security risks to third party genetic genealogy services
play

Security Risks to Third-Party Genetic Genealogy Services Peter Ney , - PowerPoint PPT Presentation

Feb 18, 2024 •153 likes •627 views

Security Risks to Third-Party Genetic Genealogy Services Peter Ney , Luis Ceze, Tadayoshi Kohno Direct-to-Consumer (DTC) Genetic Testing and Analysis DTC Testing Company Genetic Interpretation 23andMe Health, Ethnicity, Relative Prediction,

  1. Security Risks to Third-Party Genetic Genealogy Services Peter Ney , Luis Ceze, Tadayoshi Kohno

  2. Direct-to-Consumer (DTC) Genetic Testing and Analysis DTC Testing Company Genetic Interpretation 23andMe Health, Ethnicity, Relative Prediction, ... AncestryDNA MyHeritage Raw Genetic Data FamilyTreeDNA

  3. Direct-to-Consumer (DTC) Genetic Testing and Analysis DTC Testing Company Genetic Interpretation 23andMe Health, Ethnicity, Relative Prediction, ... AncestryDNA MyHeritage Raw Genetic Data FamilyTreeDNA 3rd-Party Genetic Service Genetic Interpretation Health, Ethnicity, Relative Prediction, ...

  4. Direct-to-Consumer (DTC) Genetic Testing and Analysis DTC Testing Company Genetic Interpretation 23andMe Health, Ethnicity, Relative Prediction, ... AncestryDNA MyHeritage Raw Genetic Data FamilyTreeDNA Research Focus 3rd-Party Genetic Service Genetic Interpretation Health, Ethnicity, Relative Prediction, ...

  5. Third-Party Genetic Genealogy Services Genetic Genealogy Database Alice’s Genetic Data Relative Matching Bob is Alice’s Sibling Bob Frank is Alice’s 2nd-Cousin Carol … ... Alice 1M+ Dan Frank

  6. Research Questions 1) Given the popularity of genetic genealogy services, what security and privacy issues might exist? Can these be demonstrated on a real service? 2) How does the design of a genetic genealogy service impact security? What might be done to make them more secure?

  7. Prior Attacks Against Genetic Genealogy Services: Identity Inference Anonymous DNA sample or genetic data Goal: identify the source (person) of an anonymous DNA sample or genetic data Research Dataset Crime Scene

  8. Prior Attacks Against Genetic Genealogy Services: Identity Inference Step 1 Anonymous DNA sample or genetic data Process sample and construct genetic files DTC Genetic Data Research Dataset Crime Scene (Unknown)

  9. Prior Attacks Against Genetic Genealogy Services: Identity Inference Genetic Genealogy Database Step 2 Unknown Genetic Data Relative Matching Bob Carol … Carol is a grandmother Frank is a cousin 1M+ Malory Dan Frank

  10. Prior Attacks Against Genetic Genealogy Services: Identity Inference Step 3 : Combine the relatives with other sources of information like genealogies to identify the source of the sample or data Law enforcement 100+ samples identified from ● crimes and unknown remains Suspected Golden State Killer ● Anonymous research data Ex: 1000 Genomes Data ( Erlich ● et al. Science. 2018)

  11. Hypothesis #1: Can We Extract Raw Genetic Markers from Other Users in a GG Database? Genetic Genealogy Database Artificial or Manipulated Genetic Data … Relative Matching Queries Bob Carol … … Malory 1M+ Dan Frank Matching Segments and Visualizations Bob

  12. Hypothesis #2: Can We Generate Artificial Relatives for Other Users in a GG Database? Genetic Genealogy Database Artificial or Manipulated Genetic Data Bob Carol … Malory is Bob’s second cousin Malory 1M+ Dan Frank

  13. Case Study on GEDmatch GEDmatch runs the largest third-party DTC ● genetic genealogy service Over 1.2 millions files have been uploaded ○ Used extensively by law enforcement ● Used to solve Golden State Killer case ○ Government contracting (Parabon ○ Nanolabs) Unidentified remains (DNA Doe Project) ○ Identity inference attacks demonstrated on ● GEDmatch ( Erlich et al. Science. 2018) Goal is to evaluate the feasibility of these ● new attacks on GEDmatch

