Xinyue Zhang,Jingyi Wang,Minglei Shu,Yinglong Wang,Miao Pan,Zhu Han

DOI: https://doi.org/10.1109/access.2018.2884516

IF: 3.9

2018-01-01

IEEE Access

Abstract:The popularity of mobile devices with global positioning system (GPS) has boosted various wireless location-based services (LBSs). Certain honest-but-curious or even dishonest LBS servers may learn the users' trajectories from location trace files, and the users' privacy can be compromised. In this paper, we propose a quantitative approach to model trajectory inference attacks via tensor voting, which can be widely applied in computer vision and machine learning as a perceptual organization. To counter the tensor voting based attacks, we propose a novel trajectory privacy preservation TPP scheme, in which LBS users will intentionally generate dummy trajectories to obfuscate LBS servers. Meanwhile, the LBS users have the option to disclose their trajectories to trustworthy parties (e.g., users' parents) by sending those parties a few more encrypted locations. Considering the power constraint of hand-held mobile devices, we mathematically formulate the trajectory privacy preservation problem into a mixed integer linear programming optimization problem and propose the algorithms for optimizing solutions. Through simulations and analysis, we show that the proposed scheme can effectively preserve LBS users' trajectory privacy against tensor voting-based inference attacks with limited power consumption.

Xumeng Wang,Tianlong Gu,Xiaonan Luo,Xiwen Cai,Tianyi Lao,Wenlong Chen,Yingcai Wu,Jinhui Yu,Wei Chen

DOI: https://doi.org/10.1109/tits.2018.2875021

IF: 8.5

2019-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:Visual analysis is widely applied to study human mobility due to the ability of integrating contextual information from multiple data sources. Analyzing trajectory data through visualization improves the efficiency and accuracy of the analysis, yet it may induce exposure of the location privacy. To balance the location privacy and analysis effectiveness, this work focuses on the behaviors of different geo-based contexts in the process of trajectory interpretation. Three types of geo-based contexts are identified after surveying 94 related literatures. We further conduct experiments to investigate their capability by evaluating how they benefit the analysis, and whether they lead to location privacy exposure. Finally, we report and discuss interesting findings, and provide guidelines to the design of privacy-preserving analysis approaches for human periodic trajectories.

Qu Lu,Hua Dai,Bohan Li,Pengyue Li,Qian Zhou,Qiang Zhou,Geng Yang

DOI: https://doi.org/10.1007/978-981-97-7241-4_12

2024-01-01

Abstract:With the expansion of cloud computing, its effectiveness in handling large datasets, particularly trajectory, has become evident. However, due to the sensitivity of trajectory data, sharing it in plaintext could lead to privacy risks. It is a challenge to implement secure and efficient contact query based on trajectory data in the cloud. In this paper, we propose a privacy-preserving contact query processing over trajectory data. The trajectory vectorization is designed to encrypt trajectories that support secure distance comparison through vector inner product. Based on the trajectory vectors, the baseline privacy-preserving contact query processing scheme (EPCQ) is introduced. To improve the efficiency of contact query, the quick-filtering checkpoint optimization strategy is presented. By adopting it, the enhanced privacy-preserving contact query processing scheme (EPCQ+) is introduced. Experimental results show that the proposed schemes perform well in query accuracy and efficiency.

Zhe Xiao,Jing-Jing Yang,Ming Huang,Loganathan Ponnambalam,Xiuju Fu,Rick Siow Mong Goh

DOI: https://doi.org/10.1109/tmc.2017.2768360

IF: 6.075

2018-06-01

IEEE Transactions on Mobile Computing

Abstract:Participatory sensing, leveraging on the ubiquity of cheap sensors in mobile devices, enables various promising applications of great social benefit. However, its ubiquitous sampling and openness results in serious privacy concerns. People's activity trajectories may reveal their private information such as home and work place and thus requires proper protection. In this paper, we propose a novel design scheme, called query logics detached storage (QLDS), for trajectory privacy protection. The core idea of QLDS is to extract the query logics for personal trajectory retrieval and make actual trajectory tuples not clustered to any route-identity or user-identity at server end, which introduces fine-granularity anonymity. The QLDS design scheme stores the extracted query logics at users own client devices and the un-clustered location tuples at the backend server, guaranteeing trajectory reconstruction at client-end and privacy preservation at server-end. Besides, integration of QLDS with other privacy protection approaches can further enhance the protection strength and bring flexible configurations to meet individuals variable privacy concerns. The theoretical analytics is provided for the privacy and utility evaluation. The data retrieval performance of QLDS is experimentally evaluated in real-world internet environment.

