Yongluan Zhou,Lidan Shou,Xuan Shang,Ke Chen

DOI: https://doi.org/10.1145/2675743.2771837

2015-01-01

Abstract:With the vision of the emergence of streaming data marketplaces, we study the problem of how to use a scalable dissemination infrastructure, composed by a number of brokers, to disseminate anonymized streaming data to a large number of clients. To satisfy the clients, who are trusted at different anonymity levels and have their own urgencies in requiring the data, we propose to deeply integrate the anonymization process into the dissemination infrastructure. More specifically, we extend the existing anonymization algorithms to derive the anonymity data from other anonymity data with different privacy constraints rather than only from the original microdata, in a technique which we call version derivation. With this flexibility, the anonymous data can be generated as needed, according to the available bandwidth, on the way from the data source to the end clients. Exploiting such new opportunities, we formulate the problem of dissemination planning which aims at minimizing the information loss of the disseminated data. Furthermore, we design two dissemination plan optimization strategies to solve the problem. The experimental study using both synthetic and real datasets verifies the effectiveness of our approach.

Yilei Wang,Hao Zhou,Yingjie Wu,Lan Sun

DOI: https://doi.org/10.1109/iccse.2012.6295197

2012-01-01

Abstract:Recently, several techniques have been proposed to protect the user location privacy for location-based services in road network environments. A typical approach for user location privacy protection is to blur a user location into a cloaked set of road segments S such that S satisfies the user specified privacy requirements. However, these location cloaking algorithms work with snapshot locations only and do not consider the effect of continuous location updates. Applying these algorithms directly to continuous queries would lead to privacy leakage if attackers have knowledge about maximum user velocity, namely velocity-based Attack. In this paper, we present the privacy safety condition to defend against velocity-based attack, and propose an anonymity algorithm based on greedy strategy to preserve user privacy. The experiment results based on dataset of real network show the algorithm is effective and feasible.

Hao Zhou,Yingjie Wu,Sisi Zhong,Zhao Luo,Xiaodong Wang

DOI: https://doi.org/10.1109/icicee.2012.418

2012-01-01

Abstract:The query privacy issue in location-based services (LBS) has recently received considerable attention. To protect the query privacy of users, current state-of-the-art techniques adopt cloaking which cloaks the sender's location to k-anonymized spatial region (ASR), such that an attack based on the sender's location cannot identify the query source with probability larger than 1/k, among other k-1 users. However, these techniques do not consider that these k-1 additional mobile users with different privacy requirements may send request at the same time. In this paper, we propose a new attack model that an adversary who observes all the ASRs at one time can identify the query source with probability larger than 1/k based on prior knowledge of the locations of all users. And we propose our two algorithms, namely, Basic and Adaptive Algorithms, which strengthen the privacy guarantee to defend such inference attack while still support personalized user privacy requirements. We verify the effectiveness of the proposed algorithms by experiments on location data which synthetically generated on real road maps.

Farough Ashkouti,Keyhan Khamforoosh

DOI: https://doi.org/10.1371/journal.pone.0285212

IF: 3.7

2023-04-28

PLoS ONE

Abstract:Recently big data and its applications had sharp growth in various fields such as IoT, bioinformatics, eCommerce, and social media. The huge volume of data incurred enormous challenges to the architecture, infrastructure, and computing capacity of IT systems. Therefore, the compelling need of the scientific and industrial community is large-scale and robust computing systems. Since one of the characteristics of big data is value, data should be published for analysts to extract useful patterns from them. However, data publishing may lead to the disclosure of individuals’ private information. Among the modern parallel computing platforms, Apache Spark is a fast and in-memory computing framework for large-scale data processing that provides high scalability by introducing the resilient distributed dataset (RDDs). In terms of performance, Due to in-memory computations, it is 100 times faster than Hadoop. Therefore, Apache Spark is one of the essential frameworks to implement distributed methods for privacy-preserving in big data publishing (PPBDP). This paper uses the RDD programming of Apache Spark to propose an efficient parallel implementation of a new computing model for big data anonymization. This computing model has three-phase of in-memory computations to address the runtime, scalability, and performance of large-scale data anonymization. The model supports partition-based data clustering algorithms to preserve the λ-diversity privacy model by using transformation and actions on RDDs. Therefore, the authors have investigated Spark-based implementation for preserving the λ-diversity privacy model by two designed City block and Pearson distance functions. The results of the paper provide a comprehensive guideline allowing the researchers to apply Apache Spark in their own researches.

