Chuan Zhang,Liehuang Zhu,Jianbing Ni,Cheng Huang,Xuemin Shen

DOI: https://doi.org/10.1109/tvt.2020.3005363

IF: 6.8

2020-01-01

IEEE Transactions on Vehicular Technology

Abstract:Crowdsourcing-based traffic monitoring plays an important role in advanced traffic management systems due to its high accuracy and low costs, but it may expose drivers real identities and sensitive locations that results in the privacy leakage of drivers. In this paper, we propose a crowdsourcing-based traffic monitoring scheme that enables a transportation management center (TMC) to achieve traffic flow statistics at road intersections in an efficient, verifiable, and privacy-preserving manner. Specifically, by integrating a homomorphic encryption primitive and a super-increasing sequence, traffic flow can be flexibly structured and encrypted by drivers, i.e., each drivers travel direction at T-junctions or crossroads is protected. As a middle-ware between drivers and TMC, roadside units (RSUs) are introduced to aggregate and further perturb the aggregated encrypted traffic flow based on a differential privacy mechanism. In this way, TMC is capable of acquiring the traffic flow statistics by decrypting the perturbed encrypted traffic flow, without disclosing each individual drivers traffic information. In addition, based on a lightweight commitment proof, the correctness of the encrypted drivers data can be guaranteed, i.e., a selfish driver cannot arbitrarily manipulate his data to poison the aggregated traffic flow. Finally, security analysis demonstrates that the proposed scheme satisfies all desirable security properties, including confidentiality, verifiability, unlinkability, and traceability. Extensive simulations are also conducted to show that the proposed scheme is efficient in terms of low computation and communication costs.

Guang Yang,Shibo He,Junshan Zhang,Zhiguo Shi

DOI: https://doi.org/10.1109/tvt.2019.2950907

IF: 6.8

2019-01-01

IEEE Transactions on Vehicular Technology

Abstract:Crowdsensing has been recognized as a promising data collection paradigm, in which a platform outsources sensing tasks to a large number of users. However, requesting users to report raw data may give rise to many practical concerns, such as a significant overhead of communication and central processing, besides users' privacy concerns. In many scenarios (e.g, advertising and recommendation), the data collector directly benefits from statistical aggregation of raw data. Thus motivated, we consider the data collection problem based on user's local histograms, which is intimately related to the fundamental trade-off between the platform's accuracy and users' privacy. Because of users' social relationship, their data are often correlated, indicating that users' privacy may be leaked from others' data. To tackle this challenge, we first utilize Gaussian Markov random fields to model the correlation structure embedded in users' data. The data collection is modeled as a Stackelberg game where the platform decides its reward policy and users decide their noise levels while taking into account the social coupling among users. For the reward policy design, we first establish the relationship between users' Nash equilibrium and the payment mechanism, and then optimize the platform's accuracy under a budget constraint. Further, since the noise levels are users' private information, they may use falsified noise levels to achieve higher payoffs, which in turn impairs the crowdsensing performance. It turns out that with the insight into the correlation structure among users' data, the information asymmetry can be overcome based on peer prediction. We revisit the payment mechanism to guarantee dominant truthfulness of each user's strategy. Theoretical analysis and numerical results demonstrate the effectiveness of the proposed mechanism.

Chuan Zhang,Liehuang Zhu,Chang Xu,Xiaojiang Du,Mohsen Guizani

DOI: https://doi.org/10.48550/arXiv.1902.04663

2019-02-13

Abstract:The explosive growth of vehicle amount has given rise to a series of traffic problems, such as traffic congestion, road safety, and fuel waste. Collecting vehicles' speed information is an effective way to monitor the traffic condition and avoid vehicles being congested, which however may bring threats to vehicles' location and trajectory privacy. Motivated by the fact that traffic monitoring does not need to know each individual vehicle's speed and the average speed would be sufficient, we propose a privacy-preserving traffic monitoring (PPTM) scheme to aggregate vehicles' speeds at different locations. In PPTM, the roadside unit (RSU) collects vehicles' speed information at multiple road segments, and further cooperates with a service provider to calculate the average speed information for every road segment. To preserve vehicles' privacy, both homomorphic Paillier cryptosystem and super-increasing sequence are adopted. A comprehensive security analysis indicates that the proposed PPTM can preserve vehicles' identities, speeds, locations, and trajectories privacy from being disclosed. In addition, extensive simulations are conducted to validate the effectiveness and efficiency of the proposed PPTM scheme.