  14. Experimental Setup on GEDmatch Account 1 Normal User Experimental Genetic X 5 GEDmatch Profiles Account 2 Adversary X n Artificial data Relative Matching Queries Relative Results and Visualizations

  15. Ethics of Data Uploads and Queries Uploaded all data to a sandboxed “Research” setting so that ● the uploaded files would not interact with real GEDmatch users Only ran queries with and analyzed results from data that we ● uploaded GEDmatch let’s you target relative matching queries against ○ specific data files ToS allowed artificial data uploads if: ● Intended for research ○ Not used to identify anyone in the database ○ IRB determined that research was exempt from review ● because the experimental data was derived from public sources with no identifiers

  16. Generating DTC Data Files for Experimentation # rsid chr pos genotype ● Include ~500,000-700,000 rs548049170 1 69869 TT genetic markers throughout rs13328684 1 74792 GG rs9283150 1 565508 GG the genome (called SNPs) rs116587930 1 727841 GG rs3131972 1 752721 GG ● No standardization (each rs12184325 1 754105 CC rs12567639 1 756268 AA company is slightly different) rs114525117 1 759036 GG ● Plain text CSV with 4 fields rs12124819 1 776546 AA rs12127425 1 794332 GG SNP identifier ○ rs79373928 1 801536 TT rs72888853 1 815421 TT Chromosome # ○ rs7538305 1 824398 AC Index within chromosome ○ rs28444699 1 830181 GG DNA bases rs116452738 1 834830 GG ○ Genetic Data File (GDF)

  17. Generating DTC Data Files for Experimentation # rsid chr pos genotype rs548049170 1 69869 TT rs13328684 1 74792 GG rs9283150 1 565508 GG rs116587930 1 727841 GG DTC Genetic Data Files ... ( 23andMe v5 SNP-chip ) # rsid chr pos genotype rs548049170 1 69869 TT rs13328684 1 74792 GG rs9283150 1 565508 GG rs116587930 1 727841 GG ... Whole genome sequence & variant data

  18. Generating DTC Data Files for Experimentation Programming Tools - Standard bioinformatics tools (e.g., samtools) to process variant files - Python scripts to parse genetic data files, modify SNPs, process web files, and run attack algorithms Dataset - Sample size for testing was small (5 target files) and all 23andMe files. Choose this to limit impact on the GEDmatch service. - 1000 Genomes data came from same sub-population

  19. Relative Matching on GEDmatch Chromosome 7 Long shared segments of DNA are ● Aunt indicative of recent shared ancestry More and longer shared segments ● means a closer relationship Matching Segments Relative matching algorithms try ● to identify these shared segments between users GEDmatch uses proprietary ● Nephew algorithms to identify matching DNA segments

  20. Populated User Account with Genetic Data Files Uploaded Genetic Data Files

  21. Relative Matching on GEDmatch Easily scrape the query results and Direct relative matching query visualizations between two users Coordinates of IBD Segments Relationship Chromosome Estimate Visualization

  22. Hypothesis #1: Can We Extract Raw Genetic Markers from Other Users in a GG Database? Genetic Genealogy Database Artificial or Manipulated Genetic Data … Relative Matching Queries Bob Carol … … Malory 1M+ Dan Frank Matching Segments and Visualizations Bob

  23. GEDmatch Visualizations and Segments 18M 64M 159M 164M Both visualizations leak information about the underlying DNA markers in other genetic files.

  24. GEDmatch Visualizations and Segments Matching algorithms and visualizations were proprietary so it was necessary to run a number of experiments to figure out how they were working. Regular file Modified data file

  25. GEDmatch Visualizations and Segments Hypothesis Matching algorithms and visualizations were 1) At high resolution these proprietary so it was pixels seemed to correspond necessary to run a number of to individual markers experiments to figure out 2) Many markers seemed to be missing how they were working. 3) Results not phased GT == TG GG == TG GG == TT Regular file Modified data file

