Privacy-Preserving Release of Spatio-Temporal Density

Ács, Gergely; Biczók, Gergely; Castelluccia, Claude

doi:10.1007/978-3-319-98161-1_12

Cited by 37 publications

(78 citation statements)

References 61 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…Then, rather than DFT, it uses the Discrete Cosine Transform (DCT) and employs Gaussian noise instead of Laplacian to achieve better accuracy. As a result, EFPAG guarantees ( , δ)-DP [1].…”

Section: A Differential Privacy (Dp)mentioning

confidence: 96%

“…Enhanced Fourier Perturbation Algorithm with Gaussian Noise (EFPAG): EFPAG [1] improves FPA by choosing the number of coefficients (κ) to be perturbed probabilistically, and using the exponential mechanism to assign larger probability to values that minimize the root-sum-squared error between the input time-series and its noisy version. Then, rather than DFT, it uses the Discrete Cosine Transform (DCT) and employs Gaussian noise instead of Laplacian to achieve better accuracy.…”

Section: A Differential Privacy (Dp)mentioning

confidence: 99%

“…where γ is a sanity bound mitigating the effect of very small counts. Following previous work [1], we set γ to 0.1% of n i=1 Y i . We compute the MRE over the aggregate time-series for all ROIs (s ∈ S) in our datasets and report the mean value.…”

Section: Mean Relative Error (Mre)mentioning

confidence: 99%

See 2 more Smart Citations

Knock Knock, Who's There? Membership Inference on Aggregate Location Data

Pyrgelis

Troncoso

Cristofaro

2018

Proceedings 2018 Network and Distributed System Security Symposium

156

118

View full text Add to dashboard Cite

Aggregate location data is often used to support smart services and applications, e.g., generating live traffic maps or predicting visits to businesses. In this paper, we present the first study on the feasibility of membership inference attacks on aggregate location time-series. We introduce a game-based definition of the adversarial task, and cast it as a classification problem where machine learning can be used to distinguish whether or not a target user is part of the aggregates.We empirically evaluate the power of these attacks on both raw and differentially private aggregates using two mobility datasets. We find that membership inference is a serious privacy threat, and show how its effectiveness depends on the adversary's prior knowledge, the characteristics of the underlying location data, as well as the number of users and the timeframe on which aggregation is performed. Although differentially private mechanisms can indeed reduce the extent of the attacks, they also yield a significant loss in utility. Moreover, a strategic adversary mimicking the behavior of the defense mechanism can greatly limit the protection they provide. Overall, our work presents a novel methodology geared to evaluate membership inference on aggregate location data in real-world settings and can be used by providers to assess the quality of privacy protection before data release or by regulators to detect violations.

show abstract

Section: A Differential Privacy (Dp)mentioning

confidence: 96%

Section: A Differential Privacy (Dp)mentioning

confidence: 99%

See 1 more Smart Citation

Knock Knock, Who's There? Membership Inference on Aggregate Location Data

Pyrgelis

Troncoso

Cristofaro

2018

Proceedings 2018 Network and Distributed System Security Symposium

156

118

View full text Add to dashboard Cite

show abstract

“…where β is a sanity bound mitigating the effects of very small counts. As done in previous work [2], we use MRE to measure the utility loss when a privacy mechanism is applied to an aggregate time-series, and we adjust β to 0.1% of n i=0 Y i .…”

Section: Metricsmentioning

confidence: 99%

“…Therefore, a common approach is to consider aggregation as a privacy defense, and, by using appropriate cryptographic protocols, the aggregation can take place in a privacy-preserving way, i.e., removing the need for a trusted aggregator [24,36,37]. Moreover, Differential Privacy (DP) [13] can be used to bound the privacy leakage from releasing aggregate statistics [2,21], using output [8,14,39] or input [17,38] perturbation. However, there is no sound method to reason about the privacy lost by single individuals from the release of raw aggregate time-series.…”

Section: Introductionmentioning

confidence: 99%

What Does The Crowd Say About You? Evaluating Aggregation-based Location Privacy

Pyrgelis

Troncoso

Cristofaro

2017

Proceedings on Privacy Enhancing Technologies

View full text Add to dashboard Cite

Information about people's movements and the locations they visit enables an increasing number of mobility analytics applications, e.g., in the context of urban and transportation planning, In this setting, rather than collecting or sharing raw data, entities often use aggregation as a privacy protection mechanism, aiming to hide individual users' location traces. Furthermore, to bound information leakage from the aggregates, they can perturb the input of the aggregation or its output to ensure that these are differentially private. In this paper, we set to evaluate the impact of releasing aggregate location time-series on the privacy of individuals contributing to the aggregation. We introduce a framework allowing us to reason about privacy against an adversary attempting to predict users' locations or recover their mobility patterns. We formalize these attacks as inference problems, and discuss a few strategies to model the adversary's prior knowledge based on the information she may have access to. We then use the framework to quantify the privacy loss stemming from aggregate location data, with and without the protection of differential privacy, using two real-world mobility datasets. We find that aggregates do leak information about individuals' punctual locations and mobility profiles. The density of the observations, as well as timing, play important roles, e.g., regular patterns during peak hours are better protected than sporadic movements. Finally, our evaluation shows that both output and input perturbation offer little additional protection, unless they introduce large amounts of noise ultimately destroying the utility of the data.

show abstract

Practical Differentially Private Modeling of Human Movement Data

Roy

Kantarcıoğlu

Sweeney

2016

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Exciting advances in big data analysis suggest that sharing personal information, such as health and location data, among multiple other parties could have significant societal benefits. However, privacy issues often hinder data sharing. Recently, differential privacy emerged as an important tool to preserve privacy while sharing privacy-sensitive data. The basic idea is simple. Differential privacy guarantees that results learned from shared data do not change much based on the inclusion or exclusion of any single person's data. Despite the promise, existing differential privacy techniques addresses specific utility goals and/or query types (e.g., count queries), so it is not clear whether they can preserve utility for arbitrary types of queries. To better understand possible utility and privacy tradeoffs using differential privacy, we examined uses of human mobility data in a real-world competition. Participants were asked to come up with insightful ideas that leveraged a minimally protected published dataset. An obvious question is whether contest submissions could yield the same results if performed on a dataset protected by differential privacy? To answer this question, we studied synthetic dataset generation models for human mobility data using differential privacy. We discuss utility evaluation and the generality of the models extensively. Finally, we analyzed whether the proposed differential privacy models could be used in practice by examining contest submissions. Our results indicate that most of the competition submissions could be replicated using differentially private data with nearly the same utility and with privacy guarantees. Statistical comparisons with the original dataset demonstrate that differentially private synthetic versions of human mobility data can be widely applicable for data analysis.

show abstract

Privacy-Preserving Release of Spatio-Temporal Density

Cited by 37 publications

References 61 publications

Knock Knock, Who's There? Membership Inference on Aggregate Location Data

Knock Knock, Who's There? Membership Inference on Aggregate Location Data

What Does The Crowd Say About You? Evaluating Aggregation-based Location Privacy

Practical Differentially Private Modeling of Human Movement Data

Contact Info

Product

Resources

About