obliviad provably secure and practical online behavioral
play

ObliviAd : Provably Secure and Practical Online Behavioral - PowerPoint PPT Presentation

Aug 15, 2022 •378 likes •744 views

ObliviAd : Provably Secure and Practical Online Behavioral Advertising [IEEE S&P 12] Michael Backes 1 , 2 Aniket Kate 1 Matteo Maffei 2 Kim Pecina 2 1 MPI-SWS, Germany 2 Saarland University, Germany Tracking in the Advertising World Today

  1. ObliviAd : Provably Secure and Practical Online Behavioral Advertising [IEEE S&P ’12] Michael Backes 1 , 2 Aniket Kate 1 Matteo Maffei 2 Kim Pecina 2 1 MPI-SWS, Germany 2 Saarland University, Germany

  2. Tracking in the Advertising World Today 2

  3. Tracking in the Advertising World Today 2

  4. Tracking in the Advertising World Today 2

  5. Tracking in the Advertising World Today 2

  6. Tracking in the Advertising World Today 2

  7. Outline Privacy-Preserving Online Behavioral Advertising Online Behavioral Advertising—OBA Privacy-Preserving OBA Goals Private Information Retrieval (PIR) using Trusted Hardware Our Solutions: ObliviAd Performance and Formal Analysis 3

  8. OBA 101 0. Registration 4

  9. OBA 101 1. Page Rendering 4

  10. OBA 101 2. Ad Request 4

  11. OBA 101 3. Ads Auction 4

  12. OBA 101 4. Ad Rendering 4

  13. OBA 101 5. Billing 4

  14. Privacy-Preserving OBA Privacy Goals Profile Privacy. The broker cannot associate any unit of learned information (e.g., clicked ads) with any user Profile Unlinkability. The broker cannot associate separate units of learned information with a single profile 5

  15. Privacy-Preserving OBA Privacy Goals Profile Privacy. The broker cannot associate any unit of learned information (e.g., clicked ads) with any user Profile Unlinkability. The broker cannot associate separate units of learned information with a single profile Systems Goals Client-side Fraud Detection. The likeliness of detection of clients’ malicious behaviors should not decrease Click Success Measures. Computations of success measures such as click-through rate should be possible Performance. Privacy-preserving mechanisms should not hamper the system performance and efficacy 5

  16. OBA with User-side Profiles does not provide the required privacy 6

  17. OBA with User-side Profiles does not provide the required privacy 6

  18. Private Information Retrieval—PIR 7

  19. Private Information Retrieval—PIR [Chor et al., FOCS’95] 7

  20. Private Information Retrieval—PIR [Chor et al., FOCS’95] The existing computational PIR solutions are not much better than downloading the complete database 7

  21. Oblivious RAM [Goldreich, STOC’87] Access privacy with ( O (log k n ) for k > 0 ) communication and computation 8

  22. PIR using ORAM and Trusted Hardware [Williams and Sion, NDSS’08] A secure coprocessor on the server performs ORAM with the database to answer client’s PIR queries 9

  23. ObliviAd : Distribution Phase 10

  24. ObliviAd : Tallying Phase 11

  25. ObliviAd : Tallying Phase 11

  26. ObliviAd : Tallying Phase 11

  27. ObliviAd : Tallying Phase 11

  28. ObliviAd : Features A provably secure privacy-preserving OBA architecture Without any reduction in the precision of ads selection No trusted third party Reasonable performance, which will only improve as the better ORAM constructions are available 12

  29. Prototype Implementation We adopt the binary tree-based ORAM construction by Shi et al. [AsiaCrypt’11] having O (log 2 ( n )) computation - Keyword-based ORAM instead of Index-based ORAM Microbenchmarks: Ad Distribution 1 . 2 Read operation 1 0 . 8 Time in s 0 . 6 0 . 4 0 . 2 0 10 15 20 25 30 Tree depth = log(#Ads) Experiment Setup: Intel i5 quad-core processor with 3.3 GHz and 8 GB RAM. The hard drive speed is 7200 RPM with 16 MB cache. Ad sizes: up to 40KB 13

