the price of free privacy leakage in personalized mobile
play

The Price of Free: Privacy Leakage in Personalized Mobile In-App Ads - PowerPoint PPT Presentation

Nov 10, 2022 •222 likes •576 views

The Price of Free: Privacy Leakage in Personalized Mobile In-App Ads Wei Meng, Ren Ding, Simon P. Chung, Steven Han, Wenke Lee College of Computing Georgia Institute of Technology Outline Background & Motivation Methodology

  1. The Price of Free: Privacy Leakage in Personalized Mobile In-App Ads Wei Meng, Ren Ding, Simon P. Chung, Steven Han, Wenke Lee College of Computing Georgia Institute of Technology

  2. Outline • Background & Motivation • Methodology • Characterization of Mobile Ad Personalization • Privacy Leakage through Personalized Mobile Ads • Discussion 2

  3. Mobile In-App Ad Ecosystem $$$ $$$ Advertiser Advertiser $$$ $$$ Ad Request {User: XYZ, App: 003 } Ad Request {User: XYZ, App: 074} Advertiser Advertiser Ad Network Ad Request {User: XYZ, App: 059} } 8 Ad personalized 2 0 : Ad personalized p p A for XYZ , Z for XYZ Y Ad personalized X Ad personalized : r e $$ s U for XYZ { t for XYZ s e u q e R d A $$

  4. Previous & Recent Work on Mobile Advertising • Targeting & personalization [SmartAds (MobiSys’13), MAdScope (MobiSys’15)] • Privilege abuse by mobile ad libraries [AdSplit (Security’12), AdDroid (ASIACCS’12), LayerCake (Security’13), …] • Fraud in mobile advertising [AdSplit (Security’12), LayerCake (Security’13), DECAF (NSDI’14)] • Privacy-Preserving mobile advertising [M. Götz, etc. (CCS’12)] 4

  5. Mobile (Android) In-App Ad Ecosystem $$$ $$$ Advertiser Advertiser $$$ $$$ Advertiser Advertiser Ad Network Ad Request {User: XYZ, App: 059} } 8 2 0 : p p A , Z Y Ad personalized X Ad personalized : r e s U for XYZ { t for XYZ s e u q e R d A $$ $$

  6. This Work • Characterizing mobile in-app ad personalization for real people • What personal information about real end users a dominate ad network such as Google know and use in personalized mobile advertising? • Estimating mobile app’s ability of learning about a user by observing personalized ads • Can an adversary with access to personalized mobile ads gain any information about real users? 6

  7. Outline • Background & Motivation • Methodology • Characterization of Mobile Ad Personalization • Privacy Leakage through Personalized Mobile Ads • Discussion 7

  8. Personal Information of Interest • Interest Profile • {Music, Games, Sports, …} • Demographics • Age, Gender, Education, Income, Ethnicity, Political Affiliation, Religion, Marital Status, Parental Status https://support.google.com/adwords/answer/2580383?hl=en 8

  9. Challenges and Our Approaches • Triggering personalization based on target attributes of our interest • Using synthetic user profile is circular • Does ad network know users’ gender? -> • (We do not know how ad network knows users’ gender ->) • Let us build profiles for male and female users -> • Observation: Ads are not correlated with “gender” -> • Ad network does not use / know users’ gender. Really??? • Our approach: Using profiles of real users 9

  10. Challenges and Our Approaches (cont.) • Isolating personalization from other target attributes • Many attributes may affect ad personalization • App developers could provide target attributes through ad library APIs • Ads may be personalized based on user’s geolocation • Our approach: Collecting data in an isolated app 10

  11. Ad Collection • Our “Mobile Ad Study” app • Connects user’s device to our VPN server (Isolating geolocation) • Serves Google AdMob ads only • Provides no target attributes through ad library API (Isolating other information, not including device information that ad library can access) • Collects the list of installed apps that include Google AdMob SDK 11

  12. Subject Recruitment • Human Intelligence Task on Amazon Mechanical Turk • Complete questionnaire regarding participant’s interests and demographic information • Use our data collection app to load 100 ads from Google AdMob • We collected 217 valid responses from 284 participants 12

