attack methods on privacy preserving record linkage
play

Attack methods on privacy-preserving record linkage Peter Christen 1 - PowerPoint PPT Presentation

Jan 12, 2023 •275 likes •469 views

Attack methods on privacy-preserving record linkage Peter Christen 1 , Rainer Schnell 2 , Dinusha Vatsalan 1 , 3 , Thilina Ranbaduge 1 , and Anushka Vidanage 1 1 Research School of Computer Science, The Australian National University, Canberra 2

  1. Attack methods on privacy-preserving record linkage Peter Christen 1 , Rainer Schnell 2 , Dinusha Vatsalan 1 , 3 , Thilina Ranbaduge 1 , and Anushka Vidanage 1 1 Research School of Computer Science, The Australian National University, Canberra 2 Methodology Research Group, University Duisburg-Essen, Germany 3 CyberPhysical Systems Research Program, Data61, Sydney Contact: peter.christen@anu.edu.au Data61 PPRL workshop, Feb 2019 – p. 1/18

  2. Outline A short introduction to record linkage and privacy-preserving record linkage (PPRL) Bloom filter encoding for PPRL Cryptanalysis attack methods on Bloom filter based PPRL Our novel efficient cryptanalysis attack methods 1. Frequency based attack 2. Pattern mining based attack Outlook and recommendations Data61 PPRL workshop, Feb 2019 – p. 2/18

  3. What is record linkage? Increasingly, data from different sources need to be integrated and linked To allow analytics not possible on individual databases To improve data quality To enrich data with additional information Record linkage is the process of linking records that represent the same entity in one or more databases (patients, customers, tax payers, etc.) Lack of unique entity identifiers means that linking is often based on sensitive personal information When databases are linked across organisations, it is crucial to ensure privacy and confidentiality Data61 PPRL workshop, Feb 2019 – p. 3/18

  4. Privacy-preserving record linkage Objective: To link data across organisations such that besides the linked records (the ones classified to refer to the same entities) no information about the sensitive source data can be learned by any party involved in the linkage, or any external party Main challenges Have techniques that are scalable to linking large databases across multiple parties Allow for approximate linking of values Being able to asses linkage quality and completeness Have techniques that are not vulnerable to any kind of attack (frequency, dictionary, cryptanalysis, etc.) Data61 PPRL workshop, Feb 2019 – p. 4/18

  5. The PPRL process Database A Database B Data pre− Data pre− processing processing Privacy−preserving context Indexing / Searching Matches Classif− Non− Comparison Evaluation ication matches Potential Clerical Encoded data Matches Review Data61 PPRL workshop, Feb 2019 – p. 5/18

  6. Bloom filter encoding Schnell et al. (2009) pe et te er 1 0 1 0 0 0 1 1 1 0 0 1 0 1 Alice ‘peter’: x 1 = 7 , ‘pete’: x 1 = 5 , c = 5 , therefore sim Dice = 1 0 1 0 0 0 1 1 0 0 0 1 0 0 Bob 2 × 5/(7+5)= 10/12 = 0.83 pe et te Bloom filters are bit vectors initially all set to 0 Use k ≥ 1 hash functions to hash-map a set of elements by setting corresponding k bit positions to 1 For PPRL, a set of q -grams (from strings) are hash-mapped to allow approximate matching Dice similarity of two Bloom filters b 1 and b 2 is: 2 × c sim Dice (b 1 , b 2 ) = ( x 1 + x 2 ) , with: c = | b 1 ∩ b 2 | , x i = | b i | Single or multiple attribute values can be encoded into one BF (known as ABF or RBF) Data61 PPRL workshop, Feb 2019 – p. 6/18

  7. Attacks on Bloom filter based PPRL Publication Data set Num BF Correct Knowledge Kuzu et al. (2011) NCVR first names 3,500 11% k , fBF/PT Kuzu et al. (2013) Patient names 20 20% k , fBF/PT Niedermeyer et al. (2014) German surnames 7,580 12% k , DH, fBF/PT Kroll and Steinmetzer (’15) Names and locations 100K 44% k , DH, fBF/PT Mitchell et al. (2017) NCVR first / last names 474K 77% all! These cryptanalysis attacks mostly exploit the frequencies of 1-bit patterns within and between Bloom filters (only Mitchell et al. build a graph of possible q-grams encoded in a BF) They are feasible only for certain parameter settings and assumptions, and some of them require excessive computational resources (making them not really practical) Data61 PPRL workshop, Feb 2019 – p. 7/18