multidisciplinary sciences

Yankson Herbert Gustav,Xiao Wu,Yan Ren,Yong Wang,Fengli Zhang

DOI: https://doi.org/10.1007/978-3-319-14717-8_22

2014-01-01

Abstract:Research have shown that location semantics have lead to privacy leakages especially when two or more users in a cloaked region depict similar semantic locations. This implies that, to achieve absolute privacy(query privacy, location privacy and semantic location privacy) protection for a client on road network, it is important that cloaked users have their locations distinctly diverse with diverse semantics, and making diverse service request thus satisfying the k-anonymity and l-diversity conditions for privacy. Unfortunately, the determination of semantic location of a mobile user online is a challenge which makes the achievement of absolute privacy protection more challenging. In this paper, we developed a privacy preserving algorithm that protects a client's absolute privacy for continuous query road network services. We employed an offline trajectory clustering algorithm and semantic location graph to aid the selection of cloaked users that will effectively protect the absolute privacy of a client. We evaluated the effectiveness of our algorithm on a real world map with two defined metrics, and it exhibited an excellent anonymization success rate in a very good query processing time for the entire period of continuously querying road network services.

HUANG Yi,HUO Zheng,MENG Xiao-Feng

DOI: https://doi.org/10.3724/sp.j.1016.2011.01976

2011-01-01

Abstract:Serious location privacy problems arise with extensive application of location-based services.Nowadays,location k-anonymity is the one of the most popular location privacy-preserving methods,it requires a trusted third party as an anonymity server which is proved to be the performance bottleneck and aim point of attacks.In addition,it complicates the query processing by requiring an anonymity region instead of a point.This paper proposes a collaborative location privacy-preserving method without anonymity server and cloaking region.Anonymity groups are formed through user's collaboration,members in the group regard density center as their locations when requiring for LBS,and acquire kNN results incrementally from the service provider.At last,group members get the precise results through computing distances between their locations and the kNN results.The proposed method achieves k-anonymity without cloaking region,the efficiency of anonymity is improved,and query processing is simplified.Extensive experimental results show advantages of the proposed method.

Xingxing Xiong,Shubo Liu,Dan Li,Zhaohui Cai,Xiaoguang Niu

DOI: https://doi.org/10.1016/j.jisa.2020.102633

IF: 4.96

2020-12-01

Journal of Information Security and Applications

Abstract:<p>Technology and usage advances in wireless communication and smart mobile devices with localization capabilities enable a large number of emerging applications of location-based services, e.g. mobile crowdsourcing applications, which are facilitating our daily life. However, collecting and sharing location data to service providers of applications will give rise to mobile users' concerns on their privacy, especially location privacy. In this paper, we investigate the problem of real-time spatio-temporal data aggregation with privacy preservation in the local setting. In response to this, we propose a systematic solution based on stringent local differential privacy preservation technique to deal with the problem. Firstly, we introduce a novel definition of (ε,  δ)-local differential privacy with the ability to capture the temporal correlation in spatio-temporal data and provide differential privacy preservation. Secondly, we develop an efficient framework of generalized randomized response (GRR) based real-time and private spatio-temporal data aggregation with an untrusted server. Finally, we conduct experiments on two real-world datasets to evaluate our framework. The results show that our GRR based framework significantly outperforms that based on PIM and LRM in data utility and demonstrate its superiority to achieve better trade-off of privacy and utility for real-time spatio-temporal data aggregation with stringent privacy preservation.</p>

computer science, information systems

Elham Shamsinejad,Touraj Banirostam,Mir Mohsen Pedram,Amir Masoud Rahmani

DOI: https://doi.org/10.1007/s11265-024-01920-z

2024-05-26

Journal of Signal Processing Systems

Abstract:Big data privacy preservation is a critical challenge for data mining and data analysis. Existing methods for anonymizing big data streams using k-anonymity algorithms may cause high data loss, low data quality, and identity disclosure. In this paper, we propose a novel model for anonymizing big data streams using in-memory processing. The model uses a Spark framework to parallelize the anonymization process and a one-time clustering algorithm to avoid multiple iterations and allocate the data to optimal clusters. We evaluate the performance and effectiveness of the model using a real-world dataset and compare it with three popular k-anonymity algorithms: CRUE, Mean-Shift, and DBSCAN. The results show that the model has the lowest data loss and the highest data quality for different data sizes and k-values. The model is scalable, robust, adaptable, and flexible. The model can provide better data for data mining and data analysis while protecting data privacy and preventing data disclosure.