  13. Subject Distribution Gender Political Affiliation Parental Status Income Inde- Demo- Repub- Not a $30K- Female Male Parent < $30K > $60K pendent crat lican parent $60K 95 122 108 80 29 128 89 107 67 43 43.78% 56.22% 49.77% 36.87% 13.36% 58.99% 41.01% 49.31% 30.87% 19.82% Religion Marital Status Education Separa- High Associa- Bachelor Master & Non- Atheist Christian Christian Single Married ted school tes Doctoral 83 47 88 124 73 20 78 50 71 18 37.79% 21.66% 40.55% 57.14% 33.64% 9.22% 35.94% 23.04% 32.72% 8.30% Age Ethnicity Cauca- African 18-24 25-34 35-44 45-54 55+ Other Hispanic Asian American sian 45 106 47 14 5 8 12 12 23 162 20.74% 48.85% 21.66% 6.45% 2.30% 3.69% 5.53% 5.53% 10.60% 74.65% 13

  14. Subject distribution (cont.) 14

  15. Outline • Background & Motivation • Methodology • Characterization of Mobile Ad Personalization • Privacy Leakage through Personalized Mobile Ads • Discussion 15

  16. Dataset • We collected 695 unique ads which resulted in 39,671 ad impressions delivered to 217 users 16

  17. Interest Profile Based Personalization P user P ad Beauty & Finance Fitness Home & Games Garden Art & Sports Entertainment • Precision: |P user ∩ P ad | / |P ad | • Recall: |P user ∩ P ad | / |P user | 17

  18. Interest Profile Based Personalization - Precision 18

  19. Interest Profile Based Personalization - Recall 19

  20. Demographics Based Personalization • We clustered users into different demographic groups • We tested the independence of ads and each demographic category • Pearson’s chi-squared test of independence • Null hypothesis: ad is independent of a demographic category • Significance level (P-value): 0.005 • An ad is “personalized” based on the demographic category under test if null hypothesis is rejected 20

  21. Demographics Based Personalization - Unique Ads 21

  22. Demographics Based Personalization - Ad Impressions 22

  23. Summary • Both interest profile based personalization and demographics based personalization were prevalent in mobile in-app advertising 23

  24. Outline • Background & Motivation • Methodology • Characterization of Mobile Ad Personalization • Privacy Leakage through Personalized Mobile Ads • Discussion 24

  25. Classification Models of Demographic Information • Features • Number of impressions of ads that are correlated with each demographic category • List of installed app that include Google AdMob SDK • Evaluation • 217 samples were randomly divided into 5 sets for 5-fold cross validation • Metric for evaluating severity of privacy leakage • Cross validated accuracy (mean of accuracies of the 5 validations) • Adversary cannot have significant better accuracy than that obtained from tossing coins in a perfectly privacy-preserving system 25

  26. Baseline Classifiers • Dummy • Assumption: samples are evenly distributed across labels • Predicts any possible label with same probability • Augmented Dummy • Assumption: samples are not evenly distributed • Knows the population distribution in prior • Always predicts the most popular label 26

  27. Regrouping Subjects • Observation: Samples were not evenly distributed across all labels Gender Political Affiliation Parental Status Income Inde- Not a Female Male Non-Independent Parent < $30K > $30K pendent parent 95 122 108 109 128 89 107 110 43.78% 56.22% 49.77% 50.23% 58.99% 41.01% 49.31% 50.69% Religion Marital Status Education High Associa- Non- Atheist Christian Christian Single Bachelor or higher Not Single school tes 83 47 88 124 93 78 50 89 37.79% 21.66% 40.55% 57.14% 42.86% 35.94% 23.04% 41.02% Age Ethnicity African 18-27 28-33 34+ Other Hispanic Asian Caucasian American 71 71 75 23 162 8 3.69% 12 5.53% 12 5.53% 32.72% 32.72% 34.56% 10.60% 74.65% 27