  8. A novel efficient attack method Our novel cryptanalysis attack is based on the construction principle of Bloom filters of hashing elements of q-gram sets into bit positions A 1-bit at a certain position means at least one of a set of q-grams was hashed to this position A 0-bit at a certain bit position means no q-gram of a set of q-grams could have been hashed to this position The attack is independent of the hash encoding function and its parameters used It can correctly re-identify sensitive values even when certain hardening techniques have been applied (such as balancing or xor-folding) It runs in a few seconds instead of hours Data61 PPRL workshop, Feb 2019 – p. 8/18

  9. Attack initialisation Public database BF database First name Freq Bloom filter Freq karen 231 [1,0,1,1,0,1] 242 BF 1 mary 171 [1,1,0,0,1,0] 184 BF 2 kate 109 [0,0,1,0,1,1] 115 BF 3 mareo 42 [0,1,0,1,1,1] 48 BF 4 ... ... ... ... p 1 p 2 p 3 ... p 6 We assume the attacker has access to a set of encoded Bloom filters and attribute values, and their frequencies As with existing attack methods, we assume the attacker knows what attribute(s) are encoded in the Bloom filters We frequency-align attribute values and Bloom filters We only consider frequent attribute values and Bloom filters as long as they have unique counts Data61 PPRL workshop, Feb 2019 – p. 9/18

  10. Attack step (1a) Public database BF database (1a) Position candidate sets + c First name Freq Bloom filter Freq = {ka,ar,re,en,ma,ry} [p ] 1 − karen 231 [1,0,1,1,0,1] 242 c = {ka,at,te,ma,ar,re,eo} [p ] BF 1 1 mary 171 [1,1,0,0,1,0] 184 + BF c = {ma,ar,ry,re,eo} 2 [p ] 2 kate 109 [0,0,1,0,1,1] 115 − BF 3 c = {ka,ar,re,en,at,te} [p ] 2 mareo 42 [0,1,0,1,1,1] 48 BF 4 + ... ... ... ... c = {ka,ar,re,en,at,te} [p ] 3 − p 1 p 2 p 3 ... p 6 c = {ma,ar,ry,re,eo} [p ] 3 ... ... For each bit position p in the Bloom filters, for all attribute values that have this bit set to 1 we add their q-grams to the set c + [p] of possible q-grams for that position (at least one q-gram of an attribute value was hashed to this position) For each bit position p in the Bloom filters, for all attribute values that have this bit set to 0 we add their q-grams to the set c − [p] of not possible q-grams for that position (no q-gram of an attribute value can be mapped to this position) Data61 PPRL workshop, Feb 2019 – p. 10/18

  11. Attack step (1b) Public database BF database (1b) Position q−gram sets First name Freq Bloom filter Freq + − karen 231 [1,0,1,1,0,1] 242 c = c \ c = {en,ry} [p ] [p ] [p ] BF 1 1 1 1 + − mary 171 [1,1,0,0,1,0] 184 BF c c c = \ = {ma,ry,eo} [p ] [p ] [p ] 2 2 2 2 kate 109 [0,0,1,0,1,1] 115 + − BF 3 c = c \ c = {ka,en,at,te} [p ] [p ] [p ] 3 3 3 mareo 42 [0,1,0,1,1,1] 48 ... ... BF 4 ... ... ... ... ... p 1 p 2 p 3 ... p 6 For each position p we obtain the set c[p] = c + [p] \ c − [p] Each c[p] is the set of possible q-grams that potentially have been hashed to position p We can now use the list C = [c[p 1 ] , . . . , c[p l ]] (where l is the length of the Bloom filters) to reconstruct attribute values mapped into a certain Bloom filter (based on the Bloom filter’s 0 / 1 bit pattern) Data61 PPRL workshop, Feb 2019 – p. 11/18

