Limiting privacy breaches in privacy preserving data mining

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Limiting privacy breaches in privacy preserving data mining

Full text

Pdf (227 KB)

Source

Symposium on Principles of Database Systems archive
Proceedings of the twenty-second ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems table of contents

San Diego, California

Pages: 211 - 222

Year of Publication: 2003

ISBN:1-58113-670-6

Authors

Alexandre Evfimievski	Cornell University
Johannes Gehrke	Cornell University
Ramakrishnan Srikant	IBM Almaden Research Center

Sponsors

SIGACT: ACM Special Interest Group on Algorithms and Computation Theory
SIGMOD: ACM Special Interest Group on Management of Data
SIGART: ACM Special Interest Group on Artificial Intelligence

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 35, Downloads (12 Months): 221, Citation Count: 73

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/773153.773174 What is a DOI?

ABSTRACT

There has been increasing interest in the problem of building accurate data mining models over aggregate data, while protecting privacy at the level of individual records. One approach for this problem is to randomize the values in individual records, and only disclose the randomized values. The model is then built over the randomized data, after first compensating for the randomization (at the aggregate level). This approach is potentially vulnerable to privacy breaches: based on the distribution of the data, one may be able to learn with high confidence that some of the randomized records satisfy a specified property, even though privacy is preserved on average.In this paper, we present a new formulation of privacy breaches, together with a methodology, "amplification", for limiting them. Unlike earlier approaches, amplification makes it is possible to guarantee limits on privacy breaches without any knowledge of the distribution of the original data. We instantiate this methodology for the problem of mining association rules, and modify the algorithm from [9] to limit privacy breaches without knowledge of the data distribution. Next, we address the problem that the amount of randomization required to avoid privacy breaches (when mining association rules) results in very long transactions. By using pseudorandom generators and carefully choosing seeds such that the desired items from the original transaction are present in the randomized transaction, we can send just the seed instead of the transaction, resulting in a dramatic drop in communication and storage cost. Finally, we define new information measures that take privacy breaches into account when quantifying the amount of privacy preserved by randomization.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Dakshi Agrawal , Charu C. Aggarwal, On the design and quantification of privacy preserving data mining algorithms, Proceedings of the twentieth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, p.247-255, May 2001, Santa Barbara, California, United States [doi>10.1145/375551.375602]
	2	Rakesh Agrawal , Ramakrishnan Srikant, Fast Algorithms for Mining Association Rules in Large Databases, Proceedings of the 20th International Conference on Very Large Data Bases, p.487-499, September 12-15, 1994
