Differential inference testing: A practical approach to evaluate sanitizations of datasets

Ali Kassem; Gergely Ács; Claude Castelluccia; Catuscia Palamidessi

doi:10.1109/SPW.2019.00024

Differential inference testing: A practical approach to evaluate sanitizations of datasets

Ali Kassem
, Gergely Ács
, Claude Castelluccia
, Catuscia Palamidessi

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In order to protect individuals' privacy, data have to be 'well-sanitized' before sharing them, i.e. one has to remove any personal information before sharing data. However, it is not always clear when data shall be deemed well-sanitized. In this paper, we argue that the evaluation of sanitized data should be based on whether the data allows the inference of sensitive information that is specific to an individual, instead of being centered around the concept of re-identification. We propose a framework to evaluate the effectiveness of different sanitization techniques on a given dataset by measuring how much an individual's record from the sanitized dataset influences the inference of his/her own sensitive attribute. Our intent is not to accurately predict any sensitive attribute but rather to measure the impact of a single record on the inference of sensitive information. We demonstrate our approach by sanitizing two real datasets in different privacy models and evaluate/compare each sanitized dataset in our framework.

Original language	English
Title of host publication	Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	72-79
Number of pages	8
ISBN (Electronic)	9781728135083
DOIs	https://doi.org/10.1109/SPW.2019.00024
Publication status	Published - 1 May 2019
Externally published	Yes
Event	2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019 - San Francisco, United States Duration: 23 May 2019 → …

Publication series

Name	Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019

Conference

Conference	2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019
Country/Territory	United States
City	San Francisco
Period	23/05/19 → …

Keywords

Differential Privacy
Inferences
K-Anonymity
Machine Learning
Sanitization
ℓ-Diversity

Access to Document

10.1109/SPW.2019.00024

Cite this

Kassem, A., Ács, G., Castelluccia, C., & Palamidessi, C. (2019). Differential inference testing: A practical approach to evaluate sanitizations of datasets. In Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019 (pp. 72-79). Article 8844631 (Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SPW.2019.00024

Kassem, Ali ; Ács, Gergely ; Castelluccia, Claude et al. / Differential inference testing : A practical approach to evaluate sanitizations of datasets. Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019. Institute of Electrical and Electronics Engineers Inc., 2019. pp. 72-79 (Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019).

@inproceedings{5c176d08ea334f1ab302c624688880d3,

title = "Differential inference testing: A practical approach to evaluate sanitizations of datasets",

abstract = "In order to protect individuals' privacy, data have to be 'well-sanitized' before sharing them, i.e. one has to remove any personal information before sharing data. However, it is not always clear when data shall be deemed well-sanitized. In this paper, we argue that the evaluation of sanitized data should be based on whether the data allows the inference of sensitive information that is specific to an individual, instead of being centered around the concept of re-identification. We propose a framework to evaluate the effectiveness of different sanitization techniques on a given dataset by measuring how much an individual's record from the sanitized dataset influences the inference of his/her own sensitive attribute. Our intent is not to accurately predict any sensitive attribute but rather to measure the impact of a single record on the inference of sensitive information. We demonstrate our approach by sanitizing two real datasets in different privacy models and evaluate/compare each sanitized dataset in our framework.",

keywords = "Differential Privacy, Inferences, K-Anonymity, Machine Learning, Sanitization, ℓ-Diversity",

author = "Ali Kassem and Gergely {\'A}cs and Claude Castelluccia and Catuscia Palamidessi",

note = "Publisher Copyright: {\textcopyright} 2019 IEEE.; 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019 ; Conference date: 23-05-2019",

year = "2019",

month = may,

day = "1",

doi = "10.1109/SPW.2019.00024",

language = "English",

series = "Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "72--79",

booktitle = "Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019",

}

Kassem, A, Ács, G, Castelluccia, C & Palamidessi, C 2019, Differential inference testing: A practical approach to evaluate sanitizations of datasets. in Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019., 8844631, Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019, Institute of Electrical and Electronics Engineers Inc., pp. 72-79, 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019, San Francisco, United States, 23/05/19. https://doi.org/10.1109/SPW.2019.00024

Differential inference testing: A practical approach to evaluate sanitizations of datasets. / Kassem, Ali; Ács, Gergely; Castelluccia, Claude et al.
Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019. Institute of Electrical and Electronics Engineers Inc., 2019. p. 72-79 8844631 (Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Differential inference testing

T2 - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019

AU - Kassem, Ali

AU - Ács, Gergely

AU - Castelluccia, Claude

AU - Palamidessi, Catuscia

PY - 2019/5/1

Y1 - 2019/5/1

N2 - In order to protect individuals' privacy, data have to be 'well-sanitized' before sharing them, i.e. one has to remove any personal information before sharing data. However, it is not always clear when data shall be deemed well-sanitized. In this paper, we argue that the evaluation of sanitized data should be based on whether the data allows the inference of sensitive information that is specific to an individual, instead of being centered around the concept of re-identification. We propose a framework to evaluate the effectiveness of different sanitization techniques on a given dataset by measuring how much an individual's record from the sanitized dataset influences the inference of his/her own sensitive attribute. Our intent is not to accurately predict any sensitive attribute but rather to measure the impact of a single record on the inference of sensitive information. We demonstrate our approach by sanitizing two real datasets in different privacy models and evaluate/compare each sanitized dataset in our framework.

AB - In order to protect individuals' privacy, data have to be 'well-sanitized' before sharing them, i.e. one has to remove any personal information before sharing data. However, it is not always clear when data shall be deemed well-sanitized. In this paper, we argue that the evaluation of sanitized data should be based on whether the data allows the inference of sensitive information that is specific to an individual, instead of being centered around the concept of re-identification. We propose a framework to evaluate the effectiveness of different sanitization techniques on a given dataset by measuring how much an individual's record from the sanitized dataset influences the inference of his/her own sensitive attribute. Our intent is not to accurately predict any sensitive attribute but rather to measure the impact of a single record on the inference of sensitive information. We demonstrate our approach by sanitizing two real datasets in different privacy models and evaluate/compare each sanitized dataset in our framework.

KW - Differential Privacy

KW - Inferences

KW - K-Anonymity

KW - Machine Learning

KW - Sanitization

KW - ℓ-Diversity

U2 - 10.1109/SPW.2019.00024

DO - 10.1109/SPW.2019.00024

M3 - Conference contribution

AN - SCOPUS:85073148456

T3 - Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019

SP - 72

EP - 79

BT - Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 23 May 2019

ER -

Kassem A, Ács G, Castelluccia C, Palamidessi C. Differential inference testing: A practical approach to evaluate sanitizations of datasets. In Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019. Institute of Electrical and Electronics Engineers Inc. 2019. p. 72-79. 8844631. (Proceedings - 2019 IEEE Symposium on Security and Privacy Workshops, SPW 2019). doi: 10.1109/SPW.2019.00024

Differential inference testing: A practical approach to evaluate sanitizations of datasets

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this