  12. Attack step (2) Public database BF database (2) Re−identify attribute values (BF ) 1 First name Freq Bloom filter Freq G = {karen, mary, kate, mareo} karen 231 [1,0,1,1,0,1] 242 .. BF 1 g = G c = {karen, mary} [p ] p mary 171 [1,1,0,0,1,0] 184 1 BF 1 2 g = g c = { } karen [p ] kate 109 [0,0,1,0,1,1] 115 BF 3 p p 3 3 1 mareo 42 [0,1,0,1,1,1] 48 BF 4 ... ... ... ... p 1 p 2 p 3 ... p 6 Given a set G of attribute values which we aim to map to Bloom filters (i.e. aim to re-identify) We analyse each frequent Bloom filter, and remove from G those attribute values that are not possible matches according to C because they do not contain any q-grams that would have been hashed to a certain 1-bit For example, kate is not possible for BF 1 because for the 1-bit in position p 1 it would need to contain either ‘en’ or ‘ry’ (from c[1] = {en, ry} ) Data61 PPRL workshop, Feb 2019 – p. 12/18

  13. A pattern mining based attack Based on the following observation: Assuming a q-gram q occurs in n q < n records in a plain-text database V that contains n = | V | records, and k ≥ 1 independent hash functions are used to encode q-grams from V into the encoded database B of n BFs, i.e. | V | = | B | . Then: 1. each BF bit position that can encode q must contain a 1-bit in at least n q BFs in B , and 2. if k > 1 then up to k bit positions must contain a 1-bit in the same subset of BFs B q ⊆ B , with n q = | B q | , that encode q . Data61 PPRL workshop, Feb 2019 – p. 13/18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy Preserving Record Linkage Linkage Elizabeth Ashley Durham Health Information Privacy

Privacy Preserving Record Linkage Linkage Elizabeth Ashley Durham Health Information Privacy

11/25/2010 Privacy Preserving Record Linkage Linkage Elizabeth Ashley Durham Health Information Privacy Lab Department of Biomedical Informatics Department of Biomedical Informatics Vanderbilt University Wednesday, 24 November, 2010 1 Record

766 views • 30 slides
A Tutorial on Techniques for Scalable Privacy-preserving Record Linkage Peter Christen 1 ,

A Tutorial on Techniques for Scalable Privacy-preserving Record Linkage Peter Christen 1 ,

A Tutorial on Techniques for Scalable Privacy-preserving Record Linkage Peter Christen 1 , Vassilios Verykios 2 , and Dinusha Vatsalan 1 1 Research School of Computer Science, ANU College of Engineering and Computer Science, The Australian

1.7k views • 101 slides
Privacy Preserving Probabilistic Record Linkage Duncan Smith (Duncan.G.Smith@Manchester.ac.uk)

Privacy Preserving Probabilistic Record Linkage Duncan Smith (Duncan.G.Smith@Manchester.ac.uk)

Privacy Preserving Probabilistic Record Linkage Duncan Smith (Duncan.G.Smith@Manchester.ac.uk) Natalie Shlomo (Natalie.Shlomo@Manchester.ac.uk) Social Statistics, School of Social Sciences University of Manchester The research leading to these

202 views • 16 slides
Advanced record linkage methods: scalability, classification, and privacy Peter Christen

Advanced record linkage methods: scalability, classification, and privacy Peter Christen

Advanced record linkage methods: scalability, classification, and privacy Peter Christen Research School of Computer Science, ANU College of Engineering and Computer Science, The Australian National University Contact: peter.christen@anu.edu.au

377 views • 34 slides
Genealogical Record Linkage: Features for Automated Person Matching Randy Wilson

Genealogical Record Linkage: Features for Automated Person Matching Randy Wilson

Genealogical Record Linkage: Features for Automated Person Matching Randy Wilson wilsonr@familysearch.org Record Linkage definition Record linkage is the process of identifying multiple records that refer to the same thing (in our case,

924 views • 36 slides
Using Structured Neural Networks for Record Linkage Burdette Pixton Christophe Giraud-Carrier

Using Structured Neural Networks for Record Linkage Burdette Pixton Christophe Giraud-Carrier