  28. Evaluation Result Age Education Ethnicity Gender Income Best 0.54 0.40 0.76 0.74 0.62 Dummy 0.33 0.33 0.20 0.50 0.50 Augmente 0.35 0.41 0.75 0.56 0.51 d Dummy Marital Parental Political Religion Status Status Affiliation Best 0.63 0.66 0.59 0.43 Dummy 0.50 0.50 0.50 0.33 Augmented 0.57 0.59 0.50 0.41 Dummy 28

  29. Outline • Background & Motivation • Methodology • Characterization of Mobile Ad Personalization • Privacy Leakage through Personalized Mobile Ads • Discussion 29

  30. Privacy Implication • In Android, host app can observe all personalized ads • Ad network may be inadvertently leaking some of its collected user information (Age, Gender, Parental Status) to the app developer • Adversary also has non-trivial advantage in predicting other aspects of the user’s demographics • These aspects may be correlated with those collected and used by ad networks 30

  31. Limitation • The size of our dataset is small • More aggressive adversaries may achieve significant better result • They can invest more resources to obtain better ground truth data • They can observe ads received by users for a longer period of time 31

  32. Countermeasures • Root cause of the privacy leakage problem: lack of isolation between ads and host apps • Adopting HTTPS will not stop the problem • We really need isolation between ads and host apps • What can ad networks do? • Adding noise into personalized results • Providing coarser-grained targeting options 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy Leakage in Mobile Online Social Networks Balachander Krishnamurthy, AT&amp;T Labs

Privacy Leakage in Mobile Online Social Networks Balachander Krishnamurthy, AT&amp;T Labs

Privacy Leakage in Mobile Online Social Networks Balachander Krishnamurthy, AT&amp;T Labs Research Craig E. Wills, Worcester Polytechnic Institute Workshop on Online Social Networks Boston, MA USA June 2010 1 Introduction Previously

775 views • 20 slides
Privacy leakage on the Internet Balachander Krishnamurthy AT&amp;T LabsResearch

Privacy leakage on the Internet Balachander Krishnamurthy AT&amp;T LabsResearch

Privacy leakage on the Internet Balachander Krishnamurthy AT&amp;T LabsResearch http://www.research.att.com/~bala/papers Joint work with Craig E. Wills, http://www.cs.wpi.edu/~cew AT&amp;T LabsResearch 1 Talk outline 1. Privacy

1.35k views • 53 slides
LR 2 : LR : Le Leakage-Re Resilient La Layout t Ra Randomization fo for Mo Mobile

LR 2 : LR : Le Leakage-Re Resilient La Layout t Ra Randomization fo for Mo Mobile

LR 2 : LR : Le Leakage-Re Resilient La Layout t Ra Randomization fo for Mo Mobile Devices Kjell Braden , Stephen Crane, Lucas Davi , Michael Franz , Per Larsen , Christopher Liebchen , Ahmad- Reza Sadeghi

578 views • 38 slides
Ubiquitous and Mobile Computing CS 528: Information Leakage through Mobile Analytics Services Amit

Ubiquitous and Mobile Computing CS 528: Information Leakage through Mobile Analytics Services Amit

Ubiquitous and Mobile Computing CS 528: Information Leakage through Mobile Analytics Services Amit Srivastava Computer Science Dept. Worcester Polytechnic Institute (WPI) This paper is about.. Analytics User profiles and Analytics

291 views • 16 slides
ePPI: Locator Service in Information Networks with Personalized Privacy Preservation Yuzhe Tang,

ePPI: Locator Service in Information Networks with Personalized Privacy Preservation Yuzhe Tang,

ePPI: Locator Service in Information Networks with Personalized Privacy Preservation Yuzhe Tang, Ling Liu, Arun Iyengar, Kisung Lee and Qi Zhang 1 Outline Background ePPI: Personalized privacy preservation Practical ePPI

516 views • 29 slides
Privacy Expectations and Preferences in an IoT World Pardis Emami-Naeini, Sruti Bhagavatula,

Privacy Expectations and Preferences in an IoT World Pardis Emami-Naeini, Sruti Bhagavatula,