Cryptography and Security

Jian An,Zhenxing Wang,Xin He,Xiaolin Gui,Jindong Cheng,Ruowei Gui

DOI: https://doi.org/10.1109/tnet.2022.3141582

2022-01-01

IEEE/ACM Transactions on Networking

Abstract:With the rapid development of embedded smart devices, a new data collection paradigm, mobile crowd-sensing (MCS), has been proposed. MCS allows individuals from the crowd to act as sensors and contribute their observation data. However, existing MCS systems are mostly based on third-party platforms, and there is no guarantee that a center is completely credible. In addition, security and privacy issues should not be ignored. During MCS' execution, the participants' various information and truth value are usually exposed, and the computation related to data privacy cannot be verified. In this paper, we integrate the blockchain into the MCS scenario to design a blockchain based privacy-preserving quality control mechanism, which prevents data from being tampered with, and denied, ensuring that the reward is distributed fairly. In the new system, we propose a privacy preserving participant selection scheme and the result can be verified (i.e., security against malicious node) without any third-party arbiter. Finally, considering the issues with sensing data privacy and efficiency in the truth discovery process, we propose a new privacy-aware crowdsensing design with iterative truth discovery based on rational secure multi-party computation. The experimental results show that compared to the prior result, the proposed solutions are highly practical and facilitate quality control without violating the participant's privacy.

Yapei Huang,Yun Tian,Zhijie Liu,Xiaowei Jin,Yanan Liu,Shifeng Zhao,Daxin Tian

DOI: https://doi.org/10.1145/3391707

IF: 5

2020-08-31

ACM Transactions on Intelligent Systems and Technology

Abstract:Acquiring traffic condition information is of great significance in transportation guidance, urban planning, and route recommendation. To date, traffic density data are generally acquired by road sound analysis, video data analysis, or in-vehicle network communication, which are usually financially or temporally expensive. Another way to get traffic conditions is to collect track data by crowdsourcing. However, this way lead to a greater risk of leaking users’ privacy. To avoid the risk, this article proposes a traffic density estimation model based on crowdsourcing privacy protection. First, in the acquisition process of the track data by crowdsourcing, dual servers are employed for transmission, and homomorphic encryption is carried out to encrypt the data to protect the data from being leaked during transmission. Second, sampling is implemented for randomization and anonymization to reduce the spatial continuity and temporal continuity of position data. In this way, the intermediate server cannot acquire users’ original data, and the main server cannot obtain users’ personal information. Finally, before data transmission, Laplace noising is performed on the users’ local position data to further protect the original location information. The proposed algorithm in this study realizes that only users have their original track data, and the servers involved in the work cannot infer the original track data, which ensures the real security of user privacy. The proposed algorithm was verified with the track data from the Didi Gaia Data Opening Plan. The experimental results showed that the proposed algorithm could still maintain the validity of data analysis results and the security of user data privacy after homomorphic encryption, noise addition, and sample collection, and displayed good robustness and scalability.

computer science, information systems, artificial intelligence

Kamenyi M. Domenic,Yong Wang,Fengli Zhang,Imran Memon,Yankson H. Gustav

DOI: https://doi.org/10.1109/iciii.2013.6702947

2013-01-01

Abstract:Mobile devices (e.g., smart phones) and location based services are very popular with today's users. Due to this popularity, there has been a tremendous increase in use of these services and as a result, leakages of both location and query contents is common. In a case where users are constrained by road network, an attacker can follow users' trajectory with ease. Most of the current privacy preserving solutions focus on temporal and spatial cloaking based methods to protect users' location privacy. However, these solutions are vulnerable when subjected to continuous query environments. In this paper, we offer our solution to the problem of preserving privacy of users' trajectory for continuous LBS queries in road networks. We propose a centralized architecture in form of honest-but-curious model to provide anonymity for users as they use LBS services. To achieve this, we employ mix zone approach and design two algorithms namely; Optimal Mixing Load Sub-graph (OMLS) Algorithm that finds an optimal placement of mix zones and creates three levels of security, and Semantically Based Graph Abstraction (SBGA) Algorithm that uses the three layers of security to achieve greater anonymity strength. We analyze the capability of our algorithms to withstand attacks prone to mix zones and carry out experiments to verify this. The experiments results show that our Algorithms preserves privacy for users based on their privacy condition.