Using Structured Neural Networks for Record Linkage Burdette Pixton Christophe Giraud-Carrier Record Linkage Record Linkage is: the process of identifying similar people a necessary step in exchanging and merging pedigrees Record

565 views • 20 slides
Record Linkage Record Linkage Craig Knoblock University of Southern California These slides are

Record Linkage Record Linkage Craig Knoblock University of Southern California These slides are

Record Linkage Record Linkage Craig Knoblock University of Southern California These slides are based in part on slides from Sheila Tejada and Misha Bilenko Craig Knoblock University of Southern California 1 Record Linkage Problem Record

670 views • 45 slides
New Prediction Methods for Tree Ensembles with Applications in Record Linkage Samuel L. Ventura

New Prediction Methods for Tree Ensembles with Applications in Record Linkage Samuel L. Ventura

New Prediction Methods for Tree Ensembles with Applications in Record Linkage Samuel L. Ventura Rebecca Nugent Department of Statistics Carnegie Mellon University June 11, 2015 45th Symposium on the Interface Computing Science and Statistics

505 views • 26 slides
Record Linkage Methods William E. Winkler NISS/Telcordia Workshop on Data Quality Outline 1.

Record Linkage Methods William E. Winkler NISS/Telcordia Workshop on Data Quality Outline 1.

Record Linkage Methods William E. Winkler NISS/Telcordia Workshop on Data Quality Outline 1. Introduction 2. Fellegi-Sunter Theory 3. Parameter Estimation 4. Name and Address Standardization 5. String Comparators, 1-1 Matching 6. Error-Rate

761 views • 35 slides
Transformations for Record Linkage Matthew Michelson &amp; Craig A. Knoblock Fetch

Transformations for Record Linkage Matthew Michelson &amp; Craig A. Knoblock Fetch

Mining the Heterogeneous Transformations for Record Linkage Matthew Michelson &amp; Craig A. Knoblock Fetch Technologies USC Information Sciences Institute ICAI 2009 Record Linkage Source 1 Manager Restaurant Bobby Jones California

436 views • 15 slides
What is data (or record) linkage? Recent interest in data linkage The process of linking and

What is data (or record) linkage? Recent interest in data linkage The process of linking and

Data Linkage Techniques: What is data linkage? Past, Present and Future Applications and challenges Peter Christen The past A short history of data linkage Department of Computer Science, The Australian National University The present

428 views • 4 slides
Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU

Privacy Preserving Protocols Privacy Preserving Protocols Workshop on Cryptography for the Internet of Things Jens Hermans KU Leuven - COSIC 20 November 2012 Privacy Preserving Protocols Introduction Cryptography in Daily Life RFID Privacy

1.04k views • 60 slides
GNUnet A network protocol stack for building secure, distributed, and privacy-preserving

GNUnet A network protocol stack for building secure, distributed, and privacy-preserving

GNUnet A network protocol stack for building secure, distributed, and privacy-preserving application FOSDEM20 Martin Schanzenbach 2/2/2020 The Internet is under attack The Internet HTTP, Facebook, Google, Libra ... DNS / X.509 TCP /

631 views • 34 slides
A Semantic - based K - anonymity Scheme for Health Record Linkage Yang LU 1 , Richard O. SINNOTT

A Semantic - based K - anonymity Scheme for Health Record Linkage Yang LU 1 , Richard O. SINNOTT

A Semantic - based K - anonymity Scheme for Health Record Linkage Yang LU 1 , Richard O. SINNOTT and Karin VERSPOOR Department of Computing and Information System, The University of Melbourne, Melbourne, Australia Abstract. Record linkage is a

346 views • 7 slides
Probabilistic Record Linkage in Genealogical Research John Lawson, Dave White, Brenda Price and

Probabilistic Record Linkage in Genealogical Research John Lawson, Dave White, Brenda Price and

Probabilistic Record Linkage in Genealogical Research John Lawson, Dave White, Brenda Price and Ryan Yamagata Agenda Introduction Description of Probabilistic Record Linkage Applications to Quaker Records in N.C. Future Directions

412 views • 20 slides
Minimality Attack in Privacy Preserving Data Publishing Raymond Chi-Wing Wong (the Chinese

Minimality Attack in Privacy Preserving Data Publishing Raymond Chi-Wing Wong (the Chinese