  30. Performance Other computation and communication delays are not significant An implementation on the latest IBM 4765 PCIe cryptographic coprocessor is in progress 14

  31. Performance Other computation and communication delays are not significant An implementation on the latest IBM 4765 PCIe cryptographic coprocessor is in progress Possible Optimizations Database Replication and Concurrency Modifying Shi et al. scheme for efficiency - Evicting while reading More efficient ORAM constructions are expected in the near future 14

  32. Formal Analysis We modeled our protocol in the applied pi-calculus and used ProVerif to formally prove the correctness and privacy properties: Profile Privacy Profile Unlinkability Billing Correctness 15

  33. Other Possibilities Onion routing (Tor). Privacy through anonymity - What about (click) fraud detections? donottrack.us. Universal Web Tracking Opt Out - It may hamper the ad-world economy - A cat-and-mouse race Privad. Proxy-based Mixing [NSDI’11] - How to implement an honest-but-curious proxy? - Traffic Analysis Adnostic. Download a few (say 20) random ads [NDSS’10] - Quality of OBA 16

  34. Summary Privacy concerns in OBA are receiving an increasing attention Practical privacy-preserving OBA is possible without hampering - the quality ads and - the economic model of the ad network We are developing a complete implementation on IBM 4765 PCIe cryptographic coprocessor Project Webpage: http://www.lbs.cs.uni-saarland.de/obliviad 17

  35. Summary Privacy concerns in OBA are receiving an increasing attention Practical privacy-preserving OBA is possible without hampering - the quality ads and - the economic model of the ad network We are developing a complete implementation on IBM 4765 PCIe cryptographic coprocessor Project Webpage: http://www.lbs.cs.uni-saarland.de/obliviad Thanks! Aniket Kate www.mpi-sws.org/ ∼ aniket 17

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark

Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark

Computational Complexity Provably-secure constructions Problems with provably-secure constructions Attempts at practical constructions Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark Quo Vadis

874 views • 20 slides
Provably secure compilation of side-channel countermeasures: the case of cryptographic

Provably secure compilation of side-channel countermeasures: the case of cryptographic

Provably secure compilation of side-channel countermeasures: the case of cryptographic constant-time Gilles Barthe Benjamin Grgoire Vincent Laporte CSF18, 2018-07-12 Vincent Laporte et alii Provably secure compilation of

501 views • 25 slides
Towards a Provably Secure DoS-Resilient Key Exchange Protocol with PFS 1 L. Kuppusamy * J.

Towards a Provably Secure DoS-Resilient Key Exchange Protocol with PFS 1 L. Kuppusamy * J.

Introduction Contributions Conclusion Towards a Provably Secure DoS-Resilient Key Exchange Protocol with PFS 1 L. Kuppusamy * J. Rangasamy * D. Stebila * C. Boyd * J.M. Gonzlez Nieto * * Information Security Institute Queensland

943 views • 22 slides
Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its Verification Mads Dam KTH Royal Institute of Technology BISS spring school, Bertinoro 2018 The Goal Hypervisor Context switch: Fixed round-robin

1.16k views • 67 slides
Provably Secure Higher-Order Masking of AES Matthieu Rivain Emmanuel Prouff CryptoExperts

Provably Secure Higher-Order Masking of AES Matthieu Rivain Emmanuel Prouff CryptoExperts

Provably Secure Higher-Order Masking of AES Matthieu Rivain Emmanuel Prouff CryptoExperts Oberthur CHES 2010, Santa Barbara, Aug. 20 th CHES 2010 Provably Secure Higher-Order Masking of AES Outline 1 Introduction Higher-Order

1.1k views • 77 slides
Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute

Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute

Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute of Technology Thanks to Roberto Guanciale, Musard Balliu, Christoph Baumann, Hamed Nemati, Oliver Schwarz, Victor Do, Christian Gehrmann, Jonas

1.41k views • 114 slides
Threshold Implementations Svetla Nikova Threshold Implementations A provably secure

Threshold Implementations Svetla Nikova Threshold Implementations A provably secure

Threshold Implementations Svetla Nikova Threshold Implementations A provably secure countermeasure Against (first) order power analysis based on multi party computation and secret sharing 2 Outline Threshold Implementations

990 views • 58 slides
Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G.

Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G.

Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G. Paterson Information Security Group Royal Holloway, University of London Outline of the Talk Hierarchical Key Assignment Schemes Definition of

802 views • 48 slides
Robust Pseudonymous Identity for the Internet (A Practical Username & Password Replacement) S

Robust Pseudonymous Identity for the Internet (A Practical Username & Password Replacement) S

Robust Pseudonymous Identity for the Internet (A Practical Username & Password Replacement) S Q R L S ecure Q uick R eliable L ogin A simple, straightforward, open, intellectual property unencumbered, easily explained, provably secure,

898 views • 41 slides
Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur

Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur

PETS 2017 The 17th Privacy Enhancing T echnologies Symposium July 1821, 2017 Minneapolis, MN, USA Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur Rahaman 1 , Long Cheng 1 , Danfeng (Daphne)

650 views • 18 slides
Provably Secure Machine Learning Jacob Steinhardt ARO Adversarial Machine Learning Workshop

Provably Secure Machine Learning Jacob Steinhardt ARO Adversarial Machine Learning Workshop

Provably Secure Machine Learning Jacob Steinhardt ARO Adversarial Machine Learning Workshop September 14, 2017 Why Prove Things? Attackers often have more motivation/resources than defenders Heuristic defenses: arms race between attack and

738 views • 52 slides
Efficient and Provably Secure Methods for Switching from Arithmetic to Boolean Masking Blandine

Efficient and Provably Secure Methods for Switching from Arithmetic to Boolean Masking Blandine

Efficient and Provably Secure Methods for Switching from Arithmetic to Boolean Masking Blandine Debraize Leuven, September 10th, 2012 I NTRODUCTION 1 K NOWN TABLE - BASED METHODS 2 C ORON -T CHULKINE METHOD N EISSE -P ULKUS METHOD 3 C

413 views • 28 slides
Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint

Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint

Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint work with: Ivan De Oliveira Nunes 1 , Karim Eldefrawy 2 , Norrathep Rattanavipanon 1 University of California Irvine 1 , SRI International 2 1 In

847 views • 48 slides
Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis Matthieu

Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis Matthieu

8 + Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis Matthieu Rivain 1 , 2 , Emmanuelle Dottax 1 & Emmanuel Prouff 1 Oberthur Card Systems University of Luxembourg February 11, 2008 M. Rivain, E.

812 views • 64 slides
On the Need for Provably Secure Distance Bounding Serge Vaudenay COLE POLYTECHNIQUE

On the Need for Provably Secure Distance Bounding Serge Vaudenay COLE POLYTECHNIQUE

On the Need for Provably Secure Distance Bounding Serge Vaudenay COLE POLYTECHNIQUE FDRALE DE LAUSANNE http://lasec.epfl.ch/ SV 2012 distance bounding CIoT 2012 1 / 39 Introduction to Distance-Bounding 1 Some Insecurity Case

600 views • 39 slides
Provably Secure Camouflaging Strategy for IC Protection Meng Li 1 Kaveh Shamsi 2 Travis Meade 2

Provably Secure Camouflaging Strategy for IC Protection Meng Li 1 Kaveh Shamsi 2 Travis Meade 2

Provably Secure Camouflaging Strategy for IC Protection Meng Li 1 Kaveh Shamsi 2 Travis Meade 2 Zheng Zhao 1 Bei Yu 3 Yier Jin 2 David Z. Pan 1 1 Electrical and Computer Engineering, University of Texas at Austin 2 Electrical and Computer

