Divya Sharma scite author profile

Divya Sharma

5Publications

168Citation Statements Received

96Citation Statements Given

How they've been cited

128

167

How they cite others

Affiliations

Post Graduate Institute of Medical Education and Research, Carnegie Mellon University, JK Lakshmipat University

Publications

Order By: Most citations

Provable De-anonymization of Large Datasets with Sparse Dimensions

Datta

Sharma

Sinha

2012

View full text Add to dashboard Cite

There is a significant body of empirical work on statistical de-anonymization attacks against databases containing micro-data about individuals, e.g., their preferences, movie ratings, or transaction data. Our goal is to analytically explain why such attacks work. Specifically, we analyze a variant of the Narayanan-Shmatikov algorithm that was used to effectively de-anonymize the Netflix database of movie ratings. We prove theorems characterizing mathematical properties of the database and the auxiliary information available to the adversary that enable two classes of privacy attacks. In the first attack, the adversary successfully identifies the individual about whom she possesses auxiliary information (an isolation attack). In the second attack, the adversary learns additional information about the individual, although she may not be able to uniquely identify him (an information amplification attack). We demonstrate the applicability of the analytical results by empirically verifying that the mathematical properties assumed of the database are actually true for a significant fraction of the records in the Netflix movie ratings database, which contains ratings from about 500,000 users.

show abstract

Observing and Preventing Leakage in MapReduce

Ohrimenko

Costa

Fournet

et al. 2015

View full text Add to dashboard Cite

Program Actions as Actual Causes: A Building Block for Accountability

Datta

Garg

Kaynar

et al. 2015

View full text Add to dashboard Cite

Protocols for tasks such as authentication, electronic voting, and secure multiparty computation ensure desirable security properties if agents follow their prescribed programs. However, if some agents deviate from their prescribed programs and a security property is violated, it is important to hold agents accountable by determining which deviations actually caused the violation. Motivated by these applications, we initiate a formal study of program actions as actual causes. Specifically, we define in an interacting program model what it means for a set of program actions to be an actual cause of a violation. We present a sound technique for establishing program actions as actual causes. We demonstrate the value of this formalism in two ways. First, we prove that violations of a specific class of safety properties always have an actual cause. Thus, our definition applies to relevant security properties. Second, we provide a cause analysis of a representative protocol designed to address weaknesses in the current public key certification infrastructure.

show abstract

Constraining Credential Usage in Logic-Based Access Control

Bauer

Jia

Sharma

2010

View full text Add to dashboard Cite

Abstract-Authorization logics allow concise specification of flexible access-control policies, and are the basis for logic-based access-control systems. In such systems, resource owners issue credentials to specify policies, and the consequences of these policies are derived using logical inference rules. Proofs in authorization logics can serve as capabilities for gaining access to resources.Because a proof is derived from a set of credentials possibly issued by different parties, the issuer of a specific credential may not be aware of all the proofs that her credential may make possible. From this credential issuer's standpoint, the policy expressed in her credential may thus have unexpected consequences. To solve this general problem, we propose a system in which credentials can specify constraints on how they are to be used. We show how to modularly extend wellstudied authorization logics to support the specification and enforcement of such constraints. A novelty of our design is that we allow the constraints to be arbitrary well-behaved functions over authorization proofs. Since all the information about an access is contained in the proofs, this makes it possible to express many interesting constraints. We study the formal properties of such a system, and give examples of constraints.

show abstract

Firebase as BaaS for College Android Application

Sharma¹,

Dand²

2019

IJCA

View full text Add to dashboard Cite

In the present times, words like 'mobile application' and 'cloud' are making a significant mix. Every day there is some new application in the market with the point of conveying the best execution to their clients. Picking the correct BaaS (Backend as a Service) is vital and it comes down to what your project requires. A sturdy infrastructure is built with mobile backend services such as with Firebase which aids developers by handling the backend of these applications. In this paper, the Android application MCCApp utilizes the features provided by Firebase to show its usage as the best Mobile Backend-as-a-service.

show abstract

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Divya Sharma

Provable De-anonymization of Large Datasets with Sparse Dimensions

Observing and Preventing Leakage in MapReduce

Program Actions as Actual Causes: A Building Block for Accountability

Constraining Credential Usage in Logic-Based Access Control

Firebase as BaaS for College Android Application

Contact Info

Product

Resources

About