  26. GEDmatch Visualizations and Segments Hypothesis Matching algorithms and visualizations were proprietary so it was A section of chromosome is considered a shared segment if necessary to run a number of the files match on a single base experiments to figure out for a run of consecutive markers how they were working. # rsid chr pos genotype rs548049170 1 69869 TT rs13328684 1 74792 GG rs9283150 1 565508 GG rs116587930 1 727841 GG rs3131972 1 752721 GG rs12184325 1 754105 CC rs12567639 1 756268 AA Regular file Modified data file

  27. Genetic Extraction Experiments with Marker Visualizations Unknown Known Ran attack 5 times (one for each 20X experimental file) Direct Relative Matching Queries Collected visualizations from Chrome browser (20 comparisons x 22 autosomes = 440 per attack) Process visualizations with python scripts implementing a mastermind-like 1 4 7 12 17 22 28 37 42 44 45 67 70 72 algorithm to infer which markers went with which pixels

  28. Genetic Extraction Experiments with Marker Visualizations Known (from attacker file) 1 4 7 12 17 22 28 37 42 44 45 A A G T T GC G G CG A T 1 4 7 12 17 22 28 37 42 44 45 A C C T C G G A G A A G C T C G G CG C T Unknown + A A G C C C T A C G Fill in the gaps using a statistical technique 1 2 3 4 6 7 8 9 10 11 12 13 14 5 called genetic imputation. Relied on a A A G C T C G G CG C T T A T publicly available genetic imputation A A G C C C T A C G G C T service run by the Sanger Institute.

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Security Risks to Third-Party Genetic Genealogy Services Peter Ney , Luis Ceze, Tadayoshi Kohno

Security Risks to Third-Party Genetic Genealogy Services Peter Ney , Luis Ceze, Tadayoshi Kohno

Security Risks to Third-Party Genetic Genealogy Services Peter Ney , Luis Ceze, Tadayoshi Kohno Direct-to-Consumer (DTC) Genetic Testing and Analysis DTC Testing Company Genetic Interpretation 23andMe Health, Ethnicity, Relative Prediction,

620 views • 34 slides
SECURITY. RISKS. COMPLIANCE. How Can Third Party Assurance Help Your Business Drive

SECURITY. RISKS. COMPLIANCE. How Can Third Party Assurance Help Your Business Drive

SECURITY. RISKS. COMPLIANCE. How Can Third Party Assurance Help Your Business Drive Efficiencies and Build Market Trust? IIA/ISACA Chicago Hacking Conference October 28, 2019 BDO USA, LLP, a Delaware limited liability partnership, is the U.S.

153 views • 13 slides
What will be covered? A little about me Why I do genealogy The Book of Me Written by You How I

What will be covered? A little about me Why I do genealogy The Book of Me Written by You How I

Handouts for Genealogy Presentation 06/11/2016 What will be covered? A little about me Why I do genealogy The Book of Me Written by You How I started my genealogy How to start your genealogy Facebook, Geni and My Heritage Your Digital

333 views • 20 slides
School Health and Related Services Third Party Liability Recoveries and Medicaid 1 Third Party

School Health and Related Services Third Party Liability Recoveries and Medicaid 1 Third Party

School Health and Related Services Third Party Liability Recoveries and Medicaid 1 Third Party Liability HHSC is required by the Social Security Act to seek out reimbursement for covered services from legally liable third parties before

458 views • 11 slides
Overview of the USCIS Genealogy Program December 14, 2016 An Introduction to the USCIS Genealogy

Overview of the USCIS Genealogy Program December 14, 2016 An Introduction to the USCIS Genealogy

Overview of the USCIS Genealogy Program December 14, 2016 An Introduction to the USCIS Genealogy Program Zack Wilske USCIS History Office USCIS U.S. Citizenship and Immigration Services (USCIS) is the government agency that oversees lawful

446 views • 42 slides
Gen enea ealog ogy y @ MFPL Generations Genealogy Interest Group is a monthly program for

Gen enea ealog ogy y @ MFPL Generations Genealogy Interest Group is a monthly program for

Gen enea ealog ogy y @ MFPL Generations Genealogy Interest Group is a monthly program for new and intermediate genealogists wanting to learn more about genealogy. Additional Genealogy Classes Genealogy Software Basics Saturday, November

553 views • 5 slides
Supreme Leader Pulkit Party!!!!!! Party!!!!!! Just us Party!!!!!! What we have done

Supreme Leader Pulkit Party!!!!!! Party!!!!!! Just us Party!!!!!! What we have done

Supreme Leader Pulkit Party!!!!!! Party!!!!!! Just us Party!!!!!! What we have done Party!!!!!! Party!!!!!! Curling Orientation Party!!!!!! Party!!!!!! Party!!!!!! National day parade Airport picking-uping Party!!!!!!