Privacy Expectations and Preferences in an IoT World Pardis Emami-Naeini, Sruti Bhagavatula, Martin Degeling, Hana Habib, Lujo Bauer, Lorrie Faith Cranor, Norman Sadeh PERSONALIZED PRIVACY ASSISTANT PROJECT 1 PERSONALIZED PRIVACY ASSISTANT

582 views • 22 slides
Personalized Mobile Application Discovery Bo Yan and Guanling Chen Department of Computer

Personalized Mobile Application Discovery Bo Yan and Guanling Chen Department of Computer

Personalized Mobile Application Discovery Bo Yan and Guanling Chen Department of Computer Science University of Massachusetts Lowell How to Find Apps Search by keywords or browse by categories Personalized recommendation according to

410 views • 25 slides
CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International

CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International

CO 445H MOBILE PLATFORM SECURITY AND MOBILE PRIVACY Dr. Benjamin Livshits Privacy International Data Tracking 2 http://privacyinternational.org/feature/2433/i-asked-online-tracking-company-all-my-data-and-heres-what-i-found Two Main Attack

986 views • 63 slides
Identifying and Preventing Conditions for Web Privacy Leakage Craig E. Wills Computer Science

Identifying and Preventing Conditions for Web Privacy Leakage Craig E. Wills Computer Science

Identifying and Preventing Conditions for Web Privacy Leakage Craig E. Wills Computer Science Department Worcester Polytechnic Institute Worcester, MA USA W3C Workshop on Web Tracking and User Privacy April, 2011 1 Its Not Just Tracking

474 views • 4 slides
Privacy in Pharmacogenetics: An End-to-End Case Study of Personalized Warfarin Dosing Presented

Privacy in Pharmacogenetics: An End-to-End Case Study of Personalized Warfarin Dosing Presented

Privacy in Pharmacogenetics: An End-to-End Case Study of Personalized Warfarin Dosing Presented By Sharani Sankaran Pharmacogenetics We Introduce an Attack called the Model Inversion Attack Genomic privacy= Extract Patients Genetics from

652 views • 21 slides
A distributed infrastructure supporting personalized services for the Mobile Web Claudia Canali

A distributed infrastructure supporting personalized services for the Mobile Web Claudia Canali

A distributed infrastructure supporting personalized services for the Mobile Web Claudia Canali Michele Colajanni Riccardo Lancellotti University of Modena and Reggio Emilia Philip S. Yu IBM T.J. Watson Research center The Mobile Web

189 views • 16 slides
Privacy Leakage Attacks in Browser by Colluding Extensions Presentation by Anil Saini 1 , Manoj

Privacy Leakage Attacks in Browser by Colluding Extensions Presentation by Anil Saini 1 , Manoj

Privacy Leakage Attacks in Browser by Colluding Extensions Presentation by Anil Saini 1 , Manoj Singh Gaur 1 , Vijay Laxmi 1 , Tushar Singhal 1 , Mauro Conti 2 1 Malaviya National Institute of Technology, Jaipur, India 2 University of Padua, Italy

882 views • 58 slides
Videx Mobile 2.0 a personalized video summarization viewing tool Goal/Success Metric Students

Videx Mobile 2.0 a personalized video summarization viewing tool Goal/Success Metric Students

Videx Mobile 2.0 a personalized video summarization viewing tool Goal/Success Metric Students spend less time per unit perceived learning/watching Main Elements 1. Personalized playlist/home 2. Courses 3. Dashboard 4. Settings 5.

