Secure and Accurate Two-Step Hash Encoding for Privacy-Preserving Record Linkage

Ranbaduge, Thilina; Christen, Peter; Schnell, Rainer

doi:10.1007/978-3-030-47436-2_11

Cited by 10 publications

(13 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Step Hash Encoding (2SH). This recently proposed novel PPRL encoding method [27] aims to address both privacy issues of BF encoding as well as the high computational costs of TMH encoding. This method employs two efficient hashing steps based on bit vectors and an integer mapping to provide accurate Jaccard similarity calculations with improved privacy protection.…”

Section: Two-mentioning

confidence: 99%

“…( 1 , 2 ), where () is the function used to calculate the similarity between two nodes. This can, for example, be the Dice or Jaccard similarity depending on the encoding method used [27,30,34].…”

Section: Generating Similarity Graphsmentioning

confidence: 99%

“…Using the obtained min-hash signatures, bit arrays of length = 1000 were generated for each encoded value [34]. For 2SH encoding, we used the parameter settings: = 2, = 1000, and = [10,15,20] [27]. The accuracy results discussed below for each database were averaged over all these parameter settings.…”

Section: Experimental Evaluationmentioning

confidence: 99%

“…To overcome the privacy weaknesses of BF encoding, alternative perturbation based encoding techniques for PPRL have been developed. One of these uses tabulation Min-hashing [34] while another recently proposed method uses two hash encoding steps [27]. We discuss these two techniques in detail in Sect.…”

Section: Introductionmentioning

confidence: 99%

“…To provide the reader with an understanding of encoding methods used for PPRL, we now briefly describe the three methods we will use in the experimental evaluation of our attack: popular and practically used Bloom filter (BF) encoding [3,6,26,28,30], and the more recently proposed tabulation min-hashing (TMH) [34] and two-step hashing (2SH) [27] methods. We then provide an overview of existing attack methods on PPRL in Sect.…”

Section: Introductionmentioning

confidence: 99%

See 4 more Smart Citations

A Graph Matching Attack on Privacy-Preserving Record Linkage

Vidanage

Christen

Ranbaduge

et al. 2020

Proceedings of the 29th ACM International Conference on Information &Amp; Knowledge Management

Self Cite

View full text Add to dashboard Cite

To facilitate advanced analytics, data science projects increasingly require records about individuals to be linked across databases. Generally no unique entity identifiers are available in the databases to be linked, and therefore quasi-identifiers such as names, addresses, and dates of birth are used to link records. The process of linking records without revealing any sensitive or confidential information about the entities represented by these records is known as privacy-preserving record linkage (PPRL). Various encoding and encryption based PPRL methods have been developed in the past two decades. Most existing PPRL methods calculate approximate similarities between records because errors and variations can occur in quasi-identifying attribute values. Even though being used in real-world linkage applications, certain PPRL methods, such as popular Bloom filter encoding, have shown to be vulnerable to cryptanalysis attacks. In this paper we present a novel attack on PPRL methods that exploits the approximate similarities calculated between encoded records. Our attack matches nodes in a similarity graph generated from an encoded database with a corresponding similarity graph generated from a plain-text database to re-identify sensitive values. Our attack is not limited to any specific PPRL method, and in an experimental evaluation we apply it on three PPRL encoding methods using three different databases. This evaluation shows that our attack can successfully re-identify sensitive values from these encodings with high accuracy where no previous attack on PPRL would have been successful. CCS CONCEPTS • Information systems → Entity resolution; • Security and privacy → Cryptanalysis and other attacks; Privacy-preserving protocols; Management and querying of encrypted data.

show abstract

Section: Two-mentioning

confidence: 99%

Section: Generating Similarity Graphsmentioning

confidence: 99%