computer science, information systems,engineering, electrical & electronic

Sashi Gurung,Dan Lin,Wei Jiang,Ali Hurson,Rui Zhang

DOI: https://doi.org/10.1145/2542666

IF: 5

2014-10-01

ACM Transactions on Intelligent Systems and Technology

Abstract:We are experiencing the expanding use of location-based services such as AT&T’s TeleNav GPS Navigator and Intel’s Thing Finder. Existing location-based services have collected a large amount of location data, which has great potential for statistical usage in applications like traffic flow analysis, infrastructure planning, and advertisement dissemination. The key challenge is how to wisely use the data without violating each user’s location privacy concerns. In this article, we first identify a new privacy problem, namely, the inference-route problem, and then present our anonymization algorithms for privacy-preserving trajectory publishing. The experimental results have demonstrated that our approach outperforms the latest related work in terms of both efficiency and effectiveness.

computer science, information systems, artificial intelligence

Yubao Liu,Xiuwei Chen,Zhan Li,Zhijie Li,Raymond Chi-Wing Wong

DOI: https://doi.org/10.1007/s11704-012-2838-8

IF: 2.6688

2012-01-01

Frontiers of Computer Science

Abstract:Recently, the issue of privacy preserving location queries has attracted much research. However, there are few works focusing on the tradeoff between location privacy preservation and location query information collection. To tackle this kind of tradeoff, we propose the privacy persevering location query (PLQ), an efficient privacy preserving location query processing framework. This framework can enable the location-based query without revealing user location information. The framework can also facilitate location-based service providers to collect some information about the location based query, which is useful in practice. PLQ consists of three key components, namely, the location anonymizer at the client side, the privacy query processor at the server side, and an additional trusted third party connecting the client and server. The location anonymizer blurs the user location into a cloaked area based on a map-hierarchy. The map-hierarchy contains accurate regions that are partitioned according to real landforms. The privacy query processor deals with the requested nearest-neighbor (NN) location based query. A new convex hull of polygon (CHP) algorithm is proposed for nearest-neighbor queries using a polygon cloaked area. The experimental results show that our algorithms can efficiently process location based queries.

Zhengang Wu,Liangwen Yu,Huiping Sun,Zhi Guan,Zhong Chen

DOI: https://doi.org/10.1007/978-3-319-11538-2_23

2014-01-01

Abstract:Location-Based Service (LBS) providers can send geo-tagged data to mobile users who report their current location information. Location-related user privacy is a vital concern since untrusted LBS can monitor and misuse user location information. This paper aims at how to efficiently protect location privacy in query processing. In proxy-based location anonymizers, location cloaking algorithms need heavy bandwidth for query processing after blurring exact locations into a region. To alleviate it, the proposed query framework can integrate location cloaking and data caching. Next, we devise a novel location anonymization algorithm which takes advantage of the caching feature. Finally, we evaluate this solution experimentally for showing its improvement.

Lu WANG,Xiao-Feng MENG,Sheng-Na GUO

DOI: https://doi.org/10.13328/j.cnki.jos.005093

2016-01-01

Journal of Software

Abstract:In the emerging big data era, in addition to explicit publication of users’ locations on geo-social networks, positioning system embedded in mobile phones implicitly records users’ locations. Although such implicitly collected spatiotemporal data play an important role in a wide range of applications such as disease outbreak control and route recommendation for life science or smart city, they cause new serious privacy issues when cross-referencing with the explicitly published data from users. Existing location privacy preservation techniques fail to preserve the proposed implicit privacy because they ignore the cross-reference between implicitly and explicitly spatiotemporal data. To tackle this issue, this work for the first time investigates and defines the implicit privacy and proposes the discover and eliminate framework. In particular, this paper proposes prefix filtering based nest loop algorithm and frequent moving object based algorithm to generate dummy data to preserve the proposed implicit privacy. Further, it constructs an improved reverse a priori algorithm and graph based dummy data generation algorithm respectively to make the solution more practical. The results of extensive experiments on real world datasets demonstrate the effectiveness and efficiency of the proposed methods.

Yingle Li,Shuyu Li

DOI: https://doi.org/10.1109/cis2018.2018.00071

2018-01-01

Abstract:In recent years, mobile internet technology and positioning technology have been rapidly developed and widely used, mobile users can enjoy location-based services through mobile smart devices anywhere and anytime. However, they may lead to the leakage of personal sensitive information such as user's spatial temporal location data and so on. Trying to solve this problem and overcoming the shortcoming of traditional randomized dummy generation algorithm, a real-time location privacy protection algorithm based on spatial transform is proposed in the paper, without influencing the quality of user real-time location service. The algorithm uses the number of interest points in the history log file and the road network topology as the key elements of the query context and the motion model, which makes the generated dummy more realistic and effective in both time and space dimension. And the dummy set is encrypted by using the algorithm based on Hilbert space transformation, to make the user query data more secure. The results of experiment show that the algorithm can improve the effectiveness of dummy and gain better obfuscation query result in condition of preserving user privacy information.

