ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Privacy-preserving demographic filtering
Full text PdfPdf (116 KB)
Source Symposium on Applied Computing archive
Proceedings of the 2006 ACM symposium on Applied computing table of contents
Dijon, France
SESSION: Electronic commerce technologies (ECT) table of contents
Pages: 872 - 878  
Year of Publication: 2006
ISBN:1-59593-108-2
Authors
E. Aïmeur  Université de Montréal, Montréal (Québec), Canada
G. Brassard  Université de Montréal, Montréal (Québec), Canada
J. M. Fernandez  École Polytechnique, de Montréal, Montréal (Québec), Canada
F. S. Mani Onana  Université de Montréal, Montréal (Québec), Canada
Sponsor
SIGAPP: ACM Special Interest Group on Applied Computing
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 12,   Downloads (12 Months): 80,   Citation Count: 2
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1141277.1141479
What is a DOI?

ABSTRACT

The use of recommender systems in e-commerce to guide customer choices presents a privacy protection problem that is twofold. We seek to protect the privacy interests of customers by trying to keep private their identity and demographic characteristics, and possibly also their buying preferences and behaviour. This can be desirable even if anonymity is used. Furthermore, we want to protect the commercial interests of the e-commerce service providers by allowing them to make recommendations as accurate as possible, without unnecessarily revealing valuable information they have legitimately accumulated, such as market trends, to third parties.In this paper, we concentrate on recommender systems based on demographic filtering, which make recommendations based on feedback of previous users of similar demographic characteristics (such as age, sex, level of education, wealth, geographical location, etc.). We propose a system called ALAMBIC, which adequately achieves the above privacy-protection objectives in this kind of recommender systems. Our system is based on a semi-trusted third party in which the users need only have limited confidence. A main originality of our approach is to split user data between that party and the service provider in such a way that neither can derive sensitive information from their share alone.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Esma Aïmeur , Gilles Brassard , Hugo Dufort , Sébastien Gambs, CLARISSE: A Machine Learning Tool to Initialize Student Models, Proceedings of the 6th International Conference on Intelligent Tutoring Systems, p.718-728, June 02-07, 2002
 
2
E. Aïmeur, G. Brassard, J. M. Fernandez, and F. S. Mani Onana. ALAMBIC: A privacy-preserving recommender system for electronic commerce. Manuscript available from the authors, November 2005.
3
E. Aïmeur , G. Brassard , F. S. Mani Onana, Blind sales in electronic commerce, Proceedings of the 6th international conference on Electronic commerce, October 25-27, 2004, Delft, The Netherlands  [doi>10.1145/1052220.1052239]
 
4
E. Aïmeur, G. Brassard, and F. S. Mani Onana. Privacy-preserving physical delivery in electronic commerce. In Proceedings of IADIS International Conference on e-Commerce, Porto, Portugal, December 2005.
 
5
Robin Burke, Hybrid Recommender Systems: Survey and Experiments, User Modeling and User-Adapted Interaction, v.12 n.4, p.331-370, November 2002  [doi>10.1023/A:1021240730564]
 
6
J. Camenisch and A. Lysyanskaya. A formal treatment of onion routing. In Advances in Cryptology: Proceedings of CRYPTO 2005, pages 169--187, Santa Barbara, CA, August 2005.
7
John Canny, Collaborative filtering with privacy via factor analysis, Proceedings of the 25th annual international ACM SIGIR conference on Research and development in information retrieval, August 11-15, 2002, Tampere, Finland  [doi>10.1145/564376.564419]
 
8
Y.-C. Chang. Single database private information retrieval with logarithmic communication. Available at eprint.iacr.org/2004/036/, accessed 1 November 2005, 2004.
9
David L. Chaum, Untraceable electronic mail, return addresses, and digital pseudonyms, Communications of the ACM, v.24 n.2, p.84-90, Feb. 1981  [doi>10.1145/358549.358563]
10
David Chaum, Security without identification: transaction systems to make big brother obsolete, Communications of the ACM, v.28 n.10, p.1030-1044, Oct. 1985  [doi>10.1145/4372.4373]
 
11
B. Chor , O. Goldreich , E. Kushilevitz , M. Sudan, Private information retrieval, Proceedings of the 36th Annual Symposium on Foundations of Computer Science (FOCS'95), p.41, October 23-25, 1995
 