computer science, information systems,telecommunications

ZHANG Shao-bo,LIU Qin,LI Xiong,WANG Guo-jun

DOI: https://doi.org/10.3969/j.issn.1001-0548.2018.03.020

2018-01-01

Abstract:To address the intersecting region of the continuous range queries needs to repeat queries in the location-based service, this paper proposes a method of trajectory privacy protection based on caching candidate result set. The method utilizes two-level cache mechanism to cache user's candidate result set at client and anonymizer, and the next query point on the trajectory can obtain the answer from the cached data, which can reduce the interaction between the user and the server to reduce the risk of user's information exposed to the server. At the same time, we propose the k-anonymity of the mobile location prediction based on the Markov model, which can improve the hit ratio of cache and enhance the user's trajectory privacy. Security analysis shows that the method can effectively protect the user's trajectory privacy. Experiments show this method can reduce the computation and communication overhead of the server.

Yan Dai,Jie Shao,Chengbo Wei,Dongxiang Zhang,Heng Tao Shen

DOI: https://doi.org/10.1007/s11280-017-0489-2

2017-08-26

World Wide Web

Abstract:Trajectory data gathered by mobile positioning techniques and location-aware devices contain plenty of sensitive spatial-temporal and semantic information, and can support many applications through data analysing and mining. However, attribute-linkage and re-identification attacks on such data may cause privacy leakage, and lead to unexpected serious consequences. Existing privacy preserving techniques for trajectory data often ignore the different privacy requirements of different moving objects or largely scarify the availability of trajectory data. In view of these issues, we propose an effective personalized trajectory privacy preserving method which can strike a good balance between user-defined privacy requirement and data availability in off-line trajectory publishing scenario. The main idea is to firstly label semantic attributes of all sampling points on the trajectory and build a corresponding taxonomy tree, next extract sensitive stop points, then for different types of sensitive stop points, adopt different strategies to select the appropriate points of user interests to replace while considering user speed and avoiding reverse mutation, and finally publish the reconstructed trajectory. Besides, to make our method more realistic we further consider possible obstacles appeared in the user space environment. In the experiments, average identification possibility, trajectory semantic consistency and trajectory shape similarity are taken as evaluation criteria, and the performance of our method is comprehensively evaluated. The results show that our method can improve the user trajectory availability as much as possible, while effectively achieving the different trajectory privacy requirements.

Wang Yilei,Zhou Hao,Wu Yingjie,Sun Lan

2013-01-01

Abstract:To solve the possible privacy breach in the continuous queries of location based services,an algorithm for continuous queries privacy preservation based on history trajectories was proposed.It was found that the traditional greedy algorithm for anonymizing two trajectories cannot guarantee global minimal trajectory distortions.Therefore,a dynamic programming trajectories anonymization algorithm was firstly presented,which could find out the best pairing scheme with global optimal distortions between history trajectory and base trajectory.After that,an effective trajectories anonymization algorithm for continuous queries privacy preserving was put forward.Experimental analysis was designed by comparing the algorithm in this paper and the traditional algorithms on the data quality of released trajectories.Experimental results show that the proposed algorithm in this paper is effective and feasible.

Lu Qiwei,Wang Caimei,Xiong Yan,Xia Huihua,Huang Wenchao,Gong Xudong

DOI: https://doi.org/10.1049/cje.2017.01.024

IF: 1.019

2017-01-01

Chinese Journal of Electronics

Abstract:Due to the popularity of mobile Internet and location-aware devices, there is an explosion of location and trajectory data of moving objects. A few proposals have been proposed for privacy preserving trajectory data publishing, and most of them assume the attacks with the same adversarial background knowledge. In practice, different users have different privacy requirements. Such non-personalized privacy assumption does not meet the personalized privacy requirements, meanwhile, it looses the chance to achieve better utility by taking advantage of differences of users' privacy requirements. We study the personalized trajectory k-anonymity criterion for trajectory data publication. Specifically, we explore and propose an overall framework which provides privacy preserving services based on users' personal privacy requests, including trajectory clusteiing, editing and publication. We demonstrate the efficiency and effectiveness of our scheme through experiments on real world dataset.

