Efficient privacy preservation of big data for accurate data mining

1 Introduction

Recent advances in computer technologies have drastically increased the amount of data collected from cyber, physical and human worlds. Data collection at large scale can make sense only if they are actionable and they can be used in decision making Witten et al. (2016). Data mining helps at this point by investigating unsuspected relationships in the data and providing useful insights to the data owners. Moreover, such capabilities may often need to be shared with external parties for further analysis. In this process, various kinds of information may be revealed, which can lead to a privacy breach. The ability to share information while preventing the disclosure of personally identifiable information (PII) becomes an important aspect of information privacy, and it is one of the most significant technical, legal, ethical and social challenges. In fact, various governmental and commercial organizations collect vast amounts of user data, among others individual credit information, health, financial status, and personal preferences. Social networking, banking and healthcare systems are examples of systems that handle such private information Chamikara et al. (2018), and they often overlook privacy due to indirect use of private information. There are other information systems that use massive amounts of sensitive private information (also called big data) for modeling and prediction of human-related phenomena such as crimes Helbing et al. (2015), epidemics Jalili & Perc (2017) and grand challenges in social physics Capraro & Perc (2018). Hence, privacy preservation (a.k.a. sanitization) Vatsalan et al. (2017) can become a very complex problem and requires robust solutions Wen et al. (2018).

Privacy-preserving data mining (PPDM) offers the possibility of using data mining methods without disclosing private information. PPDM approaches include data perturbation (data modification) Chen & Liu (2005, 2011) and encryption Kerschbaum & Härterich (2017). Cryptographic methods are renowned for securing data. Literature provides many examples where PPDM effectively utilize cryptographic methods Li et al. (2017). For example, we can find applications of homomorphic encryption in the domains including but not limited to e-health, cloud computing and sensor networks Zhou et al. (2015). Secure sum, secure set union, scalar product and set intersection are few other operations that can be used as building blocks in distributed data mining Clifton et al. (2002). However, due to their high computational complexity, they cannot provide sufficient data utility Gai et al. (2016) and are impractical for PPDM. Data perturbation is known to have lower computational complexity compared to cryptographic methods for privacy preservation Chamikara et al. (2018). Data perturbation maintains individual record confidentiality by applying a systematic modification to the data elements in a database Chamikara et al. (2018). The perturbed dataset is often indistinguishable from the original dataset, e.g. age data maps to a reasonable number so that a third party cannot differentiate between original and perturbed age. Examples of perturbation techniques include adding noise to the original data (additive perturbation) Muralidhar et al. (1999), applying rotation to the original data using a random rotation matrix (random rotation) Chen & Liu (2005), applying both rotation and translation to the original data using a random rotation matrix and a random translation matrix (geometric perturbation) Chen & Liu (2011), and randomizing the outputs of user responses using some random algorithm (randomized response) Dwork et al. (2014). A major disadvantage of these techniques is that they can not process high volumes of data efficiently, e.g. random rotation and geometric perturbation consume a considerable amount of time to provide good results while enforcing sufficient privacy Chen & Liu (2005, 2011). Additive perturbation takes less time but provides a lower privacy guarantee Okkalioglu et al. (2015). The existing methods have issues in maintaining a proper balance between privacy and utility.

It is essential to define the effectiveness of a privacy-preserving approach using a privacy model, and identify the limitations of private information protection and disclosure Chamikara et al. (2018). $K - a n o n y m i t y$ , $l - d i v e r s i t y$ , $(α, k) - a n o n y m i t y$ , $t - c l o s e n e s s$ are some of the previous privacy models, and they show vulnerability to different attacks, e.g. minimality, composition and foreground knowledge attacks Chamikara et al. (2018). Differential privacy (DP) is a privacy model known to render maximum privacy by minimizing the chance of individual record identification Dwork et al. (2014). Local differential privacy (LDP), achieved by input perturbation Dwork et al. (2014), allows full or partial data release to analysts Kairouz et al. (2014) by randomizing the individual instances of a database Tang et al. (2017). Global differential privacy (GDP), also called the trusted curator model, allows analysts only to request the curator to run queries on the database. The curator applies carefully calibrated noise to the query results to provide differential privacy Dwork et al. (2014); Kairouz et al. (2014)

. However, GDP and LDP fail for small datasets, as accurate estimation of the statistics shows poor results when the number of tuples is small. Although differential privacy has been studied thoroughly, only a few viable solutions exist towards full/partial data release using LDP. Most of these are solutions for categorical data such as RAPPOR

Erlingsson et al. (2014) and Local, Private, Efficient Protocols for Succinct Histograms Qin et al. (2016). DP’s solid, theoretically appealing foundation for privacy protection has limited the practicality of implementing efficient solutions towards big data. Furthermore, existing LDP algorithms include a significant amount of noise addition (i.e. randomization), resulting in low data utility. Accordingly, utility and privacy often appear as conflicting factors, and improved privacy usually entails reduced utility.

The main contribution of this paper is a new Privacy preservation Algorithm for Big Data Using Optimal geometric Transformations (PABIDOT). PABIDOT is an irreversible input perturbation mechanism with a new privacy model ( $Φ - s e p a r a t i o n$ ) which facilitates full data release. We prove that $Φ - s e p a r a t i o n$

provides an empirical privacy guarantee against the data reconstruction attacks. PABIDOT is substantially faster than comparable methods; it sequentially applies random axis reflection, noise translation, and multidimensional concatenated subplane rotation followed by randomized expansion and random tuple shuffling for further randomization. Randomized expansion is a novel method to increase the positiveness or the negativeness of a particular data instance. PABIDOT’s memory overhead is comparatively close to other solutions, and it provides better attack resistance, classification accuracy, and excellent efficiency towards big data. We tested PABIDOT by using nine generic datasets retrieved from the UCI machine learning data repository

¹¹1http://archive.ics.uci.edu/ml/index.php and the OpenML machine learning data repository²²2https://www.openml.org, the results were compared against two alternatives: random rotation perturbation (RP) Chen & Liu (2005) and geometric perturbation (GP) Chen & Liu (2011), which are known to provide high utility in terms of privacy-preserving classification. Our study shows that PABIDOT always ends up with approximately optimal perturbation. PABIDOT produces the best empirical privacy possible by determining the globally optimal perturbation parameters adhering to

Φ - s e p a r a t i o n

for the dataset of interest. The source code of the PABIDOT project is available at $https://github.com/chamikara1986/PABIDOT$.

