Statistical anonymity: Quantifying reidentification risks without reidentifying users

01/28/2022
by   Gecia Bravo Hermsdorff, et al.
0

Data anonymization is an approach to privacy-preserving data release aimed at preventing participants reidentification, and it is an important alternative to differential privacy in applications that cannot tolerate noisy data. Existing algorithms for enforcing k-anonymity in the released data assume that the curator performing the anonymization has complete access to the original data. Reasons for limiting this access range from undesirability to complete infeasibility. This paper explores ideas – objectives, metrics, protocols, and extensions – for reducing the trust that must be placed in the curator, while still maintaining a statistical notion of k-anonymity. We suggest trust (amount of information provided to the curator) and privacy (anonymity of the participants) as the primary objectives of such a framework. We describe a class of protocols aimed at achieving these goals, proposing new metrics of privacy in the process, and proving related bounds. We conclude by discussing a natural extension of this work that completely removes the need for a central curator.

READ FULL TEXT

page 1

page 2

page 3

page 4

research
07/25/2021

Differential Privacy in the Shuffle Model: A Survey of Separations

Differential privacy is often studied in one of two models. In the centr...
research
09/29/2020

DUMP: A Dummy-Point-Based Framework for Histogram Estimation in Shuffle Model

In Central Differential Privacy (CDP), there is a trusted analyst who co...
research
02/19/2019

Who started this rumor? Quantifying the natural differential privacy guarantees of gossip protocols

Gossip protocols, also called rumor spreading or epidemic protocols, are...
research
09/12/2018

Privacy-preserving mHealth Data Release with Pattern Consistency

Mobile healthcare system integrating wearable sensing and wireless commu...
research
08/18/2022

Verifiable Differential Privacy For When The Curious Become Dishonest

Many applications seek to produce differentially private statistics on s...
research
05/17/2023

Minimax rate for multivariate data under componentwise local differential privacy constraints

Our research delves into the balance between maintaining privacy and pre...
research
11/17/2020

SoK on Performance Bounds in Anonymous Communication

Communicating anonymously comes at a cost - and large communities have b...

Please sign up or login with your details

Forgot password? Click here to reset