Ling Xing,Bing Li,Lulu Liu,Yuanhao Huang,Honghai Wu,Huahong Ma,Xiaohui Zhang

DOI: https://doi.org/10.1016/j.comnet.2024.110562

IF: 5.493

2024-06-09

Computer Networks

Abstract:As Location-Based Services (LBSs) proliferate within the Social Internet of Vehicles (SIoVs), the collection and utilization of vehicle trajectories, which are rich in spatio-temporal and semantic informations, have intensified. Publishing these trajectories without adequate privacy safeguards significantly threatens user semantic trajectory privacy. Current methodologies for protecting semantic trajectory privacy do not adequately consider the similarity in query probability between sensitive and alternative semantic locations, thus undermining the efficacy of privacy protection. To address this critical gap, we introduces a novel trajectory privacy protection method based on sensitive semantic location replacement (SSLR), which strategically replaces sensitive semantic locations. This method consists of three key steps: first, semantically annotating trajectory sampling locations to identify sensitive semantic points; second, employing a unique double semicircular area to define replacement regions and selecting replacement Points of Interests (PoIs) that align in semantic attributes and query probabilities; third, reconstructing and publishing the modified trajectories. Our simulation results confirm that SSLR advances the state of the art by delivering superior performance in average recognition rate, geographic similarity, and semantic similarity compared to existing methods. Crucially, by incorporating considerations of query probability similarities, this paper not only enhances the effect of trajectory privacy protection but also preserves its utility. This dual enhancement represents a groundbreaking approach to trajectory privacy, with significant implications for advancing privacy strategies in LBSs within SIoVs.

computer science, information systems,telecommunications,engineering, electrical & electronic, hardware & architecture

Sen Su,Yiping Teng,Xiang Cheng,Ke Xiao,Guoliang Li,Junliang Chen

DOI: https://doi.org/10.1109/tsc.2015.2481900

IF: 11.019

2015-01-01

IEEE Transactions on Services Computing

Abstract:With the rapid development of location-based services in mobile Internet, spatial keyword queries have been widely employed in various real-life applications in recent years. To realize the great flexibility and cost savings, more and more data owners are motivated to outsource their spatio-textual data services to the cloud. However, directly outsourcing such services to the untrusted cloud may arise serious privacy concerns. In this paper, we study the privacy-preserving top-k spatial keyword query problem in untrusted cloud environments. Existing studies primarily focus on the design of privacy-preserving schemes for either spatial or keyword queries, and they cannot be applied to solve the privacy-preserving spatial keyword query problem. To address this problem, we present a novel privacy-preserving top-k spatial keyword query scheme. In particular, we build an encrypted tree index to facilitate privacy-preserving top-k spatial keyword queries, where spatial and textual data are encrypted in a unified way. To search with the encrypted tree index, we propose two effective techniques for the similarity computations between queries and tree nodes under encryption. To improve query performance on large-scale spatio-textual data, we further propose a keyword-based secure pruning method. Thorough analysis shows the validity and security of our scheme. Extensive experimental results on real datasets demonstrate our scheme achieves high efficiency and good scalability.