The rest of the paper is organized as follows. Section 2 provides a summary of existing related work. The technical details of PABIDOT are described in Section 3. Section 3 further presents the basic flow of PABIDOT which we refer as PABIDOT_basic for convenience. The efficiency optimization of PABIDOT is discussed in Section 4. At the end of Section 4, the main algorithm (PABIDOT) with optimized efficiency is introduced. Section 4 presents experimental settings and provides a comparative analysis of performance and resistance of PABIDOT. The results are discussed in Section 6, and the paper is concluded in Section 7.

2 Literature Review

Privacy protection of individuals has become a challenging task with the proliferation of Internet-enabled consumer technologies. Literature shows different approaches to find solutions towards this challenge. While some approaches concentrate on increasing the awareness Buccafurri et al. (2016), others try to employ different techniques to enforce individual privacy Wei et al. (2018). Above all, the massive volumes of big data introduce many challenges to privacy preservation Cuzzocrea (2015). Although the security and privacy concerns of big data are not entirely new, they require attention due to the specifics of the environments and dynamics put forward by the devices used Kieseberg & Weippl (2018). The advancements of these environments and the diversity of devices always introduce increased complexity and make security and privacy preservation complex. To counter the diversified challenges and complexities, three different technological approaches can be observed: disclosure control, privacy-preserving data mining (PPDM) and privacy-enhancing technologies Torra (2017a). Attribute-based encryption, controlling access via authentication, temporal and location-based access control and employing constraint-based protocols are some mechanisms that are used for improving the privacy of systems in dynamic environments Chamikara et al. (2018). Among the various approaches to privacy-preserving data mining, data perturbation is often preferred due to its simplicity and efficiency Aldeen et al. (2015). Both input and output perturbation are often used: output perturbation is based on noise addition and rule hiding while input perturbation is conducted either by noise addition Muralidhar et al. (1999) or multiplication Chamikara et al. (2018). Input perturbation can be divided further into unidimensional perturbation and multidimensional perturbation Okkalioglu et al. (2015). Additive perturbation Muralidhar et al. (1999), randomized response Dwork et al. (2014), swapping Hasan et al. (2016) and microaggregation Torra (2017b) are examples of unidimensional input perturbation, whereas condensation Aggarwal & Yu (2004), random rotation Chen & Liu (2005), geometric perturbation Chen & Liu (2011), random projection Liu et al. (2006), and hybrid perturbation are multidimensional Aldeen et al. (2015).

In additive perturbation, random noise is added to the original data in such a way that the underlying statistical properties of the attributes are preserved. A significant problem with this approach is low utility of the resulting data Agrawal & Srikant (2000). Additionally, effective noise reconstruction techniques developed in response can significantly reduce the level of privacy Okkalioglu et al. (2015). Randomization techniques such as randomized response is another approach Dwork et al. (2014), e.g. randomizing the responses of interviewees in order to preserve the privacy of respondents. Due to the high randomization of input data, randomization techniques such as randomized response often provide high privacy whereas the utility in terms of estimating statistics or conducting analyses can be low Dwork et al. (2014). Microaggregation is based on confidentiality rules that allow the publication of micro datasets. It divides the dataset into clusters of $k$ elements and replaces the values in each cluster with the centroid of the cluster. Microaggregation to a single variable (univariate microaggregation) is vulnerable to transparency attacks when the published data includes information about the protection method and its parameters Torra (2017b). Multivariate microaggregation has also been proposed, but it is complex and has been proven to be NP-hard Torra (2017b)

. In condensation, the input dataset is divided into multiple groups of a pre-defined size in such a way that the difference between records in a particular group is minimal, and a certain level of statistical information about the different records is maintained in each group. Then sanitized data are generated using uniform random distribution based on the eigenvectors which are generated using the eigendecomposition of the characteristic covariance matrices of each homogeneous group

Aggarwal & Yu (2004). Condensation has a significant shortcoming in that it may degrade the quality of data significantly.

Random rotation perturbation, geometric data perturbation, and random projection perturbation are three types of matrix multiplicative Okkalioglu et al. (2015)

methods. In random rotation, the original data matrix is multiplied using a random rotation matrix that has the properties of an orthogonal matrix. The application of rotation is repeated until the algorithm converges at the desired level of privacy

Chen & Liu (2005). In geometric data perturbation, a random translation matrix is incorporated in the process of perturbation in order to enhance privacy. The method accompanies three components: rotation perturbation, translation perturbation, and distance perturbation Chen & Liu (2011). The main idea of random projection perturbation is to project data from high-dimensional space to a randomly chosen low-dimensional subspace Liu et al. (2006). Due to the isometric nature of transformations, random rotation perturbation, geometric data perturbation, and random projection perturbation are capable of preserving the distances between tuples in a dataset Chen & Liu (2005, 2011); Liu et al. (2006). Accordingly, they provide high utility w.r.t. classification and clustering. In hybrid perturbation, both matrix multiplicative and matrix additive properties are used, which is quite similar to geometric perturbation Aldeen et al. (2015). These algorithms have high computational complexity and are time-consuming, which make them unsuitable to work with big datasets.

Due to its explicit notion of strong privacy guarantee, differential privacy has attracted much attention. Although LDP permits full or partial data release, and the analysis of privacy-protected data Dwork et al. (2014); Kairouz et al. (2014), LDP algorithms are still at a fundamental stage when it comes to the privacy preservation of real-valued numerical data. The complexity of selecting the domain of randomization with respect to a single data instance is still a challenge Erlingsson et al. (2014). In GDP, the requirement of a trusted curator who enforces differential privacy by applying noise or randomization can be considered as a primary issue Dwork et al. (2014). The fundamental mechanisms used to obtain differential privacy include Laplace mechanism, Gaussian mechanism Dwork et al. (2014), geometric mechanism, randomized response, and staircase mechanisms Kairouz et al. (2014). The necessity of a trusted third party in GDP and the application of extremely high noise in LDP are inherent shortcomings that directly affect the balance between privacy and utility of these practical, differentially private approaches.

Many previously proposed privacy preservation methods, including data perturbation, perform poorly with high dimensional datasets. The necessary computing resources grow fast as the number of attributes and number of instances increase even though the performance is good for low dimensional data. This quality is often referred to as “The Dimensionality Curse” Chamikara et al. (2018). Large datasets also provide extra information to attackers, as higher dimensions help in utilizing background knowledge to identify individuals Bettini & Riboni (2015).