	3	Rakesh Agrawal , Ramakrishnan Srikant, Privacy-preserving data mining, Proceedings of the 2000 ACM SIGMOD international conference on Management of data, p.439-450, May 15-18, 2000, Dallas, Texas, United States
	4	Rakesh Agrawal , Ramakrishnan Srikant, Privacy-preserving data mining, Proceedings of the 2000 ACM SIGMOD international conference on Management of data, p.439-450, May 15-18, 2000, Dallas, Texas, United States
	5	C. Clifton and D. Marks. Security and privacy implications of data mining. In ACM SIGMOD Workshop on Research Issues on Data Mining and Knowledge Discovery, pages 15--19, May 1996.
	6	The Economist. The End of Privacy, May 1999.
	7	Vladimir Estivill-Castro , Ljiljana Brankovic, Data Swapping: Balancing Privacy against Precision in Mining for Logic Rules, Proceedings of the First International Conference on Data Warehousing and Knowledge Discovery, p.389-398, September 01, 1999
	8	European Union. Directive on Privacy Protection, October 1998.
	9	Alexandre Evfimievski , Ramakrishnan Srikant , Rakesh Agrawal , Johannes Gehrke, Privacy preserving mining of association rules, Proceedings of the eighth ACM SIGKDD international conference on Knowledge discovery and data mining, July 23-26, 2002, Edmonton, Alberta, Canada [doi>10.1145/775047.775080]
	10	Alexandre Evfimievski , Ramakrishnan Srikant , Rakesh Agrawal , Johannes Gehrke, Privacy preserving mining of association rules, Proceedings of the eighth ACM SIGKDD international conference on Knowledge discovery and data mining, July 23-26, 2002, Edmonton, Alberta, Canada [doi>10.1145/775047.775080]
	11	A. S. Hedayat, N. J. A. Sloane, and J. Stufken. Orthogonal Arrays: Theory and Applications. Springer Verlag, August 1999. 440 pp.
	12	M. Kantarcioglu and C. Clifton. Privacy-preserving distributed mining of association rules on horizontally partitioned data. In ACM SIGMOD Workshop on Research Issues on Data Mining and Knowledge Discovery, June 2002.
	13	Yehuda Lindell , Benny Pinkas, Privacy Preserving Data Mining, Proceedings of the 20th Annual International Cryptology Conference on Advances in Cryptology, p.36-54, August 20-24, 2000
	14	F. J. C. MacWilliams and N. J. A. Sloane. The Theory of Error-Correcting Codes. North-Holland, Amsterdam, 1978. 762 pp.
	15	Office of the Information and Privacy Commissioner, Ontario. Data Mining: Staking a Claim on Your Privacy, January 1998.
	16	Oliver Pretzel, Error-correcting codes and finite fields (student ed.), Oxford University Press, Inc., New York, NY, 1996
	17	S. J. Rizvi and J. R. Haritsa. Maintaining data privacy in association rule mining. In Proceedings of the 28th International Conference on Very Large Data Bases, Hong Kong, China, August 2002.
	18	S. J. Rizvi and J. R. Haritsa. Privacy-preserving association rule mining. In Proc. of the 28th Int'l Conference on Very Large Databases, August 2002.
	19	C. E. Shannon. Communication theory of secrecy systems. Bell System Technical Journal, 28--4:656--715, 1949.
	20	K. Thearling. Data mining and privacy: A conflict in making.DS*, March 1998.
	21	Jaideep Vaidya , Chris Clifton, Privacy preserving association rule mining in vertically partitioned data, Proceedings of the eighth ACM SIGKDD international conference on Knowledge discovery and data mining, July 23-26, 2002, Edmonton, Alberta, Canada [doi>10.1145/775047.775142]