12
C. Collberg, C. Thomborson, and D. Low. A taxonomy of obfuscating transformations. Technical report 148, Department of Computer Science, University of Auckland, 1997.
13
Yael Gertner , Yuval Ishai , Eyal Kushilevitz , Tal Malkin, Protecting data privacy in private information retrieval schemes, Proceedings of the thirtieth annual ACM symposium on Theory of computing, p.151-160, May 24-26, 1998, Dallas, Texas, United States  [doi>10.1145/276698.276723]
14
David Goldschlag , Michael Reed , Paul Syverson, Onion routing, Communications of the ACM, v.42 n.2, p.39-41, Feb. 1999  [doi>10.1145/293411.293443]
15
A. K. Jain , M. N. Murty , P. J. Flynn, Data clustering: a review, ACM Computing Surveys (CSUR), v.31 n.3, p.264-323, Sept. 1999  [doi>10.1145/331499.331504]
 
16
S. Jha, L. Kruger, and P. McDaniel. Privacy preserving clustering. In 10th European Symposium on Research in Computer Security (ESORICS '05), Milan, Italy, September 2005.
17
Joe Kilian, Founding crytpography on oblivious transfer, Proceedings of the twentieth annual ACM symposium on Theory of computing, p.20-31, May 02-04, 1988, Chicago, Illinois, United States  [doi>10.1145/62212.62215]
 
18
E. Kushilevitz , R. Ostrovsky, Replication is not needed: single database, computationally-private information retrieval, Proceedings of the 38th Annual Symposium on Foundations of Computer Science (FOCS '97), p.364, October 19-22, 1997
 
19
D. Malkhi, N. Nisan, B. Pinkas, and Y. Sella. Fairplay - A secure two-party computation system. In Proceedings of Usenix Security, pages 9--13, August 2004.
 
20
Srujana Merugu , Joydeep Ghosh, Privacy-preserving Distributed Clustering using Generative Models, Proceedings of the Third IEEE International Conference on Data Mining, p.211, November 19-22, 2003
21
Huseyin Polat , Wenliang Du, SVD-based collaborative filtering with privacy, Proceedings of the 2005 ACM symposium on Applied computing, March 13-17, 2005, Santa Fe, New Mexico  [doi>10.1145/1066677.1066860]
22
Paul Resnick , Neophytos Iacovou , Mitesh Suchak , Peter Bergstrom , John Riedl, GroupLens: an open architecture for collaborative filtering of netnews, Proceedings of the 1994 ACM conference on Computer supported cooperative work, p.175-186, October 22-26, 1994, Chapel Hill, North Carolina, United States  [doi>10.1145/192844.192905]
 
23
T. Sander and C. F. Tschudin. Towards mobile cryptography. In Proceedings of the IEEE Symposium on Security and Privacy, pages 162--167, Oakland, USA, 1998. IEEE Computer Society Press.
24
Vassilios S. Verykios , Elisa Bertino , Igor Nai Fovino , Loredana Parasiliti Provenza , Yucel Saygin , Yannis Theodoridis, State-of-the-art in privacy preserving data mining, ACM SIGMOD Record, v.33 n.1, March 2004  [doi>10.1145/974121.974131]
 
25
E. Vozalis and K. G. Margaritis. Analysis of recommender systems' algorithms. In Proceedings of the 6th Hellenic European Conference on Computer Mathematics and its Applications (HERCMA-2003), Athens, Greece, 2003.
 
26
A. C.-C. Yao. Protocols for secure computation. In Proceedings of 23rd IEEE Symposium on Foundations of Computer Science, pages 160--164, 1982.
 
27
A. C.-C. Yao. How to generate and exchange secrets. In Proceedings of 27th IEEE Symposium Foundations of Computer Science, pages 162--167, 1986.

CITED BY  2
Esma Aïmeur , Gilles Brassard , Flavien Serge Mani Onana, Blind Electronic Commerce, Journal of Computer Security, v.14 n.6, p.535-559, November 2006
Richard Cissée , Sahin Albayrak, An agent-based approach for privacy-preserving recommender systems, Proceedings of the 6th international joint conference on Autonomous agents and multiagent systems, May 14-18, 2007, Honolulu, Hawaii

INDEX TERMS

Primary Classification:
  H. Information Systems
  H.3 INFORMATION STORAGE AND RETRIEVAL
      H.3.3 Information Search and Retrieval
          Subjects: Information filtering

Additional Classification:
  H. Information Systems
  H.3 INFORMATION STORAGE AND RETRIEVAL
      H.3.5 On-line Information Services
          Subjects: Web-based services
  H.4 INFORMATION SYSTEMS APPLICATIONS
      H.4.0 General


General Terms:
Security


Keywords:
architecture, clustering, demographic filtering, e-commerce, privacy protection, recommender system, semi-trusted third party

Collaborative Colleagues:
E. Aïmeur: colleagues
G. Brassard: colleagues
J. M. Fernandez: colleagues
F. S. Mani Onana: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player