Most of the privacy-preserving algorithms have problems with balancing privacy and utility. Data privacy focuses on the difficulty of estimating the original data from the sanitized data, while utility concentrates on preserving application-specific properties/information Aggarwal (2015). A generic way of measuring the utility of a privacy-preserving method is to investigate perturbation biases Wilson & Rosen (2008). Data perturbation bias means that the result of a query on the perturbed data is significantly different from the result generated for the same query on the original data. Wilson et al. have examined different data perturbation methods against various bias measures Wilson & Rosen (2008), namely, A, B, C, D, and Data Mining (DM) bias. Type A bias occurs when the perturbation of a given attribute causes summary measures to change. Type B bias is the result of the perturbation changing the relationships between confidential attributes, while in case of Type C bias the relationship between confidential and non-confidential attributes changes. Type D bias means that the underlying distribution of the data was affected by the sanitization process. If Type DM bias exists, data mining tools will perform less accurately on the perturbed data than they would on the original dataset. It has been noted that privacy preservation mechanisms decrease utility in general, and finding a trade-off between privacy protection and data utility for big data is an important issue Xu et al. (2015).

In the literature, there is a dearth of efficient privacy preservation methods that provide reliable data utility and are scalable enough to handle the rapidly growing data. Existing methods also have problems with levels of uncertainty, biases and low level of resistance. To address the issues presented by big data, there is an urgent need for methods that are scalable, efficient and robust. New methods should overcome the aforementioned weaknesses of the existing PPDM methods and provide solutions towards large-scale privacy preserving data mining.

3 Proposed Algorithm: PABIDOT

PABIDOT perturbs a dataset by using multidimensional geometric transformations, reflection, translation, and rotation followed by randomized expansion (a new noise addition mechanism which is explained in Section 3) and random tuple shuffling. Figure 1 shows the basic flow and architecture of the proposed perturbation algorithm. Based on the proposed privacy model called $Φ - s e p a r a t i o n$ , the algorithm aims at optimum privacy protection in terms of protection against data reconstruction attacks. PABIDOT achieves this by selecting the best possible perturbation parameters based on the properties of the input dataset. Figure 1 also demonstrates the position of PABIDOT in a privacy-preserving big data release scenario. PABIDOT assumes that the original data can be accessed only by the owner/ the administrator of that dataset. There can be complementary releases of the perturbed versions of the original dataset. The original dataset will not be released to a third party users under any circumstances.

Figure 1: Basic flow and the architecture of PABIDOT. In this setting, the data owner is considered to be the trusted curator who owns the original dataset. The owner is located in the local edge of a cloud computing scenario. The orange boxes represent the main steps of the algorithm whereas the green boxes represent the intermediate data generative steps which support the appropriate main steps.

Rationale and technical novelty

PABIDOT applies geometric transformations with optimal perturbation parameters and increases randomness using randomized expansion followed by a random tuple shuffle. It defines privacy in such a way that the resulting dataset has an optimal difference compared to the original dataset as a result of the privacy model ( $Φ - s e p a r a t i o n$ ) used by PABIDOT. This property helps in minimizing the search space and finding the best possible perturbation for a particular dataset. Consequently, efficiency and reliability of PABIDOT in big data perturbation increase while providing better resistance to data reconstruction. Figure 1 and Algorithm 3 depict the proposed perturbation algorithm, and Table 1 provides a summary of the notations used in Algorithm 2 and Algorithm 3

. As shown, the original dataset and the standard deviation to the normal random noise provided under randomized expansion are the only inputs to Algorithm

3, and the perturbed dataset is its only output.

Data matrix (D)

The dataset to be perturbed is represented as a matrix ( $D$ ) of size $m \times n$ where the columns represent the attributes ( $n$ attributes), and rows represent the records ( $m$ records). For example, personal information of a patient can be represented as a record which may have attributes such as age, weight, height, and gender. The data matrix is assumed to contain numerical data only.

D = {⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} a_{11} & \dots & a_{1 k} & \dots & a_{1 n} a_{21} & \dots & a_{2 k} & \dots & a_{2 n} ⋮ & ⋱ & ⋮ & ⋱ & ⋮ a_{m 1} & \dots & a_{m k} & \dots & a_{m n} \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦}_{m \times n}

(1)

In the process of perturbation, the data matrix is subjected to multidimensional geometric composite transformations. During these transformations, a record (row) in the data matrix will be considered as a point in the multi-dimensional Cartesian coordinate system.

Multidimensional isometric transformations

Geometric translation, rotation and reflection are considered to be isometric transformations in the $n-dimensional$ space. A transformation $T : R^{n} \to R^{n}$ is said to be isometric, if it preserves the distances so that Maruskin (2012)

| T (A) - T (B) | = | A - B |, \forall A, B \in R^{n} .

(2)

All matrices and Cartesian points are represented in homogeneous coordinate form in order to consider all the transformations in matrix multiplication form. A homogeneous coordinate point in $n-dimensional$ space can be written as an $(n + 1)$

dimensional position vector

(x_{1}, x_{2}, \dots, x_{n}, h)

with the additional term

h \neq 0

. The introduction of homogeneous coordinates enables composite transformation between the coordinates and transformation matrices without having to perform a collection of transformations as a sequential process. Therefore, multidimensional geometric translation, reflection and rotation can be represented in their generalized forms of

(n + 1) \times (n + 1)

matrices Jones (2012).

A composite operation is performed when several transformation matrices have to be applied in a particular transformation. If several transformation matrices $M_{1}, M_{2}, M_{3}, \dots$ are sequentially applied to a homogeneous matrix $X$ , the composite operation is given by

X^{'} = \dots (M_{3} (M_{2} (M_{1} X))) = \dots M_{3} \times M_{2} \times M_{1} \times X

(3)

Homogeneous data matrix

All records in the input data matrix ( $D$ ) are converted to homogeneous coordinates by adding a new column of ones (i.e. $h = 1$ ) after the $n^{t h}$ column. The resulting homogeneous representation of the data matrix is given by Equation 4.

The input dataset will first be subjected to z-score normalization

Kabir et al. (2015) in order to provide equal weights for all attributes in the transformations. Next, the n-dimensional translational matrix is generated according to Equation 5

, in which the translational coefficients are drawn from random noise with uniform distribution, and n equals to the number of attributes in the input dataset. Due to z-score normalization, the attribute mean becomes 0 while the standard deviation of the dataset becomes 1. Therefore, the noise generated by the uniform random noise function is bounded within

(0, 1)

and follows the inequality

0 < t_{i} (n + 1) < 1

where

t_{i} (n + 1)

denotes a translational coefficient.

