Quantifying Interdependent Privacy Risks with Location Data

Olteanu, Alexandra-Mihaela; Huguenin, Kévin; Shokri, Reza; Humbert, Mathias; Hubaux, Jean-Pierre

doi:10.1109/tmc.2016.2561281

Cited by 72 publications

(45 citation statements)

References 39 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the case where co-located users are directly tagged by the uploader, detection is, obviously, no longer needed. The context provided to a consenter in the case of co-location data could also include an estimation of the location privacy loss stemming from that reported co-location, as proposed by Olteanu et al [53]. However, as co-locations introduce dependencies among the data of different users, once a co-location between Alice and Bob is shared, Alice's future location posts would also affect Bob's location privacy and vice versa.…”

Section: Discussion: Limitations and Extensionmentioning

confidence: 99%

See 1 more Smart Citation

Consensual and Privacy-Preserving Sharing of Multi-Subject and Interdependent Data

Olteanu

Huguenin

Dacosta³

et al. 2018

Proceedings 2018 Network and Distributed System Security Symposium

Self Cite

View full text Add to dashboard Cite

Individuals share increasing amounts of personal data online. This data often involves-or at least has privacy implications for-data subjects other than the individual who shares it (e.g., photos, genomic data) and the data is shared without their consent. A popular example, with dramatic consequences, is revenge pornography. In this paper, we propose ConsenShare, a system for sharing, in a consensual (wrt the data subjects) and privacy-preserving (wrt both service providers and other individuals) way, data involving subjects other than the uploader. We describe a complete design and implementation of ConsenShare for photos, which relies on image processing and cryptographic techniques, as well as on a two-tier architecture (one entity for detecting the data subjects and contacting them; one entity for hosting the data and for collecting consent). We benchmark the performance (CPU and bandwidth) of ConsenShare by using a dataset of 20k photos from Flickr. We also conduct a survey targeted at Facebook users (N = 321). Our results are quite encouraging: The experimental results demonstrate the feasibility of our approach (i.e., acceptable overheads) and the survey results demonstrate potential interest from the users.

show abstract

Section: Discussion: Limitations and Extensionmentioning

confidence: 99%

“…Beyond MSPD data, recent studies showed that seemingly strictly personal data reveals information about other individuals [18], [36], [45], [53]. This concept is referred to as interdependent personal data (IPD; the term interdependent privacy was coined by Biczók and Chia [12]).…”

Section: Introductionmentioning

confidence: 99%

Consensual and Privacy-Preserving Sharing of Multi-Subject and Interdependent Data

Olteanu

Huguenin

Dacosta³

et al. 2018

Proceedings 2018 Network and Distributed System Security Symposium

Self Cite

View full text Add to dashboard Cite

show abstract

“…The main differences between our work and Shokri et al's are (1) the use of general Bayesian networks to model users' behavior and (2) a two-step background construction (i.e., first semantic, then geographical) to deal with sparse data. Similarly, but orthogonal, to our work, in [12], the authors study the effect of co-location information (e.g., Alice and Bob are at the same (unknown) location at 2pm) on users' location privacy. As for obfuscation mechanisms, a detailed survey can be found in [1].…”

Section: Related Workmentioning

confidence: 95%

“…This however, makes existing techniques for background construction inefficient due to the sparsity of the transition data (although many transitions go from one geographical region to another, the number of transitions from a couple (region, semantic tag) to another is significantly reduced). Also, recent work have shown that moving from Hidden Markov Models to Bayesian networks enables the adversary to take into account more complex information such as colocation [12]. The main differences between our work and Shokri et al's are (1) the use of general Bayesian networks to model users' behavior and (2) a two-step background construction (i.e., first semantic, then geographical) to deal with sparse data.…”

Section: Related Workmentioning

confidence: 96%

On the Privacy Implications of Location Semantics

Ağır

Huguenin

Hengartner

et al. 2016

Proceedings on Privacy Enhancing Technologies

Self Cite

View full text Add to dashboard Cite

Mobile users increasingly make use of location-based online services enabled by localization systems. Not only do they share their locations to obtain contextual services in return (e.g., ‘nearest restaurant’), but they also share, with their friends, information about the venues (e.g., the type, such as a restaurant or a cinema) they visit. This introduces an additional dimension to the threat to location privacy: location semantics, combined with location information, can be used to improve location inference by learning and exploiting patterns at the semantic level (e.g., people go to cinemas after going to restaurants). Conversely, the type of the venue a user visits can be inferred, which also threatens her semantic location privacy. In this paper, we formalize this problem and analyze the effect of venue-type information on location privacy. We introduce inference models that consider location semantics and semantic privacy-protection mechanisms and evaluate them by using datasets of semantic check-ins from Foursquare, totaling more than a thousand users in six large cities. Our experimental results show that there is a significant risk for users’ semantic location privacy and that semantic information improves inference of user locations.

show abstract

“…Location tracking has achieved significant attention in the research community [44,96,73,67,92] and great notoriety in the news cycle. In late 2017, Quartz [16] reported that Android devices sent location data to Google when they were within range of a new cell tower.…”

Section: Introductionmentioning

confidence: 99%

Covert channels in modern computer systems : the cases of mobile and cloud

Block¹

View full text Add to dashboard Cite

Covert Channels have existed for centuries, from the time of Histiaeus to the modern day. Like its historical roots, the modern covert channel's life cycle consists of identifying new attack vectors, developing countermeasures and continuing with the next thrust and parry cycle. The front line in this conflict now includes mobile devices and cloud computing centers. with valuable content, exploits shared resources on a cloud server. We demonstrated this stealthy timing channel attack achieving worst case native BERs of 1.87 × 10 −2 and 5 × 10 −4 by applying spreading gain. This channel, built on out of the box libraries and application configurations, executed continuously for 24 contiguous days in a major university Computer Science department datacenter. It shared the same highly dynamic environment that actively supported over 1000 virtual and physical nodes.

show abstract

Quantifying Interdependent Privacy Risks with Location Data

Cited by 72 publications

References 39 publications

Consensual and Privacy-Preserving Sharing of Multi-Subject and Interdependent Data

Consensual and Privacy-Preserving Sharing of Multi-Subject and Interdependent Data

On the Privacy Implications of Location Semantics

Covert channels in modern computer systems : the cases of mobile and cloud

Contact Info

Product

Resources

About