1.18k views • 69 slides
Mtis Genealogy 101 26 March 2013 - Sudbury, Ontario Goals Confirm your Mtis genealogy

Mtis Genealogy 101 26 March 2013 - Sudbury, Ontario Goals Confirm your Mtis genealogy

Mtis Genealogy 101 26 March 2013 - Sudbury, Ontario Goals Confirm your Mtis genealogy and ancestors. What do we mean by genealogy? Original a study of family lineage starting with the oldest known ancestors and tracing down to the

432 views • 22 slides
1 X.800 Security Services X.800 Security Services X.800 Security Services Data integrity

1 X.800 Security Services X.800 Security Services X.800 Security Services Data integrity

Course Overview Course Requirements EECS 498-7/8 Cryptography and Network Security: www.citi.umich.edu/u/honey/security Principles and Practice (Third Edition) Computer Security Monday & Friday, 9:00 10:30 William Stallings

670 views • 19 slides
Irish Genealogy Resources & Dan Boyle Genealogy Club January 13, 2016 My BreakThrough to

Irish Genealogy Resources & Dan Boyle Genealogy Club January 13, 2016 My BreakThrough to

Irish Genealogy Resources & Dan Boyle Genealogy Club January 13, 2016 My BreakThrough to Ireland Start with what you know. -Genealogy Standard Martin Boyle Boyle Family 1894 North Dakota Sheldon, ND Sheldon, ND Sheldon, ND

500 views • 35 slides
Automatically Recreating Probabilistic History through Genealogy Robert Ball and Patrick Beck

Automatically Recreating Probabilistic History through Genealogy Robert Ball and Patrick Beck

Automatically Recreating Probabilistic History through Genealogy Robert Ball and Patrick Beck School of Computing Weber State University What is the importance of non-religious genealogy? People form identities based on their genealogy.

319 views • 6 slides
Lecture: Genetic Basis of Complex Phenotypes 02-715 Advanced Topics in

Lecture: Genetic Basis of Complex Phenotypes 02-715 Advanced Topics in

Lecture: Genetic Basis of Complex Phenotypes 02-715 Advanced Topics in Computa8onal Genomics Genome Polymorphisms A Human TCGAGGTATTAAC Genealogy The ancestral chromosome From SNPS

490 views • 36 slides
Gedcom CGI Protocol and Web Services John Finlay PhpGedView Project Manager The Problem We

Gedcom CGI Protocol and Web Services John Finlay PhpGedView Project Manager The Problem We

Gedcom CGI Protocol and Web Services John Finlay PhpGedView Project Manager The Problem We need a way to inter-connect different genealogy systems GEDCOM provides a standard for encoding genealogy data, but we still lack a common

354 views • 11 slides
Security in the age of social media Exploring the benefits and security risks Please note the

Security in the age of social media Exploring the benefits and security risks Please note the

Sponsored by Security in the age of social media Exploring the benefits and security risks Please note the audio line will remain silent until 5 minutes before the webcast commences. Join our expert panel to discuss your security issues

481 views • 24 slides
Finding Third - party Risks Fourteenforty Research Institute, Inc.

Finding Third - party Risks Fourteenforty Research Institute, Inc.

Fourteenforty Research Institute, Inc. Kyoto, 2012 FIRST Technical Colloquium Sma martphone tphone Securi ecurity ty and Finding Third - party Risks Fourteenforty Research Institute, Inc. http://www.fourteenforty.jp Tsukasa Oi

644 views • 36 slides
zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Genealogy Fair 2013 Wednesday, September 4,

zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Genealogy Fair 2013 Wednesday, September 4,

zyxwvutsrqponmlkjihgfedcbaZYXWVUTSRQPONMLKJIHGFEDCBA Genealogy Fair 2013 Wednesday, September 4, 10 A . M .5 P . M . (EDT) TIME # LECTURE TITLE PRESENTER Genealogy and the Freedmans Bank: Damani Davis 10 A.M. Records of the