Chenglin Miao,Wenjun Jiang,Lu Su,Yaliang Li,Suxin Guo,Zhan Qin,Houping Xiao,Jing Gao,Kui Ren

DOI: https://doi.org/10.1145/3277505

2019-02-21

ACM Transactions on Sensor Networks

Abstract:The recent proliferation of human-carried mobile devices has given rise to the crowd sensing systems. However, the sensory data provided by individual participants are usually not reliable. To better utilize such sensory data, the topic of truth discovery, whose goal is to estimate user quality and infer reliable aggregated results through quality-aware data aggregation, has drawn significant attention. Though able to improve aggregation accuracy, existing truth discovery approaches fail to address the privacy concerns of individual users. In this article, we propose a novel privacy-preserving truth discovery (PPTD) framework, which can protect not only users’ sensory data but also their reliability scores derived by the truth discovery approaches. The key idea of the proposed framework is to perform weighted aggregation on users’ encrypted data using a homomorphic cryptosystem, which can guarantee both high accuracy and strong privacy protection. In order to deal with large-scale data, we also propose to parallelize PPTD with MapReduce framework. Additionally, we design an incremental PPTD scheme for the scenarios where the sensory data are collected in a streaming manner. Extensive experiments based on two real-world crowd sensing systems demonstrate that the proposed framework can generate accurate aggregated results while protecting users’ private information.

computer science, information systems,telecommunications

Huiting Fan,Kai Xing,Lei Tan,Weikang Rui,Zhonghu Xu,Shuo Zhang,Jing Xu

DOI: https://doi.org/10.1155/2017/8026787

IF: 1.968

2017-01-01

Security and Communication Networks

Abstract:In social activities, people are interested in some statistical data, such as purchase records, monthly consumption, and health data, which are usually utilized in recommendation systems. And it is seductive for them to acquire the ranking of these data among friends or other communities. In the meantime, they want their privacy data to be confidential. Therefore, a strategy is presented to allow users to obtain the result of calculating their privacy data while preserving these data. In this method, firstly a polynomial approximation function model is set up for each user. Afterwards, "fragment" the coefficients of each model into pieces. Eventually "blend" all scraps to build the global model of all users. Users can use the global model to gain their corresponding ranking results after a special computing. Security analyses of three aspects elaborate the validity of proposed privacy method, even if some spiteful attackers try to steal private data of users, no matter who they are (users or someone outside the community). Experiments results manifest that the global model competently fits all users data and all privacy data are protected.

Dong Yuan,Qi Li,Guoliang Li,Qian Wang,Kui Ren

DOI: https://doi.org/10.1109/tifs.2019.2913232

IF: 7.231

2020-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Privacy leakage is a serious issue in spatial crowdsourcing in various scenarios. In this paper, we study privacy protection in spatial crowdsourcing. The main challenge is to efficiently assign tasks to nearby workers without needing to know the exact locations of tasks and workers. To address this problem, we propose a privacy-preserving framework without online trusted third parties. We devise a grid-based location protection method, which can protect the locations of workers and tasks while keeping the distance-aware information on the protected locations such that we can quantify the distance between tasks and workers. We propose an efficient task assignment algorithm, which can instantly assign tasks to nearby workers on encrypted data. To protect the task content, we leverage both attribute-based encryption and symmetric-key encryption to establish secure channels through servers, which ensures that the task is delivered securely and accurately by any untrusted server. Moreover, we analyze the security properties of our method. We have conducted real experiments on real-world datasets. Experimental results show that our method outperforms existing approaches.