CITED BY 74

	Nan Zhang , Wei Zhao , Jianer Chen, Cardinality-based inference control in OLAP systems: an information theoretic approach, Proceedings of the 7th ACM international workshop on Data warehousing and OLAP, November 12-13, 2004, Washington, DC, USA
	Alexandre Evfimievski , Ramakrishnan Srikant , Rakesh Agarwal , Johannes Gehrke, Privacy preserving mining of association rules, Information Systems, v.29 n.4, p.343-364, June 2004
	Yi Xia , Yirong Yang , Yun Chi, Mining association rules with non-uniform privacy concerns, Proceedings of the 9th ACM SIGMOD workshop on Research issues in data mining and knowledge discovery, June 13, 2004, Paris, France
	Yu Zhu , Lei Liu, Optimal randomization for privacy preserving data mining, Proceedings of the tenth ACM SIGKDD international conference on Knowledge discovery and data mining, August 22-25, 2004, Seattle, WA, USA
	Ruzena Bajcsy , Rick McGeer, CITRIS and data and knowledge engineering: what is old and what is new?, Data & Knowledge Engineering, v.50 n.3, p.261-276, September 2004
	Zhiqiang Yang , Sheng Zhong , Rebecca N. Wright, Anonymity-preserving data collection, Proceeding of the eleventh ACM SIGKDD international conference on Knowledge discovery in data mining, August 21-24, 2005, Chicago, Illinois, USA
	Adam Meyerson , Ryan Williams, On the complexity of optimal K-anonymity, Proceedings of the twenty-third ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 14-16, 2004, Paris, France
	Zhengli Huang , Wenliang Du , Biao Chen, Deriving private information from randomized data, Proceedings of the 2005 ACM SIGMOD international conference on Management of data, June 14-16, 2005, Baltimore, Maryland
	Krishnaram Kenthapadi , Nina Mishra , Kobbi Nissim, Simulatable auditing, Proceedings of the twenty-fourth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 13-15, 2005, Baltimore, Maryland
	Avrim Blum , Cynthia Dwork , Frank McSherry , Kobbi Nissim, Practical privacy: the SuLQ framework, Proceedings of the twenty-fourth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 13-15, 2005, Baltimore, Maryland
	Sheng Zhong , Zhiqiang Yang , Rebecca N. Wright, Privacy-enhancing k-anonymization of customer data, Proceedings of the twenty-fourth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 13-15, 2005, Baltimore, Maryland
	Rakesh Agrawal , Ramakrishnan Srikant , Dilys Thomas, Privacy preserving OLAP, Proceedings of the 2005 ACM SIGMOD international conference on Management of data, June 14-16, 2005, Baltimore, Maryland
	Lingyu Wang , Duminda Wijesekera , Sushil Jajodia, Cardinality-based inference control in data cubes, Journal of Computer Security, v.12 n.5, p.655-692, September 2004
	Ali Al-Lawati , Dongwon Lee , Patrick McDaniel, Blocking-aware private record linkage, Proceedings of the 2nd international workshop on Information quality in information systems, June 17-17, 2005, Baltimore, Maryland
	Nina Mishra , Mark Sandler, Privacy via pseudorandom sketches, Proceedings of the twenty-fifth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 26-28, 2006, Chicago, IL, USA
	Daniel Kifer , Johannes Gehrke, Injecting utility into anonymized datasets, Proceedings of the 2006 ACM SIGMOD international conference on Management of data, June 27-29, 2006, Chicago, IL, USA
	En Tzu Wang , Guanling Lee, An efficient sanitization algorithm for balancing information privacy and knowledge discovery in association patterns mining, Data & Knowledge Engineering, v.65 n.3, p.463-484, June, 2008
	Ling Qiu , Yingjiu Li , Xintao Wu, Preserving privacy in association rule mining with bloom filters, Journal of Intelligent Information Systems, v.29 n.3, p.253-278, December 2007
	Mohammed Ketel , Abdollah Homaifar, Privacy-preserving mining by rotational data transformation, Proceedings of the 43rd annual southeast regional conference, March 18-20, 2005, Kennesaw, Georgia