470 views • 23 slides
Personalized I nform ation Delivery on Objectives of this Talk the Static and Mobile W eb

Personalized I nform ation Delivery on Objectives of this Talk the Static and Mobile W eb

Personalized I nform ation Delivery on Objectives of this Talk the Static and Mobile W eb Traditional IR vs. mobile IR Information Push as the default information access model Estimating user interests via search engine

432 views • 8 slides
Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda

Mobile Device Security and Privacy Information Security and Privacy Office January 2012 Agenda Protecting mobile devices and your privacy Protecting Mobile Devices and Your Privacy Before We Start The City of Phoenix does not

971 views • 52 slides
Uranine: Real-time Privacy Leakage Monitoring without System Modification for Android Vaibhav

Uranine: Real-time Privacy Leakage Monitoring without System Modification for Android Vaibhav

Uranine: Real-time Privacy Leakage Monitoring without System Modification for Android Vaibhav Rastogi 1 , Zhengyang Qu 2 , Jedidiah McClurg 3 , Yinzhi Cao 4 , and Yan Chen 2 1 University of Wisconsin and Pennsylvania State University 2 Northwestern

327 views • 28 slides
CSE 158 Lecture 14 Web Mining and Recommender Systems T en minutes of tensorflow T

CSE 158 Lecture 14 Web Mining and Recommender Systems T en minutes of tensorflow T

CSE 158 Lecture 14 Web Mining and Recommender Systems T en minutes of tensorflow T ensorflow Tensorflow (other than doing deep learning and all that stuff) is a library to specify learning algorithms at a high- level This allows you to

635 views • 48 slides
Future of Digital Advertising Amarnag Subramanya Ankur Gupta Mangal

Future of Digital Advertising Amarnag Subramanya Ankur Gupta Mangal

Future of Digital Advertising Amarnag Subramanya Ankur Gupta Mangal Vanmanthai Sreeni Jaladanki Tal Shaked Varinder Singh Engineering Leadership Professional Program Hypotheses

496 views • 28 slides
How a big company developed a microscopic solution to data. What were dealing with. And

How a big company developed a microscopic solution to data. What were dealing with. And

How a big company developed a microscopic solution to data. What were dealing with. And these are just the wines. Make a new friend everyday -Paul Ricard 4 Outside our house: International and mysterious new brands Private

338 views • 17 slides
On Revenue in the Generalized Second Price Auction Brendan Renato va Lucier Paes Leme

On Revenue in the Generalized Second Price Auction Brendan Renato va Lucier Paes Leme

On Revenue in the Generalized Second Price Auction Brendan Renato va Lucier Paes Leme Tardos (MSR-NE) (Cornell) (Cornell) Sponsored Search Auctions Sponsored Search Auctions Two AdAuctions Mechanisms Generalized Second

732 views • 52 slides
Leveraging Machine Learning to Improve Unwanted Resource Filtering Sruti Bhagavatula Christopher

Leveraging Machine Learning to Improve Unwanted Resource Filtering Sruti Bhagavatula Christopher

Leveraging Machine Learning to Improve Unwanted Resource Filtering Sruti Bhagavatula Christopher Dunn Chris Kanich Minaxi Gupta Brian Ziebart 1 Introduction 2 Introduction 3 Typical Advertisement Typical DOM

529 views • 23 slides
Microstrategy Ad Hoc Reporting Tool SAVE AS EXPORT fs

Microstrategy Ad Hoc Reporting Tool SAVE AS EXPORT fs

Microstrategy Ad Hoc Reporting Tool SAVE AS EXPORT fs

312 views • 12 slides
Stealing From Thieves: Breaking IonCube VM to RE Exploit Kits

Stealing From Thieves: Breaking IonCube VM to RE Exploit Kits

Stealing From Thieves: Breaking IonCube VM to RE Exploit Kits Mohamed Saher (@halsten) About @halsten Reverse Engineering Automa5on of RE tasks

687 views • 52 slides
The Differentiable Curry Martin Abadi, Dan Belov, Gordon Plotkin, Richard Wei, Dimitrios Vytiniotis

The Differentiable Curry Martin Abadi, Dan Belov, Gordon Plotkin, Richard Wei, Dimitrios Vytiniotis

The Differentiable Curry Martin Abadi, Dan Belov, Gordon Plotkin, Richard Wei, Dimitrios Vytiniotis DeepMind and Google Brain thanks to the many from the Swift For Tensorflow and JAX teams r o f * s l a The Differentiable Curry i t n e

345 views • 19 slides

More recommend