location privacy
play

LOCATION PRIVACY Marc Langheinrich University of Lugano (USI), - PowerPoint PPT Presentation

Jul 03, 2023 •262 likes •892 views

LOCATION PRIVACY Marc Langheinrich University of Lugano (USI), Switzerland Securing a Mobile Phone Securing a Mobile Phone Securing a Mobile Phone Securing a Mobile Phone Can We Have it Both Ways? Safe Secure Privacy-friendly

  1. LOCATION PRIVACY Marc Langheinrich University of Lugano (USI), Switzerland

  2. Securing a Mobile Phone

  3. Securing a Mobile Phone

  4. Securing a Mobile Phone

  5. Securing a Mobile Phone

  6. Can We Have it Both Ways? • Safe • Secure • Privacy-friendly • Usable • Useful • Used

  7. Location Privacy WHAT IS PRIVACY?

  8. Privacy Is... But wait! There‘s more...

  9. Privacy: Hard To Define “Privacy is a value so complex , so entangled in competing and contradictory dimensions , so engorged with various and distinct meanings, that I sometimes despair Prof. Robert C. Post whether it can be usefully Yale Law School addressed at all.” Robert C. Post, Three Concepts of Privacy , 89 Georgetown Law Journal 2087 (2001). Original Slide from Lorrie Cranor: „ 8-533 / 8-733 / 19-608 / 95-818: Privacy Policy, Law, and Technology”, Fall 2008, CMU

  10. A Privacy Definition • “The right to be let alone.“ – Warren and Brandeis, 1890 (Harvard Law Review) • “Numerous mechanical devices threaten to make good the prediction that ’what is whispered in the closet shall be proclaimed from the housetops’“ Image source: http://historyofprivacy.net/RPIntro3-2009.htm

  11. Technological Revolution, 1888 George Eastman 1854-1932 Image Source: Wikipedia; Encyclopedia Britannica (Student Edition)

  12. The Location Revolution, 2010 Nokia Ovi Maps (turn-by-turn, free) Infineon XPOSYS GPS (2009) Rakon GPS (2006) Google Turn-by-Turn Navigation TomTom iPhone (2009) Trackstick 2

  13. Facets of Privacy SOLITUDE But wait! There‘s more...

  14. Information Privacy • “The desire of people to choose freely under what circumstances and to what extent they will expose themselves, their attitude and their behavior to others.“ Dr. Alan F. Westin – Alan Westin, 1967 Privacy And Freedom , Atheneum

  15. Facets of Privacy CONTROL

  16. Privacy Regulation Theory • Privacy as Accessibility Optimization: Inputs and Outputs – Not monotonic: “More“ is not always Irwin Altman “better“ University of Utah – Spectrum: Adjusting “Openness“/ “Closedness“ – Privacy levels: isolation > desired > crowding • Dynamic Boundary Negotiation Process – Neither static nor rule-based – Privacy as a social interaction process – Cultural, territorial, verbal mechanisms See, e.g., L. Palen, P. Dourish: “Unpacking "privacy" for a networked world.” Proceedings of CHI 2003. pp.129-136.

  17. Facets of Privacy INTIMACY

  18. Privacy – More Than Secrecy! Secrecy Safety Anonymity Privacy Freedom Solitude Dignity Control Intimacy

  19. WHY LOCATION PRIVACY?

  20. „Location“ Privacy? What‘s so special about „location“ that it is worth inventing a special category for it?

  21. Location Privacy Useful Definition?! Think Altman! • “… the ability to prevent other parties from learning one’s current or past location.“ Alastair Beresford Frank Stajano Cambridge Univ. Cambridge Univ. (Beresford and Stajano, 2003) • „It‘s not about where you are ... It‘s where you have been !“ • Gary Gale, Head of UK Engineering Gary Gale for Yahoo! Geo Technologies Yahoo! UK

  22. Motivating Disclosure • Why Share Your Location? – By-product of positioning technology (e.g., cell towers, WiFi, ...) – Required to use service (local recommendations, automated payment for toll roads, ...) – Social benefits (let friends and family know where I am, finding new friends, ...)