517 views • 36 slides
EQUIVALENCE OF CHEMICAL REACTION NETWORKS IN A CRN-TO-DNA COMPILER FRAMEWORK Stefan Badelt and

EQUIVALENCE OF CHEMICAL REACTION NETWORKS IN A CRN-TO-DNA COMPILER FRAMEWORK Stefan Badelt and

EQUIVALENCE OF CHEMICAL REACTION NETWORKS IN A CRN-TO-DNA COMPILER FRAMEWORK Stefan Badelt and Erik Winfree DNA and Natural Algorithms (DNA) Group, Caltech Oxford, July, 19 , 2018 th VEMDP 2018 1 MOLECULAR PROGRAMMING (in terms of the

584 views • 40 slides
Can We Store the Whole Worlds Data in DNA Storage? HotStorage20 Bingzhe Li , Nae Young

Can We Store the Whole Worlds Data in DNA Storage? HotStorage20 Bingzhe Li , Nae Young

Can We Store the Whole Worlds Data in DNA Storage? HotStorage20 Bingzhe Li , Nae Young Song, Li Ou, and David H.C. Du University of Minnesota, Twin Cities C enter for R esearch in I ntelligent S torage Outlines Motivation DNA

354 views • 17 slides
Bioinformatics pipeline for revealing tumour heterogeneity Mustafa Anl Tuncel Department of

Bioinformatics pipeline for revealing tumour heterogeneity Mustafa Anl Tuncel Department of

Bioinformatics pipeline for revealing tumour heterogeneity Mustafa Anl Tuncel Department of Biosystems Science and Engineering Bioinformatics pipeline for revealing tumour heterogeneity. |. Mustafa Anl Tuncel | 10.07.19 | 1 Mustafa

599 views • 25 slides
Jerusalem Science Contest DNA based Paternity

Jerusalem Science Contest DNA based Paternity

Jerusalem Science Contest DNA based Paternity Identification as applied within Judaism DNA as a tool in the Halacha decision process Based upon this essay Blood Tests and DNA - Part 2 by Rabbi Chaim

217 views • 10 slides
Sheldon Campbell M.D., Ph.D. Pathology and Laboratory Medicine, VA Connecticut Department of

Sheldon Campbell M.D., Ph.D. Pathology and Laboratory Medicine, VA Connecticut Department of

Sheldon Campbell M.D., Ph.D. Pathology and Laboratory Medicine, VA Connecticut Department of Laboratory Medicine, Yale School of Medicine Participants should be able to: Describe the basic work-flow of molecular diagnostic testing.

887 views • 51 slides
Nonequilibrium effects in DNA microarrays: a multiplatform study Jean-Charles Walter KU Leuven,

Nonequilibrium effects in DNA microarrays: a multiplatform study Jean-Charles Walter KU Leuven,

Introduction : DNA and microarrays Two- and Three-state models Analysis of experimental data Nonequilibrium effects in DNA microarrays: a multiplatform study Jean-Charles Walter KU Leuven, Belgium Collaborators : Myriam Kroll , Jef Hooyberghs

393 views • 22 slides
Cell free DNA: Disclosures The Popular Press vs The Evidence Mary E Norton, MD Professor of

Cell free DNA: Disclosures The Popular Press vs The Evidence Mary E Norton, MD Professor of

6/5/2014 Cell free DNA: Disclosures The Popular Press vs The Evidence Mary E Norton, MD Professor of Obstetrics, Gynecology & Reproductive Sciences; UCSF Principal Investigator of ongoing clinical trial Antepartum and Intrapartum

205 views • 18 slides
Stochastic hybrid models for DNA replication in the fission yeast John Lygeros Automatic Control

Stochastic hybrid models for DNA replication in the fission yeast John Lygeros Automatic Control

Stochastic hybrid models for DNA replication in the fission yeast John Lygeros Automatic Control Laboratory, ETH Zrich www.control.ethz.ch Outline 1. Hybrid and stochastic hybrid systems 2. Reachability & randomized methods 3. DNA

682 views • 44 slides

More recommend