	Hillol Kargupta , Souptik Datta , Qi Wang , Krishnamoorthy Sivakumar, Random-data perturbation techniques and privacy-preserving data mining, Knowledge and Information Systems, v.7 n.4, p.387-414, May 2005
	Shubha U. Nabar , Bhaskara Marthi , Krishnaram Kenthapadi , Nina Mishra , Rajeev Motwani, Towards robustness in query auditing, Proceedings of the 32nd international conference on Very large data bases, September 12-15, 2006, Seoul, Korea
	Sheng Zhang , James Ford , Fillia Makedon, A privacy-preserving collaborative filtering scheme with two-way communication, Proceedings of the 7th ACM conference on Electronic commerce, p.316-323, June 11-15, 2006, Ann Arbor, Michigan, USA
	Ashwin Machanavajjhala , Daniel Kifer , Johannes Gehrke , Muthuramakrishnan Venkitasubramaniam, L-diversity: Privacy beyond k-anonymity, ACM Transactions on Knowledge Discovery from Data (TKDD), v.1 n.1, p.3-es, March 2007
	Konstantinos Chatzikokolakis , Catuscia Palamidessi, Probable innocence revisited, Theoretical Computer Science, v.367 n.1, p.123-138, 24 November 2006
	Lars Backstrom , Cynthia Dwork , Jon Kleinberg, Wherefore art thou r3579x?: anonymized social networks, hidden patterns, and structural steganography, Proceedings of the 16th international conference on World Wide Web, May 08-12, 2007, Banff, Alberta, Canada
	Boaz Barak , Kamalika Chaudhuri , Cynthia Dwork , Satyen Kale , Frank McSherry , Kunal Talwar, Privacy, accuracy, and consistency too: a holistic solution to contingency table release, Proceedings of the twenty-sixth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 11-13, 2007, Beijing, China
	Shyue-Liang Wang , Bhavesh Parikh , Ayat Jafari, Hiding informative association rule sets, Expert Systems with Applications: An International Journal, v.33 n.2, p.316-323, August, 2007
	Gerome Miklau , Dan Suciu, A formal analysis of information disclosure in data exchange, Journal of Computer and System Sciences, v.73 n.3, p.507-534, May, 2007
	Mafruz Zaman Ashrafi , See Kiong Ng, Collusion-resistant anonymous data collection method, Proceedings of the 15th ACM SIGKDD international conference on Knowledge discovery and data mining, June 28-July 01, 2009, Paris, France
	Vibhor Rastogi , Dan Suciu , Sungho Hong, The boundary between privacy and utility in data publishing, Proceedings of the 33rd international conference on Very large data bases, September 23-27, 2007, Vienna, Austria
	Kobbi Nissim , Sofya Raskhodnikova , Adam Smith, Smooth sensitivity and sampling in private data analysis, Proceedings of the thirty-ninth annual ACM symposium on Theory of computing, June 11-13, 2007, San Diego, California, USA
	Shibnath Mukherjee , Madhushri Banerjee , Zhiyuan Chen , Aryya Gangopadhyay, A privacy preserving technique for distance-based classification with worst case privacy guarantees, Data & Knowledge Engineering, v.66 n.2, p.264-288, August, 2008
	Yabo Xu , Ke Wang , Benyu Zhang , Zheng Chen, Privacy-enhancing personalized web search, Proceedings of the 16th international conference on World Wide Web, May 08-12, 2007, Banff, Alberta, Canada
	Shyue-Liang Wang , Dipen Patel , Ayat Jafari , Tzung-Pei Hong, Hiding collaborative recommendation association rules, Applied Intelligence, v.27 n.1, p.67-77, August 2007
	Sébastien Gambs , Balázs Kégl , Esma Aïmeur, Privacy-preserving boosting, Data Mining and Knowledge Discovery, v.14 n.1, p.131-170, February 2007
	Spiros Papadimitriou , Feifei Li , George Kollios , Philip S. Yu, Time series compressibility and privacy, Proceedings of the 33rd international conference on Very large data bases, September 23-27, 2007, Vienna, Austria
	Feifei Li , Marios Hadjieleftheriou , George Kollios , Leonid Reyzin, Dynamic authenticated index structures for outsourced databases, Proceedings of the 2006 ACM SIGMOD international conference on Management of data, June 27-29, 2006, Chicago, IL, USA