  23. GOOGLE LATITUDE

  25. LOOPT

  26. Images from: http://www.sensenetworks.com/media_center

  27. CITYSENSE Images from: http://www.sensenetworks.com/media_center

  28. Motivating Disclosure • Why Share Your Location? – By-product of positioning technology (e.g., cell towers, WiFi, ...) – Required to use service (local recommendations, automated payment for toll roads, ...) – Social benefits (let friends and family know where I am, finding new friends, ...) • Why NOT to Share Your Location? – Location profiles reveal/imply activities, interests, identity

  29. Location Implications • Places I Go – Where I Live / Work – Who I Am (Name) – Hobbies/Interests/Memberships • People I Meet – My Social Network • Profiling, e.g., – ZIP-Code: implies income, ethnicity, family size

  30. Implications: Profiles • Allow Inferences About You – May or may not be true! • May Categorize You – High spender, music afficinado, credit risk • May Offer Or Deny Services – Rebates, different prices, priviliged access • „ Social Sorting “ (Lyons, 2003) – Opaque decisions „channel“ life choices Image Sources: http://www.jimmyjanesays.com/sketchblog/paperdollmask_large.jpg http://www.queensjournal.ca/story/2008-03-14/supplement/keeping-tabs-personal-data/

  31. Not Orwell, But Kafka! 42

  32. Location Triangle Who Where When

  33. What To Protect Against • Protect against unwanted/accidential disclosure (friend finder services/Latitude) – Immediate disclosure vs. later „lookups“ • Protect against monitoring (nosy employer) – Monitoring breaks, work efficiency • Protect against commercial profiling – Excerting subtle influence over decisions • Against law enforcement – If you got nothing to hide, you got nothing to fear?

  34. The NTHNTF-Argument • „If you’ve got nothing to hide, you’ve got nothing to fear” UK Gov’t Campaign Slogan for CCTV (1994) • Assumption – Privacy is about hiding (evil/unethical) secrets • Implications – Privacy protects wrongdoers (terrorists, child molesters, …) – No danger for law-abiding citizens – Society overall better off without it! 47

  35. Dec. 2009

  36. Do People Care? Danezis, George, Lewis, Stephen, Anderson, Ross: How Much is Location Privacy Worth. Fourth Workshop on the Economics of Information Security, Harvard University (2005)

  37. End-User Attitudes Towards LBS • Clear value proposition • Simple and appropriate control and feedback Jason Hong CMU • Plausible deniability • Limited retention of data • Decentralized control • Special exceptions for emergencies Jason Hong: An Architecture for Privacy-Sensitive Ubiquitous Computing. PhD Thesis, Univ. of Califronia Berkeley, 2005. Available at www.cs.cmu.edu/~jasonh/publications/jihdiss.pdf

  38. A Brief Overview Of LOCATION PRIVACY TECHNOLOGY You Are Here (Somewhere, Kind of) Location slides courtesy of F. Mattern: Ubiquitous Computing Lecture, ETH Zurich

  39. Location Anonymity [Naïve Approach] • Use random IDs that change periodically – Trivial to trace

  40. Plan B: Strong Pseudonyms [Won‘t work either]

  41. Why Pseudonyms Don‘t Work • Observation Identification (OI) Attack – Correlate single identifiable observation with location pseudonym – ATM use @ location -> Name for pseudonym

  42. Observation Identifcation Attack

  43. Observation Identifcation Attack

  44. Observation Identifcation Attack

  45. Why Pseudonyms Don‘t Work • Observation Identification (OI) Attack – Correlate single identifiable observation with location pseudonym – ATM use @ location -> Name for pseudonym • Restricted Space Identification (RSI) Attack – Using known mapping from place to name – Home location -> Home address -> Name (Phonebook)