Lei Tan,Huiting Fan,Weikang Rui,Zhonghu Xu,Shuo Zhang,Jing Xu,Kai Xing

DOI: https://doi.org/10.1007/978-3-319-42836-9_25

2016-01-01

Abstract:With the raising popularity of online/mobile social applications, many individuals are increasingly attracted to their relative positions when compared to others in terms of emotional mood, travelling location, walking distance, fitness status, etc. These interest can be summarized as one question "where am I in my community?". However, it often forms a deadlock that people are interested in the others' data but are unwilling to disclose their own information (mood, health, etc.).In order to break the deadlock, we propose a privacy preserving participatory sensing scheme that will not disclose individual's privacy. Specifically, we present a privacy preservation data gathering approach and adopt an improved data mining algorithm to acquire a polynomial approximation function model on distributed user data to provide a privacy preservation method in participatory sensing. Experiments demonstrate that our approach can achieve a valid result comparing with the result without privacy preservation.

Fei Chen,Xinjian Zhang,Bo Ning,Chao Yang,Xiao Jia

DOI: https://doi.org/10.1186/s13634-023-01082-3

2023-11-29

EURASIP Journal on Advances in Signal Processing

Abstract:Multi-Agent Systems are characterized by the presence of multiple independent agents and find diverse applications. In the context of smart cities, MAS is employed in traffic management to enhance operational efficiency, optimize resource utilization, and improve the quality of life for residents. This research paper focuses on the design of a multi-agent intelligent scheduling system, where passengers, vehicles, and carpooling platforms serve as intelligent agents. The primary objective of passengers is to identify suitable shared vehicles based on criteria such as waiting time, budget constraints, and willingness to carpool. Vehicles, on the other hand, organize their schedules based on passenger demands and designated routes. The carpooling platform takes into account resource allocation priority and optimization problems to ensure the efficient operation of the system. To address the issue of vehicle ordering, k -regret queries are utilized, while passenger preferences provide insight into determining loss factors. To safeguard privacy, differential privacy techniques and a random response mechanism are employed when dealing with multiple passenger queries. Furthermore, a direction-preserving insertion verification method is implemented to mitigate computational complexity. The effectiveness and efficiency of the proposed approach are validated through experimentation.

engineering, electrical & electronic

Ke Xu,Kai Han,Hang Ye,Feng Gao,Chaoting Xu

DOI: https://doi.org/10.1007/978-3-319-94268-1_42

2018-01-01

Abstract:Spatial crowdsourcing system refers to sending various location-based tasks to workers according to their positions, and workers need to physically move to specified locations to accomplish tasks. The workers are restricted to report their real-time sensitive position to the server so as to keep in coordination with the crowdsourcing server. Therefore, implementing crowdsourcing system while preserving the privacy of workers sensitive information is a key issue that needs to be tackled. We discard the assumption of a trustworthy third party cellular service provider (CSP), and further propose a local method to achieve acceptable results. A differential privacy model ensures rigorous privacy guarantee, and Laplace mechanism noise is introduced to preserve workers sensitive information. Finally, we verify the effectiveness and efficiency of the proposed methods through extensive experiments on real-world datasets.

Chuan Zhang,Liehuang Zhu,Chang Xu,Ximeng Liu,Kashif Sharif

DOI: https://doi.org/10.1109/tdsc.2019.2919517

2019-01-01

IEEE Transactions on Dependable and Secure Computing

Abstract:Truth discovery has received considerable attention in mobile crowdsensing systems. In real practice, it is vital to resolve conflicts among a large amount of sensory data and estimate the truthful information. Although truth discovery has been widely explored to improve aggregation accuracy, numerous security and privacy issues still need to be addressed. Existing schemes either do not guarantee the privacy of each participating user, or fail to consider practical needs in crowdsensing systems. In this paper, we present two reliable and privacy-preserving truth discovery schemes for different scenarios. Our first design is fit for applications where users are relatively stable. By employing the homomorphic Paillier encryption, one-way hash chain, and super-increasing sequence techniques, this approach not only guarantees strong privacy, but also is highly efficient and practical. Our second design suits applications where users are frequently moving. In such an application, we explore data perturbation and homomorphic Paillier encryption to shift all user workloads to the server side, without compromising users’ privacy. Through detailed security analysis, we demonstrate that both schemes are secure, practical, and privacy-preserving. Moreover, extensive experiments based on real world and simulated mobile crowdsensing systems, we demonstrate the efficiency of our proposed schemes.