	Shibnath Mukherjee , Zhiyuan Chen , Aryya Gangopadhyay, A privacy-preserving technique for Euclidean distance-based mining algorithms using Fourier-related transforms, The VLDB Journal — The International Journal on Very Large Data Bases, v.15 n.4, p.293-315, November 2006
	Hui Xiong , Michael Steinbach , Vipin Kumar, Privacy leakage in multi-relational databases: a semi-supervised learning perspective, The VLDB Journal — The International Journal on Very Large Data Bases, v.15 n.4, p.388-402, November 2006
	Jon M. Kleinberg, Challenges in mining social network data: processes, privacy, and paradoxes, Proceedings of the 13th ACM SIGKDD international conference on Knowledge discovery and data mining, p.4-5, August 12-15, 2007, San Jose, California, USA
	Kun Liu , Hillol Kargupta , Jessica Ryan, Random Projection-Based Multiplicative Data Perturbation for Privacy Preserving Distributed Data Mining, IEEE Transactions on Knowledge and Data Engineering, v.18 n.1, p.92-106, January 2006
	Alexandre Evfimievski , Ronald Fagin , David P. Woodruff, Epistemic privacy, Proceedings of the twenty-seventh ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 09-12, 2008, Vancouver, Canada
	Jiexing Li , Yufei Tao , Xiaokui Xiao, Preservation of proximity privacy in publishing numerical sensitive data, Proceedings of the 2008 ACM SIGMOD international conference on Management of data, June 09-12, 2008, Vancouver, Canada
	Shipra Agrawal , Jayant R. Haritsa , B. Aditya Prakash, FRAPP: a framework for high-accuracy privacy-preserving mining, Data Mining and Knowledge Discovery, v.18 n.1, p.101-139, February 2009
	Avrim Blum , Katrina Ligett , Aaron Roth, A learning theory approach to non-interactive database privacy, Proceedings of the 40th annual ACM symposium on Theory of computing, May 17-20, 2008, Victoria, British Columbia, Canada
	Xiaokui Xiao , Yufei Tao, Dynamic anonymization: accurate statistical analysis with privacy preservation, Proceedings of the 2008 ACM SIGMOD international conference on Management of data, June 09-12, 2008, Vancouver, Canada
	Phillip Porras , Vitaly Shmatikov, Large-scale collection and sanitization of network security data: risks and challenges, Proceedings of the 2006 workshop on New security paradigms, September 19-22, 2006, Germany
	Li Liu , Murat Kantarcioglu , Bhavani Thuraisingham, The applicability of the perturbation based privacy preserving data mining for real-world data, Data & Knowledge Engineering, v.65 n.1, p.5-21, April, 2008
	Felipe Saint-Jean , Aaron Johnson , Dan Boneh , Joan Feigenbaum, Private web search, Proceedings of the 2007 ACM workshop on Privacy in electronic society, October 29-29, 2007, Alexandria, Virginia, USA
	Rupa Parameswaran , Douglas M. Blough, Privacy preserving data obfuscation for inherently clustered data, International Journal of Information and Computer Security, v.2 n.1, p.4-26, January 2008
	Shibnath Mukherjee , Zhiyuan Chen , Aryya Gangopadhyay, A fuzzy programming approach for data reduction and privacy in distance-based mining, International Journal of Information and Computer Security, v.2 n.1, p.27-47, January 2008
	Jie Wang , Jun Zhang , Shuting Xu , Weijun Zhong, A novel data distortion approach via selective SSVD for privacy protection, International Journal of Information and Computer Security, v.2 n.1, p.48-70, January 2008
	Sheng Zhong , Zhiqiang Yang, Guided perturbation: towards private and accurate mining, The VLDB Journal — The International Journal on Very Large Data Bases, v.17 n.5, p.1165-1177, August 2008
	Shyue-Liang Wang , Rajeev Maskey , Ayat Jafari , Tzung-Pei Hong, Efficient sanitization of informative association rules, Expert Systems with Applications: An International Journal, v.35 n.1-2, p.442-450, July, 2008
	Arik Friedman , Ran Wolff , Assaf Schuster, Providing k-anonymity in data mining, The VLDB Journal — The International Journal on Very Large Data Bases, v.17 n.4, p.789-804, July 2008