  46. Pseudonymous User Trace Img src: [Bereseford, Stajano 2003]

  47. Location Mix Zones [Countering RSI Attacks] • Address Restricted Space Identification Attacks – How to change pseudonyms? • Idea: Designate “Mix Zones“ Alastair Beresford Frank Stajano With No Tracking / LBS Active Cambridge Univ. Cambridge Univ. – Change pseudonyms only within mix zone – (Beresford and Stajano, 2003) offer probabilistic model for unlinkability in mix zones Alastair R. Beresford and Frank Stajano. Location privacy in pervasive computing. IEEE Pervasive Computing, 2(1):46–55, January 2003.

  48. k-Anonymity [Countering OI Attacks] • Concept from statistical DBs – Ensure that at least k users share identical information, even when multiple DBs are linked • Challenge: How do you publicly release a database without compromising privacy? – Problem: Anonymized data still subject to „observation attack“ (i.e., linking) – E.g.: Public voter‘s DB allows linking by age, ZIP See: Samarati, P., and Sweeney, L., Protecting privacy when disclosing information: k-anonymity and its enforcement through generalization and suppression , Tech Report SRI-CSL-98-04, 1998

  49. Location k-Anonymity LBS Anonymizer LBS Service (AS) LBS Dirk Grunwald Marco Gruteser Univ. of Colorado Rutgers Univ. • AS knows location of all users • Subdivides area until it contains at less than k users – Uses previous quadrant as „cloaking region“ in LBS query Gruteser, M. and Grunwald, D. Anonymous Usage of Location-Based Services Through Spatial and Temporal Cloaking. In Proc.of MobiSys 2003. ACM, pp 31-42

  50. Location k-Anonymity Issues • Global or individual k ? – Usability (What k to use?); Architecture (Possible?) • Simple, random cloaking regions allow inference of true location if repated queries occur • Postprocessing required on client (e.g., routing) • Quality of Service ( QoS ) degradation? • Note: Does not hide true location of user! – Protects agains observation identification attack

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt //

CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt //

CS573 Data Privacy and Security Location Privacy Location Privacy Yonghui (Yohu) Xiao htt // http://yxiao.info i i f Outline Outline What is Location Privacy Basic Techniques Private Information Retrieval Probabilistic

415 views • 24 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Location Privacy CompSci 590.03 Instructor: Ashwin Machanavajjhala Some slides are from a

Location Privacy CompSci 590.03 Instructor: Ashwin Machanavajjhala Some slides are from a

news.consumerreports.org Location Privacy CompSci 590.03 Instructor: Ashwin Machanavajjhala Some slides are from a tutorial by Mohamed Mokbel (ICDM 2008) Lecture 19: 590.03 Fall 12 1 Outline Location based services Location Privacy

920 views • 46 slides
Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole

Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole

Differential privacy and applications to location privacy Catuscia Palamidessi INRIA & Ecole Polytechnique 1 Plan of the talk General introduction to privacy issues A naive approach to privacy protection: anonymization Why it

740 views • 44 slides
Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Mobile Networks - Module H2 Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; privacy preserving routing in ad hoc networks; Slides adapted from Security and

909 views • 55 slides
Back to the Drawing Board: Revisiting the Design of Optimal Location Privacy-preserving

Back to the Drawing Board: Revisiting the Design of Optimal Location Privacy-preserving

Back to the Drawing Board: Revisiting the Design of Optimal Location Privacy-preserving Mechanisms Simon Oya, Carmela Troncoso, Fernando Prez-Gonzlez 1 Motivation. Obfuscation-Based Location Privacy. Location information is sensitive.

