Privacy-Preserving Directly-Follows Graphs: Balancing Risk and Utility in Process Mining

Elkoumy, Gamal; Pankova, Alisa; Dumas, Marlon

doi:10.48550/arxiv.2012.01119

Cited by 2 publications

(2 citation statements)

References 29 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In this regard, Mannhardt et al proposed a privacy protection engine based on , differential privacy [13], which theoretically ensures that personal information cannot be identified regardless of whether the attacker has background knowledge or not; Fahrenkprog-Petersen et al proposed a privacy-protected event log release Framework (PRIPEL) [14], which followed the principle of localized differential privacy and provided differential privacy guarantees at the case level rather than the entire log; Elkoumy focused on the utility loss caused by differential privacy methods, and proposed an optimized parameter setting method of  using utility-based estimation [15].…”

Section: A Mainstream Privacy Preserving Methodsmentioning

confidence: 99%

PLI-Assess: A Behavior Profile-Based Approach for Privacy-Preserving Log Assessment

Wang,

Fang

2023

IEEE Access

View full text Add to dashboard Cite

Event logs recorded during the execution of business processes provide a valuable starting point for process mining, and high-quality event logs can significantly enhance the quality of process mining. However, event logs often contain a substantial amount of sensitive and personal information. Therefore, the release of event logs should prioritize the model's quality while minimizing the risk of privacy exposure. Specifically, quantifying performance indicators between the original event logs and the released ones enables the operational goals. To date, privacy benefit and utility loss are two main target performance indicators, especially from the perspective of structural similarity comparison of mined process models. To the best of our knowledge, no study aims to measure the privacy-preserving performance indicators from the point of behavior differentiation between the original event logs and released ones, and this paper aims to address this problem. In this paper, we propose an approach that combines privacy benefit and utility loss measurements together to quantify the behavior differentiation between the original event logs and the corresponding released ones. Specifically, an approach of event log release mechanism that effectively combines behavior privacy gain and behavior utility loss is presented in this paper. Firstly, we discuss the challenges in scenarios where event data is released directly without any privacy preservation, and describe the various potential attacks that could occur when third-party businesses perform process mining techniques. Based on these potential attacks, we present a behavior differentiationbased event log release mechanism named PLI-Assess to combat these threats. Finally, we conduct experiments on four groups of practical event logs for comparisons with the baseline methods. The experimental results indicate general feasibility and shed light on the behavior trade-offs between privacy benefit and utility loss.

show abstract

Section: A Mainstream Privacy Preserving Methodsmentioning

confidence: 99%

PLI-Assess: A Behavior Profile-Based Approach for Privacy-Preserving Log Assessment

Wang,

Fang

2023

IEEE Access

View full text Add to dashboard Cite

show abstract

“…As discussed, this neglects a process' semantics, leading to potentially low data utility and noise that can be easily recognized. For trace-variant queries, Elkoumy et al [25] further studied the relation between utility and risk, while the PRIPEL framework [26] uses trace-variant queries as a basis for privacy-preserving event log publishing.…”

Section: Related Workmentioning

confidence: 99%

SaCoFa: Semantics-aware Control-flow Anonymization for Process Mining

Fahrenkrog-Petersen¹,

Kabierski²,

Rösel³

et al. 2021

Preprint

View full text Add to dashboard Cite

Privacy-preserving process mining enables the analysis of business processes using event logs, while giving guarantees on the protection of sensitive information on process stakeholders. To this end, existing approaches add noise to the results of queries that extract properties of an event log, such as the frequency distribution of trace variants, for analysis. Noise insertion neglects the semantics of the process, though, and may generate traces not present in the original log. This is problematic. It lowers the utility of the published data and makes noise easily identifiable, as some traces will violate well-known semantic constraints. In this paper, we therefore argue for privacy preservation that incorporates a process' semantics. For common trace-variant queries, we show how, based on the exponential mechanism, semantic constraints are incorporated to ensure differential privacy of the query result. Experiments demonstrate that our semantics-aware anonymization yields event logs of significantly higher utility than existing approaches.

show abstract

Privacy-Preserving Directly-Follows Graphs: Balancing Risk and Utility in Process Mining

Cited by 2 publications

References 29 publications

PLI-Assess: A Behavior Profile-Based Approach for Privacy-Preserving Log Assessment

PLI-Assess: A Behavior Profile-Based Approach for Privacy-Preserving Log Assessment

SaCoFa: Semantics-aware Control-flow Anonymization for Process Mining

Contact Info

Product

Resources

About