protecting privacy by l sweeney
play

protecting privacy ( By L.Sweeney ) Presented by : Navreet Kaur - PowerPoint PPT Presentation

Sep 02, 2023 •280 likes •575 views

k-ANONYMITY: A model for protecting privacy ( By L.Sweeney ) Presented by : Navreet Kaur ROADMAP Data sharing and data privacy Related background work k-anonymity model Possible attacks against k-Anonymity Weaknesses of

  1. k-ANONYMITY: A model for protecting privacy ( By L.Sweeney ) Presented by : Navreet Kaur

  2. ROADMAP • Data sharing and data privacy • Related background work • k-anonymity model • Possible attacks against k-Anonymity • Weaknesses of k-Anonymity • Extensions • Conclusion

  3. Data Sharing : • Data sharing is making data used for scholarly research available to other investigators.* • An exponential growth in number and variety of data collection containing person specific information. • Collection of data is beneficial both in research and business. * http://en.wikipedia.org/wiki/Data_sharing

  4. Eg : Why Medical Data Sharing ? Support Health Medical Insurance Research Companies Measure effectiveness of medical treatments Tracking Contagious Diseases

  5. *

  6. Objective : ❏ Maximizing data utility while limiting disclosure risk to an acceptable level. ❏ How can a data holder release a version of its private data with guarantees that subjects of data cannot be re-identified and data is practically useful ?

  7. Existing Works : ❏ Statistical Databases : This technique involves various ways of adding noise while still maintaining some statistical invariance. Limitations : ● Destroys integrity of data.

  8. Existing works (contd) : ❏ Multi-level databases : ➔ Data is stored at different security classifications and users have different security clearances (Denning & Lunt). ➔ Suppression :Sensitive information and all information that allows inference of sensitive information is not released(Su and Ozsoyoglu). Limitations : • Protection only against known attacks. • Suppression reduces quality of data.

  9. Existing Works (contd): ❏ Computer Security : Computer security is not privacy protection. • It ensures that the recipient of information has the authority to receive information. • Only prevents direct disclosures. Privacy Protection : Release all the information such that identities of people who are subjects of data are protected.

  10. k- Anonymity : • It is a framework for constructing and evaluating algorithms & systems that release information such that released information limits what can be revealed about the properties of entities that are to be protected. • Eg: If you want to identify a person and the only information you have is gender and zip code - there should be at least k number of people meeting the requirement.

  11. Quasi Identifier : • Attributes which appear in private data and also appear in public data are candidates for linking, these attributes constitute the Quasi Identifier and disclosure of these attributes should be controlled. • Eg : {YOB, Gender, 3-digit Zip code} unique for 0.04% of US citizens vs {DOB, Gender, 5-digit Zip code} unique for 87% of US citizens* *Sweeney. Achieving k-anonymity privacy protection using generalization and suppression. IJUFKS. 2002

  12. Hospital Patient Data Voter Registration Data NAME DOB SEX ZIP DOB SEX ZIP DISEASE BETH 10/21/74 M 528705 10/21/74 M 528705 DIABETES BOB 4/5/85 M 528975 1/22/86 F 528718 BROKEN ARM KEELE 8/7/74 F 528741 8/12/74 M 528745 HEPATITIS MIKE 6/6/65 M 528985 5/7/74 M 528760 FLU LOLA 9/6/76 F 528356 4/13/86 F 528652 FLU BILL 8/7/69 M 528459 9/5/74 F 528258 BRONCHITIS ❖ Beth has diabetes

  13. Hospital Patient Data Voter Registration Data NAME DOB SEX ZIP YOB SEX ZIP DISEASE BETH 10/21/74 M 528705 1974 M 5287** DIABETES BOB 4/5/85 M 528975 1986 F 5287** BROKEN ARM KEELE 8/7/74 F 528741 1974 M 5287** HEPATITIS MIKE 6/6/65 M 528985 1974 M 5287** FLU LOLA 9/6/76 F 528356 1986 F 5286** FLU BILL 8/7/69 M 528459 1974 F 5282** BRONCHITIS Release of Data Preventing linking of data.