Kaizhong Zuo,Xixi Chu,Peng Hu,Tianjiao Ni,Tingting Jin,Fulong Chen,Zhangyi Shen

DOI: https://doi.org/10.1007/s11227-024-05995-0

IF: 3.3

2024-03-13

The Journal of Supercomputing

Abstract:The intelligent transportation system can make traffic decisions through the sensory data collected by vehicles to ensure driving safety, improve traffic efficiency and traffic environment. Thus, the system has been widely concerned by industry and academia. However, the intelligent transportation system confronts several challenges in location privacy protection and data security during data aggregation. To solve these challenges, we propose a security-enhanced privacy-preserving data aggregation scheme for the intelligent transportation system, named SEPDA. Specifically, the SEPDA scheme utilizes the Chinese Remainder Theorem, Modified Paillier Cryptosystem and T-N Threshold Sharing to protect the location privacy and information security of vehicles, and obtains the mean and variance in the data report reading and analytics process. The SEPDA also uses the threshold cryptosystem to enhance the security of the traffic management center, which can avoid single-point attacks. Meanwhile, SEPDA employs batch authentication technology to reduce authentication overhead. Detailed security analysis and performance evaluation show that the SEPDA can resist various security threats and has low computational complexity, communication overhead and communication delay.

computer science, theory & methods,engineering, electrical & electronic, hardware & architecture

Chenglin Miao,Wenjun Jiang,Lu Su,Yaliang Li,Suxin Guo,Zhan Qin,Houping Xiao,Jing Gao,Kui Ren

DOI: https://doi.org/10.1145/2809695.2809719

2015-01-01

Abstract:The recent proliferation of human-carried mobile devices has given rise to the crowd sensing systems. However, the sensory data provided by individual participants are usually not reliable. To identify truthful values from the crowd sensing data, the topic of truth discovery, whose goal is to estimate user quality and infer truths through quality-aware data aggregation, has drawn significant attention. Though able to improve aggregation accuracy, existing truth discovery approaches fail to take into consideration an important issue in their design, i.e., the protection of individual users' private information. In this paper, we propose a novel cloud-enabled privacy-preserving truth discovery (PPTD) framework for crowd sensing systems, which can achieve the protection of not only users' sensory data but also their reliability scores derived by the truth discovery approaches. The key idea of the proposed framework is to perform weighted aggregation on users' encrypted data using homomorphic cryptosystem. In order to deal with large-scale data, we also propose to parallelize PPTD with MapReduce framework. Through extensive experiments on not only synthetic data but also real world crowd sensing systems, we justify the guarantee of strong privacy and high accuracy of our proposed framework.

Zhen CAO,Yu-e SUN,He HUANG,Le LU,Yang DU,Liu-sheng HUANG

DOI: https://doi.org/10.3969/j.issn.1000-1220.2019.06.024

2019-01-01

Abstract:The crowdsensing platform may be untrustworthy when multiple task requesters share a common platform. However,none of the existing mechanism can protect the privacy of task requesters in the procedure of task assignment,which will affect the application and development of the crowdsensing systems. To solve this problem,we propose a crowdsensing task allocation mechanism,which can protect the budget,profit function of task requesters and the sensitive information of users simultaneously. The proposed privacy-preserving task allocation mechanism introduces the semi-trusted third parties. Since the sensing data of users may leak their privacy, we need to prevent the platform or the requester from associating the users with their submitted sensing data. To achieve this,the pro-posed mechanism lets users communicate with the platform or requesters by using dynamic IPs,and uses RSA digital signature tech-nology to finish the payment between users and requesters. Further to protect the bid privacy of users and the budget privacy of task re-questers,homomorphic encryption operation,data disturbance and permutation are used in process of crowdsensing task allocation. We prove that the proposed mechanism can maximize the total revenue of all task requesters,and can protect the sensitive information of users and budgets of task requesters in the task allocation and payment process. Finally,the effectiveness and feasibility of the proposed task allocation mechanism are verified by the simulation results.

