What’s the Gist? Privacy-Preserving Aggregation of User Profiles

Bilogrevic, Igor; Freudiger, Julien; Cristofaro, Emiliano De; Uzun, Ersin

doi:10.1007/978-3-319-11212-1_8

Cited by 21 publications

(13 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Locasto et al [25] propose privacy-preserving data aggregation using Bloom filters, which, while constituting a one-way data structure, are vulnerable to simple guessing attacks. Secure distributed data aggregation is also discussed in [5,7]. While aggregation can help compute statistics, it only identifies most prolific attack sources and yields global models.…”

Section: Related Workmentioning

confidence: 99%

Controlled Data Sharing for Collaborative Predictive Blacklisting

Freudiger

Cristofaro

Brito

2015

Detection of Intrusions and Malware, and Vulnerability Assessment

Self Cite

View full text Add to dashboard Cite

Although sharing data across organizations is often advocated as a promising way to enhance cybersecurity, collaborative initiatives are rarely put into practice owing to confidentiality, trust, and liability challenges. In this paper, we investigate whether collaborative threat mitigation can be realized via a controlled data sharing approach, whereby organizations make informed decisions as to whether or not, and how much, to share. Using appropriate cryptographic tools, entities can estimate the benefits of collaboration and agree on what to share in a privacypreserving way, without having to disclose their datasets.We focus on collaborative predictive blacklisting, i.e., forecasting attack sources based on one's logs and those contributed by other organizations. We study the impact of different sharing strategies by experimenting on a realworld dataset of two billion suspicious IP addresses collected from Dshield over two months. We find that controlled data sharing yields up to 105% accuracy improvement on average, while also reducing the false positive rate.

show abstract

Section: Related Workmentioning

confidence: 99%

Controlled Data Sharing for Collaborative Predictive Blacklisting

Freudiger

Cristofaro

Brito

2015

Detection of Intrusions and Malware, and Vulnerability Assessment

Self Cite

View full text Add to dashboard Cite

show abstract

“…Privacy-preserving techniques in the context of data analytics have a long history. Some recent papers propose new approaches, which allow users to protect their privacy selling aggregates of their data [25], [26]. The more classical framework of -differential privacy [27], [28], assumes that data are perturbed after an analysis has been conducted on unmodified inputs.…”

Section: Related Workmentioning

confidence: 99%

A Game-Theoretic Study on Non-monetary Incentives in Data Analytics Projects with Privacy Implications

Chessa

Großklags

Loiseau

2015

2015 IEEE 28th Computer Security Foundations Symposium

View full text Add to dashboard Cite

The amount of personal information contributed by individuals to digital repositories such as social network sites has grown substantially. perspective, we investigate to which degree the research analyst has flexibility to set requirements for data precision, so that individuals are still willing to contribute to the project, and the quality of the estimation improves.We study this tradeoff scenario for populations of homogeneous and heterogeneous individuals, and determine Nash equilibria that reflect the optimal level of participation and precision of contributions. We further prove that the analyst can substantially increase the accuracy of the analysis by imposing a lower bound on the precision of the data that users can reveal.

show abstract

“…In general, we are interested in scenarios where providers need to train models based on aggregate statistics gathered from many data sources, and our goal is to do so without disclosing fine-grained information about single sources. In theory, we could turn to existing cryptographic protocols for privacy-friendly aggregation: using homomorphic encryption or secret sharing untrusted aggregators can collect encrypted readings but only decrypt the sum [9,13,15,33,47,61]. However, these tools require each data source to perform a number of cryptographic operations, and transmit a number of ciphertexts, linear in the size of their input, which makes them impractical when sources contribute large streams.…”

Section: Introductionmentioning

confidence: 99%

Efficient Private Statistics with Succinct Sketches

Melis

Danezis

Cristofaro

2016

Proceedings 2016 Network and Distributed System Security Symposium

Self Cite

View full text Add to dashboard Cite

Abstract-Large-scale collection of contextual information is often essential in order to gather statistics, train machine learning models, and extract knowledge from data. The ability to do so in a privacy-preserving way -i.e., without collecting finegrained user data -enables a number of additional computational scenarios that would be hard, or outright impossible, to realize without strong privacy guarantees. In this paper, we present the design and implementation of practical techniques for privately gathering statistics from large data streams. We build on efficient cryptographic protocols for private aggregation and on data structures for succinct data representation, namely, Count-Min Sketch and Count Sketch. These allow us to reduce the communication and computation complexity incurred by each data source (e.g., end-users) from linear to logarithmic in the size of their input, while introducing a parametrized upper-bounded error that does not compromise the quality of the statistics. We then show how to use our techniques, efficiently, to instantiate real-world privacy-friendly systems, supporting recommendations for media streaming services, prediction of user locations, and computation of median statistics for Tor hidden services.

show abstract

What’s the Gist? Privacy-Preserving Aggregation of User Profiles

Cited by 21 publications

References 27 publications

Controlled Data Sharing for Collaborative Predictive Blacklisting

Controlled Data Sharing for Collaborative Predictive Blacklisting

A Game-Theoretic Study on Non-monetary Incentives in Data Analytics Projects with Privacy Implications

Efficient Private Statistics with Succinct Sketches

Contact Info

Product

Resources

About