  14. k-Anonymity Protection Model : Let RT (A1…….An) be a table, QI RT be the quasi-identifier associated with it. RT is said to satisfy k-anonymity if and only if each sequence of values in RT [QI RT ] appears with at least k occurrences in RT[QI RT ],where : ❏ PT is private table. ❏ RT,GT1,GT2 are released tables. ❏ QI : Quasi Identifier ❏ (A1,A2,.....An) : Attributes Assumption : Data holder has already identified the Quasi Identifier.

  15. For every combination of values of quasi identifiers in the 2-anonymous table,there are at least 2 records that share those values. Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  16. Attacks against k-anonymity: ❏ Unsorted matching attack : This attack is based on the order in which the tuples appear in the released table. Solution : Randomly sort the tuples of the solution table. Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  17. Attacks against k-anonymity (contd): ❏ Complementary Release Attack : Subsequent releases of private data might compromise k-anonymity protection. Solution : • Consider attributes of previously released tables before releasing the new table. • Base the subsequent releases on the initially released table.

  18. Contemporary Attack (contd.) : Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  19. Contemporary Attack (Contd.) : Fig from- Sweeney: k-Anonymity: a Model for Protecting Privacy

  20. Attacks against k-anonymity(contd): ❏ Temporal attack : Data collections are dynamic. Adding,changing or removing tuples may compromise k-anonymity. Solution : • All the attributes released in an initial table should be considered as quasi identifiers for subsequent releases. • Subsequent releases should be based on initial releases. Conclude : K-Anonymity ensures that individuals cannot be identified by linking attacks

  21. A little more…..

  22. Limitations of k-anonymity: ❏ Homogeneity Attack :

  23. Limitations of k-Anonymity (contd.) ❏ Background Knowledge :

  24. Weaknesses of the paper : • How to identify a set of “Quasi Identifier”? • Dealing with large number of Quasi Identifiers could be problematic. It generalizes or suppresses quasi identifiers to protect data which reduces quality of data.

  25. Major Contribution • This paper was one of the most initial attempts in privacy protection. • It is used as a base for most of the privacy protection models.

  26. Extensions to k-Anonymity model: • l-Diversity • t-Closeness • a-k Anonymity • e-m Anonymity, range diversity • Personalized privacy

  27. Conclusion ❏ Data sharing is important. ❏ Data utility needs to be maximised while private data should be protected. ❏ For every combination of values of quasi identifiers in the k-anonymous table , there are at least k records that share those values. ❏ k-anonymity protects data against linking attacks. ❏ But it was extended further as : > k-anonymity can leak information due to lack of diversity. > k-anonymity does not protect against attacks based on background knowledge.

  28. Questions ?

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy in D.A.T.A. Latanya Sweeney, Ph.D. Assistant Professor of Computer Science, Technology

Privacy in D.A.T.A. Latanya Sweeney, Ph.D. Assistant Professor of Computer Science, Technology

Privacy in D.A.T.A. Latanya Sweeney, Ph.D. Assistant Professor of Computer Science, Technology & Policy Carnegie Mellon University latanya@privacy.cs.cmu.edu http://privacy.cs.cmu.edu/ The Question in this Talk Can computer scientists

801 views • 77 slides
Privacy, Economics, and Immediate Gratification: Why Protecting Privacy is Easy, But Selling It

Privacy, Economics, and Immediate Gratification: Why Protecting Privacy is Easy, But Selling It

Privacy, Economics, and Immediate Gratification: Why Protecting Privacy is Easy, But Selling It is Not Alessandro Acquisti Heinz School, Carnegie Mellon University PGuardian Technologies, Inc. acquisti@andrew.cmu.edu Why do we have great

1.13k views • 73 slides
Privacy & Security Matters: Privacy & Security Matters: Protecting Personal Data

Privacy & Security Matters: Privacy & Security Matters: Protecting Personal Data

Privacy & Security Matters: Privacy & Security Matters: Protecting Personal Data Protecting Personal Data Privacy & Security Project HIPAA: What it is Health Insurance Portability and Accountability Act of 1996 Also known as

445 views • 26 slides
Protecting Privacy in Connected Learning Linnette Attai Project Director, CoSN Protecting