Ren-Hung Hwang,Yu-Ling Hsueh,Hao-Wei Chung

DOI: https://doi.org/10.1109/tsc.2013.55

IF: 11.019

2014-04-01

IEEE Transactions on Services Computing

Abstract:Location-based services (LBS) which bring so much convenience to our daily life have been intensively studied over the years. Generally, an LBS query processing can be categorized into snapshot and continuous queries which access user location information and return search results to the users. An LBS has full control of the location information, causing user privacy concerns. If an LBS provider has a malicious intention to breach the user privacy by tracking the users' routes to their destinations, it incurs a serious threat. Most existing techniques have addressed privacy protection mainly for snapshot queries. However, providing privacy protection for continuous queries is of importance, since a malicious LBS can easily obtain complete user privacy information by observing a sequence of successive query requests. In this paper, we propose a comprehensive trajectory privacy technique and combine ambient conditions to cloak location information based on the user privacy profile to avoid a malicious LBS reconstructing a user trajectory. We first propose an r-anonymity mechanism which preprocesses a set of similar trajectories R to blur the actual trajectory of a service user. We then combine k-anonymity with s road segments to protect the user's privacy. We introduce a novel time-obfuscated technique which breaks the sequence of the query issuing time for a service user to confuse the LBS so it does not know the user trajectory, by sending a query randomly from a set of locations residing at the different trajectories in R. Despite the randomness incurred from the obfuscation process for providing strong trajectory privacy protection, the experimental results show that our trajectory privacy technique maintains the correctness of the query results at a competitive computational cost.

computer science, information systems, software engineering

Weiqi Zhang,Zhenzhen Xie,Akshita Maradapu Vera Venkata Sai,Qasim Zia,Zaobo He,Guisheng Yin

DOI: https://doi.org/10.26599/tst.2023.9010072

2024-04-01

Abstract:The widespread availability of GPS has opened up a whole new market that provides a plethora of location-based services. Location-based social networks have become very popular as they provide end users like us with several such services utilizing GPS through our devices. However, when users utilize these services, they inevitably expose personal information such as their ID and sensitive location to the servers. Due to untrustworthy servers and malicious attackers with colossal background knowledge, users' personal information is at risk on these servers. Unfortunately, many privacy-preserving solutions for protecting trajectories have significantly decreased utility after deployment. We have come up with a new trajectory privacy protection solution that contraposes the area of interest for users. Firstly, Staying Points Detection Method based on Temporal-Spatial Restrictions (SPDM-TSR) is an interest area mining method based on temporal-spatial restrictions, which can clearly distinguish between staying and moving points. Additionally, our privacy protection mechanism focuses on the user's areas of interest rather than the entire trajectory. Furthermore, our proposed mechanism does not rely on third-party service providers and the attackers' background knowledge settings. We test our models on real datasets, and the results indicate that our proposed algorithm can provide a high standard privacy guarantee as well as data availability.

computer science, information systems,engineering, electrical & electronic, software engineering

Shumei Yang,Shaohua Tang,Xiao Zhang

DOI: https://doi.org/10.1016/j.jpdc.2019.07.013

IF: 4.542

2019-01-01

Journal of Parallel and Distributed Computing

Abstract:k nearest neighbor (kNN) queries are frequently used in location-based services (LBSs), by which we wish to get k closest points of interest (POIs) given a certain point. Since the cloud computing is developing fast, LBS providers are tended to outsource spatial databases to the cloud. However, cloud servers are often untrusty, so that ensuring the spatial query integrity as well as the spatial query privacy is critical. We present a verifiable privacy-preserving kNN query scheme, which can be used on road networks. Our work makes use of the network Voronoi diagram and several cryptographic primitives including pseudo-random functions, Paillier cryptosystem, condensed RSA digital signature, and so on. It can simultaneously preserve the privacy of spatial data and kNN queries, and verify the reliability of query results. The effectiveness and practicability of our scheme are validated by our experimental results. We further analyzed the security of our scheme under the adaptive chosen-query attack via rigorous proof.

Zhigang Yang,Ruyan Wang,Dapeng Wu,Honggang Wang,Haina Song,Xinqiang Ma

DOI: https://doi.org/10.1109/tii.2021.3116529

IF: 12.3

2022-04-01

IEEE Transactions on Industrial Informatics

Abstract:The value of trajectory data lies mainly in the spatio-temporal correlation. However, the existing privacy protection methods ignore the spatio-temporal correlation of trajectory data, resulting in a large error in trajectory proportion estimation and Top-K classification. For the privacy of truck trajectory in intelligent logistics, the location and trajectory data perturbation method based on quadtree indexing is proposed, which leverages location generalization and local differential privacy techniques. Our proposed algorithms are suitable for datasets with a large sample space and can protect the trajectory privacy of truck drivers while preserving the strong correlation between adjacent spatio-temporal nodes in the trajectory. The results of simulation on a real trajectory dataset show that the proposed methods not only meet the trajectory privacy requirements of users but also have a good performance in trajectory proportion estimation and Top-K classification.

automation & control systems,computer science, interdisciplinary applications,engineering, industrial