Xuyun Zhang,Christopher Leckie,Wanchun Dou,Jinjun Chen,Ramamohanarao Kotagiri,Zoran Salcic

DOI: https://doi.org/10.1145/2983323.2983841

2016-01-01

Abstract:While cloud computing has become an attractive platform for supporting data intensive applications, a major obstacle to the adoption of cloud computing in sectors such as health and defense is the privacy risk associated with releasing data sets to third-parties in the cloud for analysis. A widely-adopted technique for data privacy preservation is to anonymize data via local recoding. However, most existing local-recoding techniques are either serial or distributed without directly optimising scalability, thus rendering them unsuitable for data intensive applications. In this paper, we propose a highly scalable approach to local-recoding anonymization in cloud computing, based on Locality Sensitive Hashing (LSH). Specifically, a novel semantic distance metric is presented for use with LSH to measure the similarity between two data records. Then, LSH with the MinHash function family can be employed to divide data sets into multiple partitions for use with MapReduce to parallelize computation while preserving similarity. By using our efficient LSH-based scheme, we can anonymize each partition through the use of a recursive agglomerative $k$-member clustering algorithm. Extensive experiments on real-life data sets show that our approach significantly improves the scalability and time-efficiency of local-recoding anonymization by orders of magnitude over existing approaches.

Xiaofeng Ding,Wenxiang Zhou,Shujun Sheng,Zhifeng Bao,Kim-Kwang Raymond Choo,Hai Jin

DOI: https://doi.org/10.1016/j.ins.2020.05.058

IF: 8.1

2020-01-01

Information Sciences

Abstract:User-generated trajectories (e.g. during traveling) can be leveraged to offer value-added services (e.g. smart city policy formulation), but there are also privacy implications. For example, information about the routes or destinations obtained from such published trajectories can be used to profile and identify users, including during contact tracing in pandemics (e.g., COVID-19) or the monitoring of demonstrations (e.g., surveillance). However, existing trajectory publishing algorithms generally rely on batch processing platforms, and rarely pay attention to real-time privacy protection processing in streaming scenarios. Therefore, we propose a stream processing framework containing two modules for spatio-temporal data. This framework is designed to achieve high data utility, while effectively ensuring the preservation of privacy in the published results. The first module is TSP, which concurrently receives real-time queries from individuals and releases new sanitizing trajectories. The second module is VCR comprising three algorithms based on differential privacy to facilitate the publication of the distribution of position statistics. Our experiments on real-world datasets demonstrate that our framework can effectively guarantee privacy with high data utility, when the appropriate parameter configuration is chosen. In addition, compared with the baseline algorithm Ht-publication, our group-based algorithm AGn-publication achieves better data accuracy in terms of visitor counts at the same level of privacy protection.

xuyun zhang,Wan-Chun Dou,jian pei,surya nepal,chi yang,chang liu,jinjun chen

DOI: https://doi.org/10.1109/TC.2014.2360516

2015-01-01

Abstract:Cloud computing provides promising scalable IT infrastructure to support various processing of a variety of big data applications in sectors such as healthcare and business. Data sets like electronic health records in such applications often contain privacy-sensitive information, which brings about privacy concerns potentially if the information is released or shared to third-parties in cloud. A practical and widely-adopted technique for data privacy preservation is to anonymize data via generalization to satisfy a given privacy model. However, most existing privacy preserving approaches tailored to small-scale data sets often fall short when encountering big data, due to their insufficiency or poor scalability. In this paper, we investigate the local-recoding problem for big data anonymization against proximity privacy breaches and attempt to identify a scalable solution to this problem. Specifically, we present a proximity privacy model with allowing semantic proximity of sensitive values and multiple sensitive attributes, and model the problem of local recoding as a proximity-aware clustering problem. A scalable two-phase clustering approach consisting of a t-ancestors clustering (similar to k-means) algorithm and a proximity-aware agglomerative clustering algorithm is proposed to address the above problem. We design the algorithms with MapReduce to gain high scalability by performing data-parallel computation in cloud. Extensive experiments on real-life data sets demonstrate that our approach significantly improves the capability of defending the proximity privacy breaches, the scalability and the time-efficiency of local-recoding anonymization over existing approaches.