Protecting Privacy in Connected Learning Linnette Attai Project Director, CoSN Protecting

Protecting Privacy in Connected Learning Linnette Attai Project Director, CoSN Protecting Privacy in Connected Learning and Trusted Learning Environment Programs Transforming Education Through Visionary Technology Leadership About CoSN:

640 views • 49 slides
Protecting Personally Identifiable Information (PII) Privacy Act Training for Housing Counselors

Protecting Personally Identifiable Information (PII) Privacy Act Training for Housing Counselors

Protecting Personally Identifiable Information (PII) Privacy Act Training for Housing Counselors Presented by the Office of Housing Counseling and The Office of the Chief Information Officer Privacy Program August 12, 2014 1 Protecting

590 views • 43 slides
#MicroFocusCyberSummit Cloud-based Data Privacy and Protection Protecting data and privacy

#MicroFocusCyberSummit Cloud-based Data Privacy and Protection Protecting data and privacy

#MicroFocusCyberSummit Cloud-based Data Privacy and Protection Protecting data and privacy across hybrid IT Farshad Ghazi - Moderator Mat Spitz Lacy Gruen #MicroFocusCyberSummit Reiner Kappenberger Cloud-based Data Privacy and Protection:

453 views • 10 slides
Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on

Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on

Protecting the Privacy of Investors: An Overview of the Regulatory Framework & Tips on Avoiding Threats May 28, 2015 Malcolm Townsend, IT Research Analyst Overview Background Trends Threat landscape Privacy regulatory

102 views • 8 slides
Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program

Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program

3/27/2015 Compliance Workshop Privacy & Security Protecting Personal Information & SNAP Program Considerations August 14, 2014 Presentation by: Jennifer L. Cox, J.D. Cox & Osowiecki, LLC Hartford, Connecticut 1 Todays Privacy &

475 views • 24 slides
EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

EU Art.29 Data Protection Users care about privacy Working Party From: Special Eurobarometer

28/05/15 Outline Data privacy and the evolving regulation Privacy threats from LBS to geoSN EveryWare Lab Main (location) privacy protection techniques Data Management for Mobile Protecting geo-tagged resource publication

411 views • 7 slides
K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang

K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang

K-anonymous algorithm in protecting privacy in social communication networks Jiacheng Wang 515030910412 ABSTRACT The rapid development of social communication network has increased the risk in privacy protection, the association between people has

385 views • 4 slides
A Privacy-Protecting Architecture for Collaborative Filtering via Forgery and Suppression of

A Privacy-Protecting Architecture for Collaborative Filtering via Forgery and Suppression of

A Privacy-Protecting Architecture for Collaborative Filtering via Forgery and Suppression of Ratings Javier Parra-Arnau , David Rebollo-Monedero and Jordi Forn http://sites.google.com/site/javierparraarnau/ Department of Telematics

920 views • 34 slides
Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda Protecting mobile devices and your privacy Protecting Mobile Devices and Your Privacy Before We Start The City of Phoenix does not

971 views • 52 slides
Ensuring Access to Information and Protecting Privacy Brian Beamish Commissioner Reaching Out

Ensuring Access to Information and Protecting Privacy Brian Beamish Commissioner Reaching Out

Ensuring Access to Information and Protecting Privacy Brian Beamish Commissioner Reaching Out to Ontario Queens University, Kingston May 4, 2016 Our Office The Information and Privacy Commissioner (IPC) provides an independent review

511 views • 36 slides
Protecting Your Privacy Training Module Introduction How private is your Internet experience?

Protecting Your Privacy Training Module Introduction How private is your Internet experience?

Welcome to the Protecting Your Privacy Training Module Introduction How private is your Internet experience? Introduction Laws concerning the privacy of 1 personal information vary from country to country. Many of the worlds legal

576 views • 26 slides
Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 /

Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 /

Protecting Your Privacy in the Digital Age Steve Revilak Software Freedom Day Sep. 21, 2013 1 / 26 State Surveillance Over the summer, weve learned about a number of NSA programs that spy on . . . , well, just about everyone.