521 views • 20 slides
Subtleties of Location Privacy a special type of information privacy which concerns the

Subtleties of Location Privacy a special type of information privacy which concerns the

29.09.2007 Subtleties of Location Privacy a special type of information privacy which concerns the claim of individuals to determine for themselves when, how, and to what extent location information about them is communicated to others. A

197 views • 8 slides
User Controllable Location Privacy Lessons from the Development and Deployment of Location

User Controllable Location Privacy Lessons from the Development and Deployment of Location

User Controllable Location Privacy Lessons from the Development and Deployment of Location Sharing Apps Patrick Gage Kelley Faculty: Norman Sadeh, Lorrie Cranor, Jason Hong Post-Docs: Paul Hankes Drielsma, Eran Toch PhD Students: Jialiu

552 views • 18 slides
Existing LBS Privacy Existing LBS Privacy Solutions 1 7 8 Casper [Mok06] Reciprocity

Existing LBS Privacy Existing LBS Privacy Solutions 1 7 8 Casper [Mok06] Reciprocity

2 Location-Based Services (LBS) Private Queries in Location-Based Services: Find closest hospital to LBS users my present location Mobile devices with GPS Anonymizers are Not Necessary capabilities Gabriel Ghinita Gabriel

224 views • 6 slides
Location Privacy. Where do we stand and where are we going? Fernando Prez-Gonzlez Signal

Location Privacy. Where do we stand and where are we going? Fernando Prez-Gonzlez Signal

Location Privacy. Where do we stand and where are we going? Fernando Prez-Gonzlez Signal Theory and Communications Department Universidad de Vigo - SPAIN Why do we like location based apps? 2 Google maps 3 Foursquare 4 Facebook

1.3k views • 97 slides
W3C Workshop on Privacy for Advanced Web APIs 12-13 July, 2010 I. Krontiris, A. Albers,

W3C Workshop on Privacy for Advanced Web APIs 12-13 July, 2010 I. Krontiris, A. Albers,

W3C Workshop on Privacy for Advanced Web APIs 12-13 July, 2010 I. Krontiris, A. Albers, K. Rannenberg Chair of Mobile Business Goethe University Frankfurt ... location privacy ... 2 Location Privacy the

473 views • 18 slides
CS525: Who s Your Best Friend? Targeted Privacy Attacks In Location sharing Social Networks

CS525: Who s Your Best Friend? Targeted Privacy Attacks In Location sharing Social Networks

CS525: Who s Your Best Friend? Targeted Privacy Attacks In Location sharing Social Networks Wei Wang ECE Dept. Worcester Polytechnic Institute (WPI) Security and Privacy Problems in the mobile and cloud computing Security and Privacy

608 views • 19 slides
EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

28/05/15 Outline Data privacy and the evolving regulation Privacy threats from LBS to geoSN EveryWare Lab Main (location) privacy protection techniques Data Management for Mobile Protecting geo-tagged resource publication

411 views • 7 slides
Location Privacy in Practice Sonia Ben Mokhtar 26/06/2015 Thanks to Vincent Primault

Location Privacy in Practice Sonia Ben Mokhtar 26/06/2015 Thanks to Vincent Primault

Location Privacy in Practice Sonia Ben Mokhtar 26/06/2015 Thanks to Vincent Primault Outline 1. Context 2. Location-based services 3. Threats 4. Challenges 5. Anonymization techniques 6. Sum up 2 Who am I? CNRS researcher,

982 views • 59 slides
Location Obfuscation For Location Data Privacy Vaibhav Ankush Kachore, J. Lakshmi, S. K. Nandy

Location Obfuscation For Location Data Privacy Vaibhav Ankush Kachore, J. Lakshmi, S. K. Nandy

Location Obfuscation For Location Data Privacy Vaibhav Ankush Kachore, J. Lakshmi, S. K. Nandy Indian Institute of Science, Bangalore vaibhav_kachore@ssl.serc.iisc,.in, {jlakshmi, nandy}@serc.iisc.ernet.in Overview Motivation Encryption

521 views • 26 slides
Location Intelligence. Privacy Augsburg 2020 Anto Aasa http://aasa.ut.ee/augsburg Location

Location Intelligence. Privacy Augsburg 2020 Anto Aasa http://aasa.ut.ee/augsburg Location