Minimality Attack in Privacy Preserving Data Publishing Raymond Chi-Wing Wong (the Chinese University of Hong Kong) Ada Wai-Chee Fu (the Chinese University of Hong Kong) Ke Wang (Simon Fraser University) Jian Pei (Simon Fraser University)

745 views • 58 slides
Identifying Relative Sizes of Measurement Units within the Customary &amp; Metric Systems

Identifying Relative Sizes of Measurement Units within the Customary &amp; Metric Systems

Identifying Relative Sizes of Measurement Units within the Customary &amp; Metric Systems Demonstration Video Customary Length Inch = in. The distance between the knuckles on your index finger is approximately 1 inch. Foot = ft. Your

461 views • 32 slides
Language as an Interface Spencer Kelly introduction The pope is catholic. language as data

Language as an Interface Spencer Kelly introduction The pope is catholic. language as data

Language as an Interface Spencer Kelly introduction The pope is catholic. language as data language as an interface introduction (@spencermountain) introduction problem problem problem problem 4-gram: 3-gram: 2-gram: 1-gram: london

942 views • 30 slides
CIS 530: Logistic Regression Wrap-up SPEECH AND LANGUAGE PROCESSING (3 RD EDITION DRAFT)

CIS 530: Logistic Regression Wrap-up SPEECH AND LANGUAGE PROCESSING (3 RD EDITION DRAFT)

CIS 530: Logistic Regression Wrap-up SPEECH AND LANGUAGE PROCESSING (3 RD EDITION DRAFT) CHAPTER 5 LOGISTIC REGRESSION HW 2 is due tonight Leaderboards are before 11:59pm. live until then! Reminders Read Textbook Chapters 3 and 5

1.5k views • 85 slides
Lecture 10: Neural Language Models Princeton University COS 495 Instructor: Yingyu Liang Natural

Lecture 10: Neural Language Models Princeton University COS 495 Instructor: Yingyu Liang Natural

Deep Learning Basics Lecture 10: Neural Language Models Princeton University COS 495 Instructor: Yingyu Liang Natural language Processing (NLP) The processing of the human languages by computers One of the oldest AI tasks One of the

572 views • 34 slides
AITOK at the NTICR-14 OpenLiveQ-2 Tokushima University Hiroki Tanioka Good Morning! I am

AITOK at the NTICR-14 OpenLiveQ-2 Tokushima University Hiroki Tanioka Good Morning! I am

AITOK at the NTICR-14 OpenLiveQ-2 Tokushima University Hiroki Tanioka Good Morning! I am Hiroki Tanioka. I am here because I got a notice from OpenLiveQ-2. You can call me just Hiroki. 2 NTCIR-14 OpenLiveQ-2 WHAT WH T IS TA

365 views • 24 slides
Multilingual Aspects in Speech and Multimodal Interfaces Paolo Baggia Director of International

Multilingual Aspects in Speech and Multimodal Interfaces Paolo Baggia Director of International

Multilingual Aspects in Speech and Multimodal Interfaces Paolo Baggia Director of International Standards 1 1 Outline Loquendo Today Do we need multilingual applications? Voice is different from text? Current Solutions a Tour: Speech

438 views • 19 slides
Arabic Dialect Identification in the Context of Bivalency and Code-Switching Mahmoud EL-Haj Paul

Arabic Dialect Identification in the Context of Bivalency and Code-Switching Mahmoud EL-Haj Paul

Arabic Dialect Identification in the Context of Bivalency and Code-Switching Mahmoud EL-Haj Paul Rayson Mariam Aboelezz SCC, Lancaster SCC, Lancaster British Library University University @DocElhaj @perayson

398 views • 24 slides
Programming Languages and Machine Learning Martin Vechev DeepCode.ai and ETH Zurich PL Research:

Programming Languages and Machine Learning Martin Vechev DeepCode.ai and ETH Zurich PL Research:

Programming Languages and Machine Learning Martin Vechev DeepCode.ai and ETH Zurich PL Research: Last 10 years (sample) (Semi-) Automated Program Synthesis Mostly learning functions/algorithms over discrete spaces (from examples, natural

366 views • 36 slides

More recommend