Protecting Locations with Differential Privacy under Temporal Correlations

Xiao, Yonghui; Xiong, Li

doi:10.1145/2810103.2813640

Cited by 316 publications

(282 citation statements)

References 43 publications

Supporting

Mentioning

282

Contrasting

Order By: Relevance

“…Liu et al [25] inferred the dependence coefficient, distributed in interval [0, 1], to evaluate the probabilistic correlation between two tuples in a more fine-grained manner, thus reducing the query sensitivity which results in less noise. Considering temporal correlations of a moving user's locations, the work in [26] leveraged a hidden Markov model to establish a location set and proposed a variant of DP to protect location privacy. Wu et al [27] proposed the definition of correlated differential privacy to evaluate the real privacy level of a single dataset influenced by the other datasets when multiple datasets are correlated.…”

Section: Related Workmentioning

confidence: 99%

An Edge Correlation Based Differentially Private Network Data Release Method

Cai

Wang

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

Differential privacy (DP) provides a rigorous and provable privacy guarantee and assumes adversaries' arbitrary background knowledge, which makes it distinct from prior work in privacy preserving. However, DP cannot achieve claimed privacy guarantees over datasets with correlated tuples. Aiming to protect whether two individuals have a close relationship in a correlated dataset corresponding to a weighted network, we propose a differentially private network data release method, based on edge correlation, to gain the tradeoff between privacy and utility. Specifically, we first extracted the Edge Profile (PF) of an edge from a graph, which is transformed from a raw correlated dataset. Then, edge correlation is defined based on the PFs of both edges via JensonShannon Divergence (JS-Divergence). Secondly, we transform a raw weighted dataset into an indicated dataset by adopting a weight threshold, to satisfy specific real need and decrease query sensitivity. Furthermore, we propose -correlated edge differential privacy (CEDP), by combining the correlation analysis and the correlated parameter with traditional DP. Finally, we propose network data release (NDR) algorithm based on the -CEDP model and discuss its privacy and utility. Extensive experiments over real and synthetic network datasets show the proposed releasing method provides better utilities while maintaining privacy guarantee.

show abstract

Section: Related Workmentioning

confidence: 99%

An Edge Correlation Based Differentially Private Network Data Release Method

Cai

Wang

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Indeed, probably thanks to its efficiency, geoindistinguishability via the Laplacian mechanism has been adopted as the basis or as a component of several tools and frameworks for location privacy, including: Location Guard [10], LP-Guardian [11], LP-Doctor [12], the system for secure nearby-friends discovery in [13], SpatialVision QGIS plugin [14], and it is one of the possible input methods in STAC [15]. Furthermore, the PIM mechanism [16] can be considered an extension of the planar Laplacian to the case of traces (temporally correlated sequences of points): The authors of [16] attack the problem of the degradation of privacy due to correlation by adding Laplacian noise directly to the convex hull of the trace.…”

Section: Introductionmentioning

confidence: 99%

Efficient Utility Improvement for Location Privacy

Chatzikokolakis

ElSalamouny

Palamidessi

2017

Proceedings on Privacy Enhancing Technologies

View full text Add to dashboard Cite

Abstract:The continuously increasing use of locationbased services poses an important threat to the privacy of users. A natural defense is to employ an obfuscation mechanism, such as those providing geoindistinguishability, a framework for obtaining formal privacy guarantees that has become popular in recent years. Ideally, one would like to employ an optimal obfuscation mechanism, providing the best utility among those satisfying the required privacy level. In theory optimal mechanisms can be constructed via linear programming. In practice, however, this is only feasible for a radically small number of locations. As a consequence, all known applications of geo-indistinguishability simply use noise drawn from a planar Laplace distribution. In this work, we study methods for substantially improving the utility of location obfuscation, while maintaining practical applicability as a main goal. We provide such solutions for both infinite (continuous or discrete) as well as large but finite domains of locations, using a Bayesian remapping procedure as a key ingredient. We evaluate our techniques in two real world complete datasets, without any restriction on the evaluation area, and show important utility improvements with respect to the standard planar Laplace approach.

show abstract

“…Once the adversary has no such side information, the expected distance error is not sufficient for quantifying location privacy. As a result, differential privacy [6,26] that abstract from the adversary's side information has been growing popularity in LBS privacy protection, which measures the ability of the adversary with arbitrary background knowledge to obtain the user's real location. However, as noted in [27], this metric can be problematic if prior is taken into account.…”

Section: Location Privacy Metricsmentioning

confidence: 99%

“…Expected distance error based schemes [4,9] obfuscate user's location by taking the adversary's side information into account, which also suffer from background knowledge attacks. Differential privacy based schemes [6,26] have gained popularity as they abstract from the adversary's side information and are capable of providing strong worst-case privacy guarantees. However, these approaches do not take the contextual information of the user's location and are not sufficient to protect users from reidentification [34].…”

Section: Location Privacy Protectionmentioning

confidence: 99%

A Context‐Aware Location Differential Perturbation Scheme for Privacy‐Aware Users in Mobile Environment

Zhang

Huang

et al. 2018

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

The proliferation of location-based services, representative services for the mobile networks, has posed a serious threat to users' privacy. In the literature, several privacy mechanisms have been proposed to preserve location privacy. Location obfuscation enforced using cloaking region is a widely used technique to achieve location privacy. However, it requires a trusted third-party (TTP) and cannot sufficiently resist various inference attacks based on background information and thus is vulnerable to location privacy breach. In this paper, we propose a context-aware location privacy-preserving solution with differential perturbations, which can enhance the user's location privacy without requiring a TTP. Our scheme utilizes the modified Hilbert curve to project every 2-d location of the user in the considered map to 1-d space and randomly generates the reasonable perturbation by adding Laplace noise via differential privacy. In order to solve the resource limitation of mobile devices, we use a quad-tree based scheme to transform and store the user context information as bit stream which achieves the high compression ratio and supports efficient retrieval. Security analysis shows that our proposed scheme can effectively preserve the location privacy. Experimental evaluation shows that our scheme retrieval accuracy is increased by an average of 15.4% compared with the scheme using standard Hilbert curve. Our scheme can provide strong privacy guarantees with a bounded accuracy loss while improving retrieval accuracy.

show abstract

Protecting Locations with Differential Privacy under Temporal Correlations

Cited by 316 publications

References 43 publications

An Edge Correlation Based Differentially Private Network Data Release Method

An Edge Correlation Based Differentially Private Network Data Release Method

Efficient Utility Improvement for Location Privacy

A Context‐Aware Location Differential Perturbation Scheme for Privacy‐Aware Users in Mobile Environment

Contact Info

Product

Resources

About