	Maurizio Atzori , Francesco Bonchi , Fosca Giannotti , Dino Pedreschi, Anonymity preserving pattern discovery, The VLDB Journal — The International Journal on Very Large Data Bases, v.17 n.4, p.703-727, July 2008
	Vibhor Rastogi , Michael Hay , Gerome Miklau , Dan Suciu, Relationship privacy: output perturbation for queries with joins, Proceedings of the twenty-eighth ACM SIGMOD-SIGACT-SIGART symposium on Principles of database systems, June 29-July 01, 2009, Providence, Rhode Island, USA
	Fan Wu , Jiqiang Liu , Sheng Zhong, An efficient protocol for private and accurate mining of support counts, Pattern Recognition Letters, v.30 n.1, p.80-86, January, 2009
	Daniel Kifer, Attacks on privacy and deFinetti's theorem, Proceedings of the 35th SIGMOD international conference on Management of data, June 29-July 02, 2009, Providence, Rhode Island, USA
	Justin Brickell , Vitaly Shmatikov, The cost of privacy: destruction of data-mining utility in anonymized data publishing, Proceeding of the 14th ACM SIGKDD international conference on Knowledge discovery and data mining, August 24-27, 2008, Las Vegas, Nevada, USA
	Raghu K. Ganti , Nam Pham , Yu-En Tsai , Tarek F. Abdelzaher, PoolView: stream privacy for grassroots participatory sensing, Proceedings of the 6th ACM conference on Embedded network sensor systems, November 05-07, 2008, Raleigh, NC, USA
	Srivatsava Ranjit Ganta , Shiva Prasad Kasiviswanathan , Adam Smith, Composition attacks and auxiliary information in data privacy, Proceeding of the 14th ACM SIGKDD international conference on Knowledge discovery and data mining, August 24-27, 2008, Las Vegas, Nevada, USA
	Shyue-Liang Wang, Maintenance of sanitizing informative association rules, Expert Systems with Applications: An International Journal, v.36 n.2, p.4006-4012, March, 2009
	Joseph Y. Halpern , Kevin R. O'Neill, Secrecy in Multiagent Systems, ACM Transactions on Information and System Security (TISSEC), v.12 n.1, p.1-47, October 2008
	Vibhor Rastogi , Dan Suciu , Evan Welbourne, Access control over uncertain data, Proceedings of the VLDB Endowment, v.1 n.1, August 2008
	Dan Feldman , Amos Fiat , Haim Kaplan , Kobbi Nissim, Private coresets, Proceedings of the 41st annual ACM symposium on Theory of computing, May 31-June 02, 2009, Bethesda, MD, USA
	Jun-Lin Lin , Yung-Wei Cheng, Privacy preserving itemset mining through noisy items, Expert Systems with Applications: An International Journal, v.36 n.3, p.5711-5717, April, 2009
	Chao Yao , Lingyu Wang , X. Sean Wang , Claudio Bettini , Sushil Jajodia, Evaluating privacy threats in released database views by symmetric indistinguishability, Journal of Computer Security, v.17 n.1, p.5-42, January 2009
	Bee-Chung Chen , Kristen Lefevre , Raghu Ramakrishnan, Adversarial-knowledge dimensions in data privacy, The VLDB Journal — The International Journal on Very Large Data Bases, v.18 n.2, p.429-467, April 2009
	Ling Qiu , Yingjiu Li , Xintao Wu, Protecting business intelligence and customer privacy while outsourcing data mining tasks, Knowledge and Information Systems, v.17 n.1, p.99-120, October 2008
	Songtao Guo , Xintao Wu , Yingjiu Li, Determining error bounds for spectral filtering based reconstruction methods in privacy preserving data mining, Knowledge and Information Systems, v.17 n.2, p.217-240, November 2008
	Bin Zhou , Jian Pei , WoShun Luk, A brief survey on anonymization techniques for privacy preserving publishing of social network data, ACM SIGKDD Explorations Newsletter, v.10 n.2, December 2008
	Sheng Zhong, On Distributed k-Anonymization, Fundamenta Informaticae, v.92 n.4, p.411-431, December 2009
	Sheng Zhong , Zhiqiang Yang , Tingting Chen, k-Anonymous data collection, Information Sciences: an International Journal, v.179 n.17, p.2948-2963, August, 2009