vicen c Torra Hamilton Institute, Maynooth University Ireland March 27, 2018 Outline Overview Basics and objectives: Using Choquet integral in two types

1.37k views • 88 slides
On some extensions and applications of non-additive measures Vicen c Torra September, 2013

On some extensions and applications of non-additive measures Vicen c Torra September, 2013

LFSC 2013 On some extensions and applications of non-additive measures Vicen c Torra September, 2013 Joint Work: Y. Narukawa, K. Stokes, G. Navarro-Arribas, D. Abril Institut dInvestigaci o en Intel lig` encia Artificial

1.5k views • 122 slides
Funciones de agregaci c Torra 1 Vicen Octubre, 2014 1 Institut dInvestigaci o en Intel

Funciones de agregaci c Torra 1 Vicen Octubre, 2014 1 Institut dInvestigaci o en Intel

Ja en on para la toma de decisiones multicriterio Funciones de agregaci c Torra 1 Vicen Octubre, 2014 1 Institut dInvestigaci o en Intel lig` encia Artificial (IIIA-CSIC); Universidad de Sk ovde (HiS, Suecia) - a partir de

1.3k views • 128 slides
Decisi o: agregaci o i consens Vicen c Torra Universitat de Sk ovde (HiS, Su` ecia)

Decisi o: agregaci o i consens Vicen c Torra Universitat de Sk ovde (HiS, Su` ecia)

Decisi o: agregaci o i consens Vicen c Torra Universitat de Sk ovde (HiS, Su` ecia) Novembre, 2015 Bibliografia (i/o spam) Bibliografia Gilboa, I., Theory of decision under uncertainty, Cambridge University Press, 2009.

1.77k views • 134 slides
Aggregation functions and information fusion. Modeling decisions Vicen c Torra Universitat de

Aggregation functions and information fusion. Modeling decisions Vicen c Torra Universitat de

Aggregation functions and information fusion. Modeling decisions Vicen c Torra Universitat de Sk ovde (HiS, Sweden) July, 2017 Summary Aggregation functions There is life beyond the (weighted) mean Important concepts: the

1.41k views • 120 slides
Aggregation functions for social decision making Vicen c Torra torsdag den 17. oktober 2013

Aggregation functions for social decision making Vicen c Torra torsdag den 17. oktober 2013

Kbenhavn, Danmark, 2013 Aggregation functions for social decision making Vicen c Torra torsdag den 17. oktober 2013 Institut dInvestigaci o en Intel lig` encia Artificial (IIIA-CSIC), Bellaterra Outline Outline 1. Introduction

1.29k views • 112 slides
Choquet integral: distributions and decisions Vicen c Torra School of Informatics, University

Choquet integral: distributions and decisions Vicen c Torra School of Informatics, University

83rd EWG-MCDA 2016 Choquet integral: distributions and decisions Vicen c Torra School of Informatics, University of Sk ovde Sk ovde, Sweden March 31-32 , 2016 Overview &gt; Example Outline Overview Basics and objectives:

1.24k views • 101 slides
Classification of procedures Vicen c Torra March, 2019 Hamilton Institute, Maynooth

Classification of procedures Vicen c Torra March, 2019 Hamilton Institute, Maynooth

Classification of procedures Vicen c Torra March, 2019 Hamilton Institute, Maynooth University, Ireland Outline Outline 1. Dimensions 1st dimension 2nd dimension 3rd dimension Other dimensions 2. Roadmap of data protection

805 views • 34 slides
Non-additive measures and integrals Vicen c Torra March, 2014 IIIA-CSIC (joint work with

Non-additive measures and integrals Vicen c Torra March, 2014 IIIA-CSIC (joint work with

LiU 2014 Non-additive measures and integrals Vicen c Torra March, 2014 IIIA-CSIC (joint work with Yasuo Narukawa and Michio Sugeno) Motivation Outline A short motivation Topic. Non-additive measures A generalization of additive

1.49k views • 111 slides
The Platform for Privacy Preferences (P3P) February 2000 Update A user empowerment approach

The Platform for Privacy Preferences (P3P) February 2000 Update A user empowerment approach

The Platform for Privacy Preferences (P3P) February 2000 Update A user empowerment approach Marc Langheinrich ETH Zurich P3P Preference Group Chair Outline P3P February 2000 Update Platform for Privacy Preferences Policy Background

761 views • 37 slides
Privacy as a Service Raymond Cheng Build practical cloud services that protect user privacy from

Privacy as a Service Raymond Cheng Build practical cloud services that protect user privacy from

Privacy as a Service Raymond Cheng Build practical cloud services that protect user privacy from powerful threats 2 3 Powerful Threats to User Privacy Organized Crime Nation-State Actors 4 Powerful Threats to User Privacy Gather

1.56k views • 104 slides
Guarding user Privacy with Federated Learning and Differential Privacy Brendan McMahan

Guarding user Privacy with Federated Learning and Differential Privacy Brendan McMahan

Guarding user Privacy with Federated Learning and Differential Privacy Brendan McMahan mcmahan@google.com DIMACS/Northeast Big Data Hub Workshop on Overcoming Barriers to Data Sharing including Privacy and Fairness 2017.10.24 Our Goal Imbue

956 views • 70 slides
Privacy user interfaces for eye-tracking Sren Preibusch 20 November 2014 @ W3C Workshop on

Privacy user interfaces for eye-tracking Sren Preibusch 20 November 2014 @ W3C Workshop on

Privacy user interfaces for eye-tracking Sren Preibusch 20 November 2014 @ W3C Workshop on Privacy and User-Centric Controls How eye-tracking works Tobii Time-stamped gaze data plus semantics www.evocinsights.com Opportunities and

350 views • 9 slides
Should Go Hand in Hand with Privacy-Consequence Information: The Case of Smartphone Apps W3C

Should Go Hand in Hand with Privacy-Consequence Information: The Case of Smartphone Apps W3C

User Control Mechanisms for Privacy Protection Should Go Hand in Hand with Privacy-Consequence Information: The Case of Smartphone Apps W3C Workshop on Privacy and User Centric Controls 20 21 November 2014, Berlin, Germany Dipl.-Inf.

829 views • 15 slides

More recommend