Ge Zhang,Haozhan Wang,Zhongzhi Luan,Weiguo Wu,Depei Qian

DOI: https://doi.org/10.1109/CIT.2017.48

2017-01-01

Abstract:Many organizations and end sensors produce massive data around the globe. To analyze the data as a whole, the traditional way is to copy all data to a central datacenter for analysis. This is neither practical nor efficient as the huge transfer data size and the limited network bandwidth. Whatu0027s more, the data privacy may also matters. Instead of transferring data, we believe moving the computation to where the data is can be a better way to solve this problem. In this paper, we design an algorithm for geo-distributed big data process which is both data-aware and network-aware. Considering the computationu0027s characteristics, we take advantage of data dependency to find out the data locality. And use the integer linear programming (ILP) to achieve network-aware. The implementation of our algorithm is on the top of Spark. We improve the performance of geo-distributed data process by 22% in our experiments.

Shaowei Wang,Yun Peng,Kongyang Chen,Wei Yang

DOI: https://doi.org/10.1109/infocom52122.2024.10621194

2024-01-01

Abstract:Online data analytics with local privacy protection is widely adopted in real-world applications. Despite numerous endeavors in this field, significant gaps in utility and functionality remain when compared to its offline counterpart. This work demonstrates that private data analytics can be conducted online without excess utility loss, even at a constant factor. We present an optimal, streamable mechanism for local differentially private sparse vector estimation. The mechanism enables a range of online analytics on streaming binary vectors, including multi-dimensional binary, categorical, or set-valued data. By leveraging the negative correlation of occurrence events in the sparse vector, we attain an optimal error rate under local privacy constraints, only requiring streamable computations during the input’s data-dependent phase. Through experiments with both synthetic and real-world datasets, our proposals have been shown to reduce error rates by 40% to 60% compared to SOTA approaches.

Qian Wang,Yan Zhang,Xiao Lu,Zhibo Wang,Zhan Qin,Kui Ren

DOI: https://doi.org/10.1109/tdsc.2016.2599873

2016-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Nowadays gigantic crowd-sourced data collected from mobile phone users have become widely available, which enables the possibility of many important data mining applications to improve the quality of our daily lives. While providing tremendous benefits, the release of these data to the public will pose a considerable threat to mobile users' privacy. To solve this problem, the notion of differential privacy has been proposed to provide privacy with theoretical guarantee, and recently it has been applied in streaming data publishing. However, most of the existing literature focus on either event-level privacy on infinite streams or user-level privacy on finite streams. In this paper, we investigate the problem of real-time spatiotemporal crowd-sourced data publishing with privacy preservation. Specifically, we consider continuous publication of population statistics for monitoring purposes and design RescueDP-an online aggregate monitoring scheme over infinite streams with privacy guarantee. RescueDP's key components include adaptive sampling, adaptive budget allocation, dynamic grouping, perturbation and filtering, which are seamlessly integrated as a whole to provide privacy-preserving statistics publishing on infinite time stamps. We show that RescueDP can achieve w-event privacy over data generated and published periodically by crowd users. We evaluate our scheme with real-world as well as synthetic datasets and compare it with two w-event privacy-assured representative benchmarks. Experimental results show that our solution outperforms the existing methods and improves the utility with strong privacy guarantee.

Yuhang Wang,Zhihong Tian,Hongli Zhang,Shen Su,Wei Shi

DOI: https://doi.org/10.3390/s18082440

IF: 3.9

2018-01-01

Sensors

Abstract:In recent years, location privacy concerns that arise when using the nearest neighbor query services have gained increasing attention, as such services have become pervasive in mobile social networks devices and the IoT environments. State-of-the-art privacy preservation schemes focus on the obfuscation of the location information, which has suffered from various privacy attacks and the tradeoff of the quality of service. By noticing the fact that the user’s location could be replaced by their surrounding wireless sensor infrastructures in proximity, in this paper, we propose a wireless sensor access point-based scheme for the nearest neighbor query, without using the location of the user. Then, a noise-addition-based method that preserves user’s location privacy was proposed. To further strengthen the adaptability of the approach to real-world environments, several performance-enhancing methods are introduced, including an R-tree-based Noise-Data Retrieval Algorithm (RNR), and a nearest neighbor query method based on our research. Both performance and security evaluations are conducted to validate our approach. The results show the effectiveness and the practicality of our work.