Zhirun Zheng,Zhetao Li,Hongbo Jiang,Leo Yu Zhang,Dengbiao Tu

DOI: https://doi.org/10.1109/tifs.2022.3181855

IF: 7.231

2022-06-29

IEEE Transactions on Information Forensics and Security

Abstract:Although users can obtain various services by sharing their location information online with location-based service providers, it reveals sensitive information about users. However, existing privacy-preserving techniques in the online scenario suffer from the following shortcomings. First, they model the correlations between the real trajectory and the distorted trajectory as undirected, which makes them unable to accurately quantify the data privacy leakage caused by sharing the distorted trajectory. Second, they are unable to protect semantic privacy, i.e., attackers can obtain the victims' visit purpose by using the Point of Interest information without knowing the real location data. Additionally, they fail to balance semantic-aware data utility and privacy protection. To make the case even worse, compared to the offline scenario, sharing trajectory online in real time does not have access to the overall location trajectory. In this paper, we propose a novel semantic-aware privacy-preserving online location trajectory sharing mechanism, called SEmantic-aware Information-Theoretic Privacy (SEITP), to protect both data privacy and semantic privacy while the semantic-aware data utility can be preserved. In particular, we put forward two new metrics of privacy to capture data privacy leakage and semantic privacy leakage, respectively. Besides, to quantify the semantic-aware trajectory data utility, we propose a semantic-aware utility metric. With those metrics, the shortcoming of failing to guarantee the data utility is avoided naturally through structuring a multi-objective optimization problem. Then, we theoretically prove that the new construction can protect both data and semantic privacy. Finally, the experimental evaluations based on the real-world private vehicle trajectory dataset demonstrate that SEITP outperforms existing mechanisms.

computer science, theory & methods,engineering, electrical & electronic

Tanzima Hashem,Lars Kulik,Rui Zhang

DOI: https://doi.org/10.48550/arXiv.1104.2756

2011-04-14

Databases

Abstract:We present a novel approach that protects trajectory privacy of users who access location-based services through a moving k nearest neighbor (MkNN) query. An MkNN query continuously returns the k nearest data objects for a moving user (query point). Simply updating a user's imprecise location such as a region instead of the exact position to a location-based service provider (LSP) cannot ensure privacy of the user for an MkNN query: continuous disclosure of regions enables the LSP to follow a user's trajectory. We identify the problem of trajectory privacy that arises from the overlap of consecutive regions while requesting an MkNN query and provide the first solution to this problem. Our approach allows a user to specify the confidence level that represents a bound of how much more the user may need to travel than the actual kth nearest data object. By hiding a user's required confidence level and the required number of nearest data objects from an LSP, we develop a technique to prevent the LSP from tracking the user's trajectory for MkNN queries. We propose an efficient algorithm for the LSP to find k nearest data objects for a region with a user's specified confidence level, which is an essential component to evaluate an MkNN query in a privacy preserving manner; this algorithm is at least two times faster than the state-of-the-art algorithm. Extensive experimental studies validate the effectiveness of our trajectory privacy protection technique and the efficiency of our algorithm.

Fengwei Wang,Hui Zhu,Guozhang He,Rongxing Lu,Yandong Zheng,Hui Li

DOI: https://doi.org/10.1109/tifs.2023.3282133

IF: 7.231

2023-06-13

IEEE Transactions on Information Forensics and Security

Abstract:Location-based services (LBSs) provide enhanced functionality of mobile applications and convenience for mobile users, which plays a more and more remarkable role in people's daily life. In LBSs, spatial range query is an essential tool for users to find interesting points in a specific region. However, during spatial range query, it is necessary for data owners and query users to exchange their location data, and the leakage of private location information has drawn significant attention in both governmental and social aspects. Meanwhile, most existing location privacy protection schemes only focus on achieving regular geometry range query over static location datasets. In this paper, we present an efficient and privacy-preserving arbitrary polygon range query scheme, named EPAPRQ. With EPAPRQ, the arbitrary and fine-grained polygon range query can be executed over a dynamic and time-series location dataset with privacy protection. Specifically, in EPAPRQ, an arbitrary polygon range query algorithm is first introduced with sub-range query technique. Then, to protect the private location information of the data owner and query users, a series privacy-preserving data computation protocols are constructed with a symmetric homomorphic encryption algorithm, and a ciphertext-based location dataset updating strategy is also designed. Finally, we propose a double filtration method through combining the quadtree index structure and minimum bounded rectangle, which is able to greatly improve the query efficiency over ciphertexts. Detailed security analysis shows that the sensitive location information in EPAPRQ can be well protected. Furthermore, we evaluate the performance of EPAPRQ in the real map, and the results demonstrate that EPAPRQ is indeed efficient.