753 views • 26 slides
Telemedicine Credentialing and Privileging Protecting Patient Privacy, Avoiding Fraud and Abuse

Telemedicine Credentialing and Privileging Protecting Patient Privacy, Avoiding Fraud and Abuse

Presenting a live 90 minute webinar with interactive Q&A Telemedicine Credentialing and Privileging Protecting Patient Privacy, Avoiding Fraud and Abuse Liability, Ensuring Quality Care WEDNES DAY, AUGUS T 21, 2013 1pm Eastern |

947 views • 61 slides
SR 520 Pr SR 520 Prog ogram am Sea eattle D ttle Design esign Commi Commissi ssion on SR

SR 520 Pr SR 520 Prog ogram am Sea eattle D ttle Design esign Commi Commissi ssion on SR

SR 520 Pr SR 520 Prog ogram am Sea eattle D ttle Design esign Commi Commissi ssion on SR 520 Rest of the West Design Team June 2, 2016 Design Presentation Overview Today, seeking endorsement of: Program Overview Refined Montlake

1.08k views • 93 slides
OMNI-CHANNEL BRAND DESIGN IN BANKING JON BLAKENEY I -AM, Group MD London Istanbul Mumbai

OMNI-CHANNEL BRAND DESIGN IN BANKING JON BLAKENEY I -AM, Group MD London Istanbul Mumbai

OMNI-CHANNEL BRAND DESIGN IN BANKING JON BLAKENEY I -AM, Group MD London Istanbul Mumbai Dubai THE BRAND EXPERIENCE PEOPLE London Istanbul Mumbai Dubai brand experiences WE DESIGN AND DELIVER 360 BRAND EXPERIENCES THAT DELIGHT

1.07k views • 79 slides
The wonderful world of CRISPR To do precise genetic engineering we need to be able to find and

The wonderful world of CRISPR To do precise genetic engineering we need to be able to find and

The wonderful world of CRISPR To do precise genetic engineering we need to be able to find and specifically modify regions of DNA But the human genome has 3,000,000,000 base pairs so how are we going to find a 20 base pair region in this huge

787 views • 43 slides
Partial Transmit Sequence (PTS) based PAPR reduction for OFDM using improved harmony search

Partial Transmit Sequence (PTS) based PAPR reduction for OFDM using improved harmony search

Introduction Proposed Method Experimental Results Conclusion References Partial Transmit Sequence (PTS) based PAPR reduction for OFDM using improved harmony search evolutionary algorithm BICT 2014 Mangal Singh, Sarat Kumar Patra Department

743 views • 31 slides
Transforming developing country agriculture: Adoption constraints and value chain development

Transforming developing country agriculture: Adoption constraints and value chain development

Transforming developing country agriculture: Adoption constraints and value chain development Alain de Janvry and Elisabeth Sadoulet University of California at Berkeley and FERDI Inclusive Ag and Rural Transformations: Building a shared

370 views • 14 slides
RNA From Mathematical Models to Real Molecules 3. Optimization and Evolution of RNA Molecules

RNA From Mathematical Models to Real Molecules 3. Optimization and Evolution of RNA Molecules

RNA From Mathematical Models to Real Molecules 3. Optimization and Evolution of RNA Molecules Peter Schuster Institut fr Theoretische Chemie und Molekulare Strukturbiologie der Universitt Wien CIMPA Genoma School Valdivia, 12.

968 views • 72 slides
Boulder County Flood Recovery Projects Road Construction and Creek Restoration Contractor

Boulder County Flood Recovery Projects Road Construction and Creek Restoration Contractor

Boulder County Flood Recovery Projects Road Construction and Creek Restoration Contractor Information Session August 11, 2016 Meeting Agenda Introductions Road/Creek Flood Recovery Approach and Goals Importance of Creek Restoration

330 views • 31 slides
Disclosures l My co-authors and I have no relevant financial or non-financial relationships to

Disclosures l My co-authors and I have no relevant financial or non-financial relationships to

4/3/2015 Utility of Ultrasound and MRI in Patients with Disorders of Sex Development Undergoing Prophylactic Gonadectomy Veronica I. Alaniz, MD, MPH, Melina Dendrinos, MD, Noam Smorgick- Rosenbaum, MD, Elisabeth H. Quint, MD Veronica I.

329 views • 8 slides

More recommend