D = {⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} a_{11} & \dots & a_{1 k} & \dots & a_{1 n} & 1 a_{21} & \dots & a_{2 k} & \dots & a_{2 n} & 1 ⋮ & ⋱ & ⋮ & ⋱ & ⋮ & ⋮ a_{m 1} & \dots & a_{m k} & \dots & a_{m n} & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦}_{m \times (n + 1)}

(4)

n-Dimensional translation matrix

The $n-dimensional$ homogeneous translation matrix $T_{N D}$ can be derived as shown in Equation 5 Jones (2012).

T_{N D} = {⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} 1 & 0 & 0 & \dots & 0 & t_{1 (n + 1)} 0 & 1 & 0 & \dots & 0 & t_{2 (n + 1)} 0 & 0 & 1 & \dots & 0 & t_{3 (n + 1)} ⋮ & ⋮ & ⋱ & ⋮ 0 & 0 & 0 & \dots & 1 & t_{(n) (n + 1)} 0 & 0 & 0 & \dots & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦}_{(n + 1) \times (n + 1)}

(5)

n-Dimensional reflection matrix

Next, for each of the $n$ axes PABIDOT generates the corresponding matrix of reflection according to Equation 7. The $n-dimensional$ homogeneous matrix $R F_{N D}$ for reflection across axis one can be derived as shown in Equation 6 Jones (2012).

R F_{N D} = {⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} 1 & 0 & 0 & \dots & 0 & 0 & 0 0 & - 1 & 0 & \dots & 0 & 0 & 0 0 & 0 & - 1 & \dots & 0 & 0 & 0 ⋮ & ⋮ & ⋱ & ⋮ & ⋮ 0 & 0 & 0 & \dots & - 1 & 0 & 0 0 & 0 & 0 & \dots & 0 & - 1 & 0 0 & 0 & 0 & \dots & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦}_{(n + 1) \times (n + 1)}

(6)

The (n+1) axis reflection matrix can be written as shown in Equation 7.

R F_{¯ ¯¯¯¯¯¯ ¯ N D} = {⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} - 1 & 0 & 0 & \dots & 0 & 0 & 0 0 & 1 & 0 & \dots & 0 & 0 & 0 0 & 0 & 1 & \dots & 0 & 0 & 0 ⋮ & ⋮ & ⋱ & ⋮ & ⋮ 0 & 0 & 0 & \dots & 1 & 0 & 0 0 & 0 & 0 & \dots & 0 & 1 & 0 0 & 0 & 0 & \dots & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦}_{(n + 1) \times (n + 1)}

(7)

n-Dimensional rotation matrix

After creating the matrix of reflection for one of the $n$ number of axes, PABIDOT generates the n-dimensional concatenated subplane rotation matrices ( $M$ for the current $θ_{i}$ ) using Algorithm 1 for each $θ_{i}$ where ( $(0 < θ_{i} < π), θ_{i} \notin {π / 6, π / 4, π / 3, π / 2, 2 π / 3, 3 π / 4, 5 π / 6}$ )

In order to derive a single matrix that represents the entire $n - d i m e n s i o n a l$ orientation, the concatenated sub-plane rotation method can be used. Then, the rotations in the plane of a pair of coordinate axes $(_{i},_{j})$ for $1 \leq i, j \leq n$ can be written as a block matrix as in Equation 8 Paeth (2014).

R_{i j} (θ_{i j}) = {⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} 1 & \dots & 0 & 0 & \dots & 0 & 0 & \dots & 0 ⋮ & ⋱ & ⋮ & ⋮ & ⋱ & ⋮ & ⋮ & ⋱ & ⋮ 0 & \dots & c o s θ_{i j} & 0 & \dots & 0 & - s i n θ_{i j} & \dots & 0 0 & \dots & 0 & 1 & \dots & 0 & 0 & \dots & 0 ⋮ & ⋱ & ⋮ & ⋮ & ⋱ & ⋮ & ⋮ & ⋱ & ⋮ 0 & \dots & 0 & 0 & \dots & 1 & 0 & \dots & 0 0 & \dots & s i n θ_{i j} & 0 & \dots & 0 & c o s θ_{i j} & \dots & 0 ⋮ & ⋱ & ⋮ & ⋮ & ⋱ & ⋮ & ⋮ & ⋱ & ⋮ 0 & \dots & 0 & 0 & \dots & 0 & 0 & \dots & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦}_{(n + 1) \times (n + 1)}

(8)

Thus $\frac{N (N - 1)}{2}$ distinct $R_{i j} (θ_{i j})$ should be concatenated in the preferred order to produce the final composite n-dimensional matrix which can be obtained using Equation 9 with $\frac{N (N - 1)}{2}$ degrees of freedom, parameterized by $θ_{i j}$ .

M = \prod i < j R_{i j} (θ_{i j})

(9)

Algorithm for generating the multidimensional concatenated sub-plane rotation matrix

Based on Equations 8 and 9, Algorithm 1 can be used to generate the multidimensional concatenated subplane rotational matrix of the desired rotation angle.

The resulting rotation matrix has the properties of an orthogonal matrix where the columns and rows of the resulting concatenated subplane rotation matrix ( $R (θ)$ ) are orthonormal, and hence $R (θ)$ preserves the relationship, $R (θ) \times R (θ)^{T} = R (θ)^{T} \times R (θ) = I$ where $R (θ)^{T}$ be the transpose matrix of $R (θ)$ and $I$

be the identity matrix.

1:Inputs :

$n$	$\leftarrow$	number of attributes of the dataset
$θ$	$\leftarrow$	rotation angle

2:Outputs:

M

\leftarrow

multidimensional rotation matrix of

θ

V

{1, 2, \dots, n}

C

{(i, j) | i, j \in V

and

i \neq j}

I_{n}

= identity matrix of size

n

N

(\frac{n}{2})

▹

Total number of

s i n (θ)

and

c o s (θ)

assignments necessary

I 3 = I_{n}

8:for

k = 1

t o

N

A = {(i_{k}, i_{k}), (j_{k}, i_{k}), (i_{k}, j_{k}), (j_{k}, j_{k})}

where

{i_{k}, j_{k}}

10: is the

k^{t h} s e t

o f

C

▹

Coordinates of

s i n (θ)

and

c o s (θ)

assignments for an instance of

C

11:

I 2

=

I_{n}

▹

Initializing

I_{n}

with the identity matrix of size

n

12:

I 2 (i_{k 1}, j_{k 1})

=

c o s (θ)

13: where,

(i_{k 1}, j_{k 1})

is the set number 1 of

A

14:

I 2 (i_{k 2}, j_{k 2})

=

s i n (θ)

15: where,

(i_{k 2}, j_{k 2})

is the set number 2 of

A

16:

I 2 (i_{k 3}, j_{k 3})

=

- s i n (θ)

17: where,

(i_{k 3}, j_{k 3})

is the set number 3 of

A

18:

I 2 (i_{k 4}, j_{k 4})

=

c o s (θ)

19: where,

(i_{k 4}, j_{k 4})

is the set number 4 of

A

20:

I 3 = I 3 \times I 2

▹

Iterative multiplication of

I 2

and

I 3

to form

M

according to Equations 8 and 9

21:end for

22:

M = I 3

▹

follows Equations 8 and 9

23:End Algorithm

Algorithm 1 Algorithm for generating multidimensional concatenated subplane rotation matrix

Privacy metric for generating the optimal perturbation parameters

Since the proposed method is based on multidimensional isometric transformations, it is important to use a multi-column privacy metric for evaluating the privacy of the proposed method. Assuming that all attributes of the dataset are equally important, z-score normalization is applied to the data matrix as the initial step in the perturbation process. The higher the privacy of the perturbed data, the more difficult it is to estimate the original data Chen & Liu (2005)

. To extend this idea, the variance of the difference between the perturbed and non-perturbed datasets (

V a r (P)

) is considered, the higher the

V a r (P)

, the higher the privacy. Hence,

V a r (P)

provides a measure of privacy of the perturbed data, or the level of difficulty to estimate the original data without prior knowledge about the original data Chen & Liu (2005), which is often called naive inference/estimation Chen & Liu (2005).

V a r (P)

has long been used to measure the level of privacy of perturbed data Muralidhar et al. (1999). In the proposed method the attribute which returns the minimum variance for the difference is considered as the minimum privacy guarantee. If

X^{p}

is a perturbed data series of attribute

X

, the level of privacy of the perturbation method can be measured using

V a r (P)

, where

P = (X^{p} - X)

. Therefore,

V a r (P)

can be written as in Equation 10.

V a r (P) = V a r (p_{1}, p_{2}, \dots, p_{n}) = \frac{1}{n} n \sum i = 1 (p_{i} - ¯ p)^{2}

(10)

We propose a new privacy definition called $Φ - s e p a r a t i o n$ as follows. Assume we have a dataset $D$ of $m$ instances and each instance having $n$ attributes. We perturb this dataset in $k$ different ways, producing datasets $D_{j}^{p} = [d_{j 1}^{p}, d_{j 2}^{p}, \dots, d_{j n}^{p}]_{m \times n}$ for $j = 1, 2, \dots, k$ . The perturbed value of an attribute $d$ is denoted as $d^{p}$ . We then calculate the difference between the original data and the perturbed data $D$ - $D_{j}^{p}$ , which will contain values of ( $d_{i}$ - $d_{i}^{p}$ ) for $i = 1, 2, \dots, n$ . We calculate the variance of each attribute in $D$ - $D_{j}^{p}$ , and select the minimum of these variances.

ϕ_{j} = m i n {[v a r (d_{i} - d_{j i}^{p})]} \forall j = 1, 2, \dots, k

(11)

From the $k$ perturbations, we choose the one that has the largest value of $Φ$ , i.e. we choose the perturbation that produced the most significant difference between the original dataset and the perturbed dataset.

Definition 3.0 ( $Φ - s e p a r a t i o n$ ).

Given the dataset $D = [d_{1}, d_{2}, \dots, d_{n}]_{m \times n}$ and a perturbation algorithm, we shall denote a perturbed instance of $D$ as $D_{j}^{p} = [d_{j 1}^{p}, d_{j 2}^{p}, \dots, d_{j n}^{p}]_{m \times n}$ for $j = 1, 2, \dots, k$ , where $k$ represents the number of possible ways of perturbing $D$ . Then, the minimum privacy guarantee $ϕ_{j}$ is defined as

ϕ_{j} = m i n {[v a r (d_{i} - d_{j i}^{p})]} \forall j = 1, 2, \dots, k

(12)

and the optimal privacy guarantee $Φ$ is

Φ = m a x {ϕ_{j}}_{j = 1}^{k}

(13)

A perturbed dataset that has the optimal privacy guarantee provides $Φ - s e p a r a t i o n$ .

For a perturbed data matrix $D^{p}$ of $D$ of size $m \times n$ , the minimum privacy guarantee ( $ϕ$ ) is the minimum of the variances calculated for attributes based on the differences between the original and perturbed z-score normalized values, as shown in Equation 14. Here $ϕ$ is the minimum privacy guarantee and $n$ is the total number of attributes in $D$ or $D^{p}$ .

ϕ = m i n (V a r (d_{i j} - d_{i j}^{p})_{i = 1}^{m})_{j = 1}^{n} \forall d_{i j} \in D, d_{i j}^{p} \in D^{p}

(14)

Identifying the best perturbation parameters for $D^{n}$

In each iteration the algorithm maximizes the value of $ϕ$ to generate $Φ$ as given in Equation 17. With the axis of reflection varying from 1 to $n$ (number of attributes) and the angle of rotation ( $θ$ ) varying from 0 to 179 degrees, i.e. $0 < θ < π$ and $θ \notin {π / 6, π / 4, π / 3, π / 2, 2 π / 3, 3 π / 4, 5 π / 6}$ , the perturbation will return a $n \times θ$ number of perturbed data matrices: $D_{1, 1}^{p}, D_{1, 2}^{p}, \dots, D_{1, 179}^{p}, D_{2, 1}^{p}, D_{2, 2}^{p}, \dots, D_{2, 179}^{p}, \dots, D_{n, 1}^{p}, D_{n, 2}^{p}, \dots, D_{n, 179}^{p}$ with different levels of perturbations. This will form the matrix of local minimum privacy guarantees, $ϕ_{i, j}$ as given in Equation 15.

{⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} ϕ_{1, 1} & ϕ_{1, 2} & \dots & ϕ_{1, 179} ϕ_{2, 1} & ϕ_{2, 2} & \dots & ϕ_{2, 179} ⋮ & ⋮ & ⋱ & ⋮ ϕ_{n, 1} & ϕ_{n, 2} & \dots & ϕ_{n, 179} \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦}_{n \times 179}

(15)

To get the global minimum guarantee ( $ϕ_{j}$ )values for each angle, we get the minimum of each column as given in Equation 16.