Location Intelligence. Privacy Augsburg 2020 Anto Aasa http://aasa.ut.ee/augsburg Location intelligence (LI) or spatial intelligence process of deriving meaningful insight from geospatial data relationships to solve a particular

867 views • 83 slides
Welcome! Welcome and LISTEN! Keys to Inclusion meeting emotional needs of BOYS Colin Newton

Welcome! Welcome and LISTEN! Keys to Inclusion meeting emotional needs of BOYS Colin Newton

www.inclusive-solutions.com Welcome! Welcome and LISTEN! Keys to Inclusion meeting emotional needs of BOYS Colin Newton & Derek Wilson 2004 Setting the tone.. If we can teach our sons to honour and value Not all boys are

451 views • 5 slides
Knowledge Lifecycle Session 18 INST 301 Introduction to Information Science Wisdom Knowledge

Knowledge Lifecycle Session 18 INST 301 Introduction to Information Science Wisdom Knowledge

Knowledge Lifecycle Session 18 INST 301 Introduction to Information Science Wisdom Knowledge Information Data Information Hierarchy Data R aw facts Information Contextualized facts Knowledge Actionable

322 views • 30 slides
1 1 ! 2 3 4 Girls dont think that way

1 1 ! 2 3 4 Girls dont think that way

1 1 ! 2 3 4 Girls dont think that way !"#$%&'#()#*+,"#(%&)-#./#)%#-(&0(-1#$#&123#-( ! 4&-1#$(5#67#0(18+1(7)1#66#%1/+6(+576712(*$&9-( 5 6 Findings from different researchers suggest that certain

553 views • 34 slides
Travel Training Services Connecticut RTAP Training April 25, 2016 Easter Seals Transportation

Travel Training Services Connecticut RTAP Training April 25, 2016 Easter Seals Transportation

The Value of Travel Training Services Connecticut RTAP Training April 25, 2016 Easter Seals Transportation Group Multiple projects focusing on: Accessible transportation for people with disabilities Transportation for older adults

783 views • 30 slides
From Stone Tablets to Tablet Computers: Using Technology to Know and Serve Jesus James C.

From Stone Tablets to Tablet Computers: Using Technology to Know and Serve Jesus James C.

From Stone Tablets to Tablet Computers: Using Technology to Know and Serve Jesus James C. Denison, PhD CEO, Denison Forum May 16, 2018 First Baptist Church, Marble Falls, Texas Technology: Anything that was invented after you were

394 views • 37 slides
The Road to Reconciliation GENESIS 42-45 Opening Thoughts As we enter into Gen 42-45, Joseph is

The Road to Reconciliation GENESIS 42-45 Opening Thoughts As we enter into Gen 42-45, Joseph is

The Road to Reconciliation GENESIS 42-45 Opening Thoughts As we enter into Gen 42-45, Joseph is poised to fulfill the content of his two dreams Having interpreted others he is now about to live out his! Now remember, God is

585 views • 23 slides
NUCLEAR ISSUES CURRENT NUCLEAR STATUS Hiatus in development in U.S. and W. Europe Opportunity

NUCLEAR ISSUES CURRENT NUCLEAR STATUS Hiatus in development in U.S. and W. Europe Opportunity

TR 9903--01 ~ NUCLEAR ISSUES CURRENT NUCLEAR STATUS Hiatus in development in U.S. and W. Europe Opportunity for review of past and future BASES FOR OBJECTIONS TO NUCLEAR POWER Concerns about radiation exposures. reactor accidents, nuclear

357 views • 21 slides
April 10, 2008 Elizabeth Hanatuke Catholic Teaching on Family and Married Life Family is

April 10, 2008 Elizabeth Hanatuke Catholic Teaching on Family and Married Life Family is

April 10, 2008 Elizabeth Hanatuke Catholic Teaching on Family and Married Life Family is primary from the days of the Apostles and St. Paul The early Christians understood that they were the offspring of a new worldwide family of God

418 views • 25 slides

More recommend