Shumei Yang,Shaohua Tang,Xiao Zhang

DOI: https://doi.org/10.1016/j.jpdc.2019.07.013

IF: 4.542

2019-01-01

Journal of Parallel and Distributed Computing

Abstract:k nearest neighbor (kNN) queries are frequently used in location-based services (LBSs), by which we wish to get k closest points of interest (POIs) given a certain point. Since the cloud computing is developing fast, LBS providers are tended to outsource spatial databases to the cloud. However, cloud servers are often untrusty, so that ensuring the spatial query integrity as well as the spatial query privacy is critical. We present a verifiable privacy-preserving kNN query scheme, which can be used on road networks. Our work makes use of the network Voronoi diagram and several cryptographic primitives including pseudo-random functions, Paillier cryptosystem, condensed RSA digital signature, and so on. It can simultaneously preserve the privacy of spatial data and kNN queries, and verify the reliability of query results. The effectiveness and practicability of our scheme are validated by our experimental results. We further analyzed the security of our scheme under the adaptive chosen-query attack via rigorous proof.

Jingwei Wang,Xinchun Yin,Jianting Ning

DOI: https://doi.org/10.1155/2021/6682456

IF: 1.968

2021-01-01

Security and Communication Networks

Abstract:Mobile crowdsensing enables people to collect and process a massive amount of information by using social resources without any cost on sensor deployment or model training. Many schemes focusing on the problems of task assignment and privacy preservation have been proposed so far. However, the privacy-preserving of requesters and task access control, which are vital to mobile crowdsensing, is barely considered in the literature. To address the aforementioned issues, a fine-grained task access control system for mobile crowdsensing is proposed. In particular, the requester can decide the group of task performers who can access the task by utilizing attribute-based encryption technology. T he untrusted crowdsensing platform cannot obtain any sensitive information concerning the requester or the task, while the qualified task performers are capable of retrieving tasks within 0.85 ms. Security analysis and experimental results are presented to show the feasibility and efficiency of the proposed system.

Yongfeng Wang,Zheng Yan,Wei Feng,Shushu Liu

DOI: https://doi.org/10.1007/s11280-019-00745-2

2019-01-01

World Wide Web

Abstract:The unprecedented proliferation of mobile smart devices has propelled a promising computing paradigm, Mobile Crowd Sensing (MCS), where people share surrounding insight or personal data with others. As a fast, easy, and cost-effective way to address large-scale societal problems, MCS is widely applied into many fields, e.g., environment monitoring, map construction, public safety, etc. Despite the popularity, the risk of sensitive information disclosure in MCS poses a serious threat to the participants and limits its further development in privacy-sensitive fields. Thus, the research on privacy protection in MCS becomes important and urgent. This paper targets the privacy issues of MCS and conducts a comprehensive literature research on it by providing a thorough survey. We first introduce a typical system structure of MCS, summarize its characteristics, propose essential requirements on privacy on the basis of a threat model. Then, we survey existing solutions on privacy protection and evaluate their performances by employing the proposed requirements. In essence, we classify the privacy protection schemes into four categories with regard to identity privacy, data privacy, attribute privacy, and task privacy. Besides, we review the achievements on privacy-preserving incentives in MCS from four viewpoints of incentive measures: credit incentive, auction incentive, currency incentive, and reputation incentive. Finally, we point out some open issues and propose future research directions based on the findings from our survey.

Hao Long,Shukui Zhang,Jin Wang,Cheng-Kuan Lin,Jia-Jun Cheng

DOI: https://doi.org/10.1177/1550147717739156

IF: 1.938

2017-10-01

International Journal of Distributed Sensor Networks

Abstract:With the development of mobile smartphones equipped with a large number of sensor devices, mobile crowd computing has become the hotspot of current research. In the application, the publishers use the application platform to release the task and then select the appropriate users to participate in the task by bidding and collect their data, in which the users’ identity, location, and other private information face the risk of disclosure. To solve the problem of privacy disclosure in mobile crowd computing, we propose a privacy preserving method based on Voronoi Polygon (PP - Voronoi). The users construct the Voronoi diagram to form a cloaked region hiding users identity and then calculate the anchor point of the cloaked region, by which the users communicate with the task publisher to achieve privacy protection of the cloaked region and K anonymity. The experimental results show that compared with other privacy preserving methods, PP-Voronoi method has better effectiveness of privacy protection and lower network traffic.

computer science, information systems,telecommunications