[\begin{matrix} ϕ_{1} & ϕ_{2} & \dots & ϕ_{179} \end{matrix}]

(16)

The perturbed data matrix with the optimal privacy can be considered as the data matrix that returns the largest value $Φ$ for the minimum privacy guarantee $ϕ$ . Therefore, the largest global minimum privacy guarantee ( $ϕ_{j}$ ) is selected from Equation 16 to obtain $Φ$ (Equation 17). In other words, the best perturbation parameters will be selected using the highest privacy guarantee $Φ$ , based on the most vulnerable attributes.

Φ = m a x ([[ϕ_{j}]_{j = 1}^{179}])

(17)

Generate the rotation matrix and reflection matrix using the best perturbation parameters for $D^{n}$

Next, PABIDOT records the angle of rotation ( $θ_{o p t i m a l}$ ) and axis of reflection ( $R i f_{o p t i m a l}$ ) at $Φ$ . Now, the algorithm uses $R i f_{o p t i m a l}$ to generate the matrix of reflection according to Equation 7 and use $θ_{o p t i m a l}$ to generate the matrix of rotation according to Algorithm 1. Composite transformation of reflection, translation, and rotation will then be applied to the z-score normalized matrix using the matrices of optimal reflection, translation, and optimal rotation to generate $D^{p 2}$ .

Application of z-score normalization and the transformations: reflection, translation and rotation

After generating the concatenated subplane rotation matrix, PABIDOT applies the composite transformation of reflection, translation, and rotation on the z-score normalized input data matrix. Rotation is applied after reflection and noise translation. This is because the effect of rotation is proportional to the distance from the origin, and we want to reduce the probability of points close to the origin getting attacked due to weaker perturbation

Chen & Liu (2011). An instance of the application of the transformation to the input data matrix (

D

) in the order of application can be represented using Equation 18.

D^{^{'}} = (M \times T_{N D} \times R F_{¯ ¯¯¯¯¯¯ ¯ N D} \times (D^{N})^{T})^{T}

(18)

Randomized Expansion

A privacy preserving algorithm is composable if it can keep satisfying the same privacy requirements of the privacy model in use, after repeated independent application of the algorithm Soria-Comas & Domingo-Ferrer (2016)

. To improve the composability and the randomness of the perturbation algorithm, noise drawn from random normal distribution (with a mean of 0, and a predefined standard deviation subjected to a default value of 0.3) is added to the data according to a novel approach named as randomized expansion. Here, we introduce noise in such a way that it further enhances the positiveness or the negativeness of a particular value where the zeros are not subjected to any change as depicted in Figure

Figure 2: Effect of $R a n d o m i z e d$ $E x p a n s i o n$ . The red arrows of the right-hand side show a positive shift where a calibrated positive random value is added to the positive value to increase the positiveness of the original value. The left-hand side which is represented by the blue arrows show a negative shift where a calibrated negative random value is added to the negative value to increase the negativeness of the original value.

In order to generate the noise for randomized expansion, first, we generate the sign matrix ( $S_{\pm}$ ) based on the values of $D^{p 2}$ . A value in $S_{\pm}$ will be 1 if the corresponding element of $D^{p 2}$ is greater than 0, it will be 0 if the corresponding element of $D^{p 2}$ equals 0, and it will be -1 if the corresponding element of $D^{p 2}$ is less than 0. $D^{p 2} . / a b s (D^{p 2})$ if $D^{p 2}$ is complex. Next, the absolute values of $D^{p 2}$ and absolute values of the random normal noise matrix $(N (0, σ))$ are added together and dot product with $S_{\pm}$ is calculated as denoted in Equation 19.

(19)

Application of reverse z-score normalization and random tuple swapping

At this stage, the attributes of the perturbed data matrix will not be within the ranges of the attributes of the original dataset. Therefore, reverse z-score normalization will be applied to the current matrix, using the standard deviations ( $S T D V E C$ ) and means of the attributes ( $M E A N V E C$ ) of the original dataset. Finally, the tuples of the resulting matrix will be randomly swapped to generate the final perturbed dataset.

Notation	Summary/Constraints
$Φ$	$Φ$ is the optimal privacy guarantee
$θ_{o p t i m a l}$	$θ_{i}$ at $Φ$
$R i f_{o p t i m a l}$	optimal axis for $(n - 1)$ reflection selected at $Φ$
$m$	number of tuples
$n$	number of attributes
$D^{N}$	z-score normalized dataset of $D$
$C o v (D^{N})$	covariance matrix of $D^{N}$
$T N^{n o i s e}$	transformation matrix with uniform random noise
$R F_{a x}$	$n-dimensional$ reflection matrix for the current axis $a x$
	(generated according to Equation 7)
$θ_{i}$	( $0 < θ_{i} < π$ ) and $θ_{i} \notin {π / 6, π / 4, π / 3, π / 2, 2 π / 3, 3 π / 4, 5 π / 6}$
$M_{i}$	$n-dimensional$ concatenated subplane rotation matrix
	generated using Algorithm 1 for $θ_{i}$
$M θ$	$n-dimensional$ concatenate sub-plane rotation matrix
	generated using Algorithm 1 for $θ_{o p t i m a l}$
$R F_{o p t i m a l}$	$R F_{o p t i m a l}$ is the $n-dimensional$ reflection matrix,
	generated according to Equation 7 for $R i f_{o p t i m a l}$
$S T D V E C$	vector of standard deviations of all the attributes of $D$
$M E A N V E C$	vector of mean values of all the attributes of $D$

Table 1: Summary of the notations used in the proposed algorithm.

3.1 Overall process of PABIDOT

Algorithm 2 summarizes the overall set of steps of the basic perturbation algorithm. A summary of notations used in this algorithm is provided in Table 1. For convenience, we refer to Algorithm 2 as PABIDOT_basic in subsequent sections.

1:Inputs :

$D$	$\leftarrow$	original dataset
$σ$	$\leftarrow$	input noise standard deviation (default value=0.3)

2:Outputs:

D^{p}

\leftarrow

perturbed dataset

Φ = 0

θ_{o p t i m a l} = 0

R i f_{o p t i m a l} = 0

6:generate

D^{N}

▹

by applying z-score normalization on

D

7:generate

T N^{n o i s e}

▹

according to Equation 5, using uniform random noise as the translational coefficients

8:for each

a x

{1, 2, \dots, n}

▹

assume there are

n

number of attributes in

D

9: generate

R F_{a x}

▹

according to Equation 7

10: for each

θ_{i}

11: generate

M_{i}

using Algorithm 1

▹

refer Equations 8, and 9

12:

D^{p 1} = (M_{i} \times T N^{n o i s e} \times R F_{a x} \times (D^{N})^{T})^{T}

▹

follows Equation 18

13:

ϕ_{i, a x} = m i n (V a r (x_{i j} - p_{i j})_{i = 1}^{m})_{j = 1}^{n}

\forall

x_{i j} \in D^{N}

and

p_{i j} \in D^{p 1}

▹

according to Equation 14

14: end for

15:end for

16:for each

θ_{i}

17:

ϕ_{i} = m i n (ϕ_{i, a x})

where,

a x

\in

{1, 2, \dots, n}

▹

follows Equation 16

18:end for

19:

Φ = m a x (ϕ_{i})

where,

i

\in

{1, 2, \dots, θ}

▹

according to Equation 17

20:

θ_{o p t i m a l} = θ_{i}

Φ

21:

R i f_{o p t i m a l} = a x

Φ

22:generate

M θ

▹

according to Algorithm 1, using

θ_{o p t i m a l}

23:generate

R F_{o p t i m a l}

▹

according to Equation 7, using

R i f_{o p t i m a l}

24:

D^{p 2} = (M θ \times T N^{n o i s e} \times R F_{o p t i m a l} \times (D^{N})^{T})^{T}

▹

follows Equation 18

25:

D^{p 2} = (∥ ∥ D^{p 2} ∥ ∥ + ∥ ∥ N (0, σ) ∥ ∥

)

∙ S_{\pm}

▹

according to Equation 19

26:

D^{p}

D^{p 3} ∙ S T D V E C

M E A N V E C

▹

reverse z-score normalization

27:randomly swap the tuples of

D^{p}

28:End Algorithm

Algorithm 2 Basic steps of PABIDOT

4 Optimizing the efficiency of PABIDOT

During the execution of PABIDOT, the composite transformations in steps 12 and 13 in Algorithm 2 need to be applied to the whole dataset for a total of $n \times θ$ times. This can be infeasible for high dimensional datasets. To accelerate the computations, a method based on the covariance matrix of the input dataset ( $D$ ) was used to generate $ϕ_{i, a x}$ , where $ϕi,ax=min(\vv1+diag(RT×RF×Cov(D)×RF×RTT)+sum((Cov(D)×RF∙RT)T)T)$ . This eliminates the necessity of searching through a large number of tuples of a big dataset in each loop to find $Φ$ , as it only needs the $C o v (D)$ of $D$ . The steps of this derivation are provided below (Section 4).

Poof:.

$V a r (X - X^{p})$	$= E (X - X^{p})^{2} - [E (X - X^{p})]^{2}$	(20)
	$= E (X^{2} - 2 X X^{p} - {X^{p}}^{2}) - [(E (X))^{2} - 2 E (X) E (X^{p}) + (E (X^{p}))^{2}]$
	$= [E (X^{2}) - (E (X))^{2}] + [E ({X^{p}}^{2}) - (E (X^{p}))^{2}] - 2 [E (X X^{p}) - E (X) E (X^{p})]$
	$= V a r (X) + V a r (X^{p}) - 2 C o v (X, X^{p})$

Since, X is z-score normalized $V a r (X)$ is equal to $(n - 1) / n$ . For large number of records $(n - 1) / n = 1$ .

Therefore,

V a r (X - X^{p}) = 1 + V a r (X^{p}) - 2 \times C o v (X, X^{p})

(21)

Hence,

Var(D−Dp)=\vv1+Var(Dp)−2×Cov(D,Dp)

(22)

Let’s consider the following table $D$ as the table to be perturbed where $X, Y, Z$ are the columns of $D$ ,

	X	Y	Z
$a_{1} =>$	$x_{1}$	$y_{1}$	$z_{1}$
$a_{2} =>$	$x_{2}$	$y_{2}$	$z_{2}$
$a_{3} =>$	$x_{3}$	$y_{3}$	$z_{3}$

The perturbation of a single tuple $a_{i}$ can be given as $a_{i}^{p} = R T \times T N \times R F \times a_{i}^{T}$ (where, $R T$ , $T N$ and $R F$ are rotation, translation and reflection matrices respectively), which is found using

⎡ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} x_{1}^{p} y_{1}^{p} z_{1}^{p} 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎦ = ⎡ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} a & b & c & 0 d & e & f & 0 g & h & i & 0 0 & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎦ ⎡ ⎢ ⎢ ⎢ ⎣ \begin{matrix} 1 & 0 & 0 & n x 0 & 1 & 0 & n y 0 & 0 & 1 & n z 0 & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎦ ⎡ ⎢ ⎢ ⎢ ⎣ \begin{matrix} - 1 & 0 & 0 & 0 0 & 1 & 0 & 0 0 & 0 & 1 & 0 0 & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎦ ⎡ ⎢ ⎢ ⎢ ⎣ \begin{matrix} x_{1} y_{1} z_{1} 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎦

(23)

Assuming that axis 1 has been selected for the $(n - 1)$ reflection.

Therefore,

$x_{1}^{p}$	$= - a (x_{1} + n_{x}) + b (y_{1} + n_{y}) + c (z_{1} + n_{z}) = - a x_{1} + b y_{1} + c z_{1} + a n_{x} + b n_{y} + c n_{z}$	(24)
$x_{2}^{p}$	$= - a (x_{2} + n_{x}) + b (y_{2} + n_{y}) + c (z_{2} + n_{z}) = - a x_{2} + b y_{2} + c z_{2} + a n_{x} + b n_{y} + c n_{z}$
$x_{3}^{p}$	$= - a (x_{3} + n_{x}) + b (y_{3} + n_{y}) + c (z_{3} + n_{z}) = - a x_{3} + b y_{3} + c z_{3} + a n_{x} + b n_{y} + c n_{z}$

and

⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} x_{1}^{p} x_{2}^{p} ⋮ x_{n}^{p} \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦ = - a ⎡ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} x_{1} x_{2} ⋮ x_{n} \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎦ + b ⎡ ⎢ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} y_{1} y_{2} ⋮ y_{n} \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎥ ⎦ + c ⎡ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} z_{1} z_{2} ⋮ z_{n} \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎦ + a N_{x} + b N_{y} + c N_{z}

X^{p}

= - a X + b Y + c Z + δ E

(25)

Where, $δ E = a N_{x} + b N_{y} + c N_{z}$

So,

$C o v (X, X^{p})$	$= C o v (X, (- a X + b Y + c Z + δ E))$	(26)
	$= C o v (X, - a X) + C o v (X, b Y) + C o v (X, c Z)$
	$= - a C o v (X, X) + b C o v (X, Y) + c C o v (X, Y)$

Similarly,

C o v (Y, Y^{p})

= - d C o v (Y, X) + e C o v (Y, Y) + f C o v (X, Z)