computer science, theory & methods,engineering, electrical & electronic

An Liu,Kai Zheng,Lu Li,Guanfeng Liu,Lei Zhao,Xiaofang Zhou

DOI: https://doi.org/10.1109/ICDE.2015.7113273

2015-01-01

Abstract:Outsourcing database to clouds is a scalable and cost-effective way for large scale data storage, management, and query processing. Trajectory data contain rich spatio-temporal relationships and reveal many forms of individual sensitive information (e.g., home address, health condition), which necessitate them to be encrypted before being outsourced for privacy concerns. However, efficient query processing over encrypted trajectory data is a very challenging task. Though some achievements have been reported very recently for simple queries (e.g., SQL queries, kNN queries) on encrypted data, there is rather limited progress on secure evaluation of trajectory queries because they are more complex and need special treatment. In this paper, we focus on secure trajectory similarity computation that is the cornerstone of secure trajectory query processing. More specifically, we propose an efficient solution to securely compute the similarity between two encrypted trajectories, which reveals nothing about the trajectories, but the final result. We theoretically prove that our solution is secure against the semi-honest adversaries model as all the intermediate information in our protocols can be simulated in polynomial time. Finally we empirically study the efficiency of the proposed method, which demonstrates the feasibility of our solution.

Huijuan Lian,Weidong Qiu,Di Yan,Zheng Huang,Peng Tang

DOI: https://doi.org/10.1109/dsc.2019.00021

2019-01-01

Abstract:The location-based services in the outsourced environment has become a research hotspot with the rise of cloud computing. Meanwhile, various privacy issues have been increasingly prominent. We propose an efficient spatial query protocol and another novel secure spatial query protocol using fully homomorphic encryption to accomplish privacy-preserving query processing on outsourced data. We adopt the Moore curve to transform the spatial data into one-dimensional sequence and utilize the random permutation to protect the location privacy. Furthermore, the proposed efficient scheme provides the considerable performance with data privacy preservation. Meanwhile, the secure spatial query protocol is robust against various attacks. Experiments show that the proposed schemes achieve high accuracy while improving the security when compared with the existing related approaches.

Shiwen Zhang,Biao Hu,Wei Liang,Kuan-Ching Li,Al-Sakib Khan Pathan

DOI: https://doi.org/10.1109/jiot.2023.3308073

IF: 10.6

2023-01-01

IEEE Internet of Things Journal

Abstract:With the increasing integration of Location-Based Services (LBS) into various societal domains, location privacy preservation has emerged as a pivotal concern. In most continuous LBS privacy protection approaches, the user needs to send a query to an untrusted Location Service Provider (LSP) to request the corresponding query results, and these results are discarded immediately after being used. This leads to similar queries in the future having to be sent to the LSP again, which increases the risk of privacy leakage when facing the LSP. To solve these issues, caching techniques are typically used to provide answers to users’ future queries. However, minimizing the interaction with the LSP is a challenge. Here, we propose a trajectory privacy-preserving scheme based on a transition matrix and caching (TMC) scheme for continuous LBS in the Industrial Internet of Things (IIoT). It employs multi-level caching to reduce the risk of exposing sensitive information to untrusted entities. We designed a transition matrix to predict the user’s next query location and simplify the computation complexity. We designed a cloaking set generation algorithm by considering transition entropy, location prediction, data freshness, and cache contribution degree to enhance user location privacy and improve the cache hit rate. The security analysis demonstrates how the TMC scheme resists attacks from both internal and external entities and ensures robustness in trajectory privacy. The experimental results show that the proposed TMC scheme can provide a higher level of privacy protection and lower system overhead compared to several previous schemes.

computer science, information systems,telecommunications,engineering, electrical & electronic