683 views • 35 slides
Privacy Preserving Bandits Joint work with: Mohammad Malekzadeh (QMUL/Brave) Hamed

Privacy Preserving Bandits Joint work with: Mohammad Malekzadeh (QMUL/Brave) Hamed

Privacy Preserving Bandits Joint work with: Mohammad Malekzadeh (QMUL/Brave) Hamed Haddadi(ICL/Brave) Ben Livshits (ICL/Brave) Dimitrios Athanasakis (Brave) 02.03.2020 @dimmu Why this is an important topic Personalization

906 views • 23 slides
Mathematical Modeling of Competition in Sponsored Search Market Jerry Jian Liu and Dah Ming Chiu

Mathematical Modeling of Competition in Sponsored Search Market Jerry Jian Liu and Dah Ming Chiu

Mathematical Modeling of Competition in Sponsored Search Market Jerry Jian Liu and Dah Ming Chiu Department of Information Engineering The Chinese University of Hong Kong NetEcon10, October 3 rd , 2010 1 Outline Introduction The

555 views • 30 slides
CSE 258 Lecture 15 Web Mining and Recommender Systems AdWords Advertising 1. We cant

CSE 258 Lecture 15 Web Mining and Recommender Systems AdWords Advertising 1. We cant

CSE 258 Lecture 15 Web Mining and Recommender Systems AdWords Advertising 1. We cant recommend everybody the same thing (even if they all want it!) So far, we have an algorithm that takes budgets into account, so that users

591 views • 58 slides
Preference Networks in Matching Markets CSE 5339: Topics in Network Data Analysis Samir Chowdhury

Preference Networks in Matching Markets CSE 5339: Topics in Network Data Analysis Samir Chowdhury

Preference Networks in Matching Markets Preference Networks in Matching Markets CSE 5339: Topics in Network Data Analysis Samir Chowdhury April 5, 2016 Preference Networks in Matching Markets Market interactions between buyers and sellers form

568 views • 17 slides
Big Data Analytics Building Blocks. Simple Data Storage (SQLite) Duen Horng (Polo) Chau

Big Data Analytics Building Blocks. Simple Data Storage (SQLite) Duen Horng (Polo) Chau

http://poloclub.gatech.edu/cse6242 CSE6242 / CX4242: Data & Visual Analytics Big Data Analytics Building Blocks. Simple Data Storage (SQLite) Duen Horng (Polo) Chau Georgia Tech Partly based on materials by Professors Guy

693 views • 44 slides
Computer Poker Research at The University of Alberta Richard Gibson Computing Science Honours

Computer Poker Research at The University of Alberta Richard Gibson Computing Science Honours

Computer Poker Research at The University of Alberta Richard Gibson Computing Science Honours Seminar February 25, 2013 Games have been used to showcase advances in artificial intelligence... Checkers Source: spectrum.ieee.org Chess VS

993 views • 82 slides
IP over Optical Networks - A Framework draft-ip-optical-framework-01.txt Bala Rajagopalan James

IP over Optical Networks - A Framework draft-ip-optical-framework-01.txt Bala Rajagopalan James

IP over Optical Networks - A Framework draft-ip-optical-framework-01.txt Bala Rajagopalan James Luciani Daniel Awduche Brad Cain Bilel Jamoussi 1 IETF 7/31/00 About this Draft Deals with the following issues: IP transport over

606 views • 29 slides
Economics for Data Science Chiara Binelli Academic year 2019-2020 Email:

Economics for Data Science Chiara Binelli Academic year 2019-2020 Email:

Economics for Data Science Chiara Binelli Academic year 2019-2020 Email: chiara.binelli@unimib.it To Explain or to Predict? (Shmueli 2010) Causal and predictive modelling differs along 4 main dimensions: 1. Causation (x causes y) vs.

1.49k views • 24 slides

More recommend