(27)

C o v (Z, Z^{p})

= - g C o v (Z, X) + h C o v (Z, Y) + i C o v (Z, Z)

(28)

and

C o v (D, D^{p}) = ⎡ ⎢ ⎣ \begin{matrix} - a C o v (X, X) + b C o v (X, Y) + c C o v (X, Z) - d C o v (Y, X) + e C o v (Y, Y) + f C o v (Y, Z) - g C o v (Z, X) + h C o v (Z, Y) + i C o v (Z, Z) \end{matrix} ⎤ ⎥ ⎦

(29)

Therefore,

C o v (D, D^{p}) = s u m ⎛ ⎜ ⎜ ⎜ ⎜ ⎝ ⎛ ⎜ ⎜ ⎜ ⎜ ⎝ ⎡ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} C o v (X, X) & C o v (X, Y) & C o v (X, Z) & 0 C o v (Y, X) & C o v (Y, Y) & C o v (Y, Z) & 0 C o v (Z, X) & C o v (Z, Y) & C o v (Z, Z) & 0 0 & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎦ \times {{⎡ ⎢ ⎢ ⎢ ⎣ \begin{matrix} - 1 & 0 & 0 & 0 0 & 1 & 0 & 0 0 & 0 & 1 & 0 0 & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎦ ∙ ⎡ ⎢ ⎢ ⎢ ⎢ ⎣ \begin{matrix} a & b & c & 0 d & e & f & 0 g & h & i & 0 0 & 0 & 0 & 1 \end{matrix} ⎤ ⎥ ⎥ ⎥ ⎥ ⎦ ⎞ ⎟ ⎟ ⎟ ⎠}^{T} ⎞ ⎟ ⎟ ⎟ ⎟ ⎠}^{T}

(30)

C o v (D, D^{p}) = s u m ((C o v (D) \times R F ∙ R T)^{T})^{T}

(31)

Let $A$ be the dataset of attributes $(A_{1}, A_{2}, A_{3}, \dots, A_{n})$ , and let $V$ be the variance-covariance of a size $n \times n$ square matrix defined by,

V_{i, j} = C o v (A_{i}, A_{j})

(32)

where the diagonal elements are $V_{i, i} = V a r (A_{i})$

Let $r$ be a row vector of weight factors (in this case $n$ elements). Then

V a r (r X) = r V r^{^{'}}

(33)

written out in component form,

V a r (r_{1} A_{1} + r_{2} A_{2} + r_{3} A_{3} + \dots + r_{i} A_{i}) = r_{i} C o v (A_{i}, A_{j}) r_{j}

(34)

Since, $C o v (A_{i}, A_{j}) = C o v (A_{i}, A_{j})$ and $C o v (A_{i}, A_{i}) = V a r (A_{i})$

r_{i} C o v (A_{i}, A_{j}) r_{j} = \forall i = j : r_{i}^{2} V a r (A_{i}) + \forall i < j : 2 r_{i} r_{j} C o v (A_{i}, A_{j})

(35)

Hence,

V a r (a X + b Y + c Z) = a^{2} V a r (X) + b^{2} V a r (Y) + c^{2} V a r (Z) + 2 a b C o v (X, Y) + 2 a c C o v (X, Z) + 2 b c C o v (Y, Z)

(36)

Therefore,

V a r (- a X + b Y + c Z + δ E) = a^{2} V a r (X) + b^{2} V a r (Y) + c^{2} V a r (Z) - 2 a b C o v (X, Y) -

Efficient privacy preservation of big data for accurate data mining

Authors

An Efficient and Scalable Privacy Preserving Algorithm for Big Data and Data Streams

Privacy Preserving Distributed Machine Learning with Federated Learning

Clustering based Privacy Preserving of Big Data using Fuzzification and Anonymization Operation

Privacy Preserving Utility Mining: A Survey

PPaaS: Privacy Preservation as a Service

Zecale: Reconciling Privacy and Scalability on Ethereum

HySec-Flow: Privacy-Preserving Genomic Computing with SGX-based Big-Data Analytics Framework

1 Introduction

2 Literature Review

3 Proposed Algorithm: PABIDOT

Rationale and technical novelty

Data matrix (D)

Multidimensional isometric transformations

Homogeneous data matrix

n-Dimensional translation matrix

n-Dimensional reflection matrix

n-Dimensional rotation matrix

Algorithm for generating the multidimensional concatenated sub-plane rotation matrix

Privacy metric for generating the optimal perturbation parameters

Definition 3.0 ( $Φ - s e p a r a t i o n$ ).

Identifying the best perturbation parameters for $D^{n}$

Generate the rotation matrix and reflection matrix using the best perturbation parameters for $D^{n}$

Application of z-score normalization and the transformations: reflection, translation and rotation

Randomized Expansion

Application of reverse z-score normalization and random tuple swapping

3.1 Overall process of PABIDOT

4 Optimizing the efficiency of PABIDOT

Poof:.

Efficient privacy preservation of big data for accurate data mining

Authors

Related Research

An Efficient and Scalable Privacy Preserving Algorithm for Big Data and Data Streams

Privacy Preserving Distributed Machine Learning with Federated Learning

Clustering based Privacy Preserving of Big Data using Fuzzification and Anonymization Operation

Privacy Preserving Utility Mining: A Survey

PPaaS: Privacy Preservation as a Service

Zecale: Reconciling Privacy and Scalability on Ethereum

HySec-Flow: Privacy-Preserving Genomic Computing with SGX-based Big-Data Analytics Framework

This week in AI

1 Introduction

2 Literature Review

3 Proposed Algorithm: PABIDOT

Rationale and technical novelty

Data matrix (D)

Multidimensional isometric transformations

Homogeneous data matrix

n-Dimensional translation matrix

n-Dimensional reflection matrix

n-Dimensional rotation matrix

Algorithm for generating the multidimensional concatenated sub-plane rotation matrix

Privacy metric for generating the optimal perturbation parameters

Definition 3.0 (Φ−separation).

Identifying the best perturbation parameters for Dn

Generate the rotation matrix and reflection matrix using the best perturbation parameters for Dn

Application of z-score normalization and the transformations: reflection, translation and rotation

Randomized Expansion

Application of reverse z-score normalization and random tuple swapping

3.1 Overall process of PABIDOT

4 Optimizing the efficiency of PABIDOT

Poof:.

Definition 3.0 ( $Φ - s e p a r a t i o n$ ).

Identifying the best perturbation parameters for $D^{n}$

Generate the rotation matrix and reflection matrix using the best perturbation parameters for $D^{n}$