Daisuke Mashima and Arnab Roy Fujitsu Laboratories of America, Inc. Privacy Preserving Disclosure of Authenticated Energy Usage Data.

Slides:

Advertisements

Similar presentations

I have a DREAM! (DiffeRentially privatE smArt Metering) Gergely Acs and Claude Castelluccia {gergely.acs, INRIA 2011.

Advertisements

Enhancing Demand Response Signal Verification in Automated Demand Response Systems Daisuke Mashima, Ulrich Herberg, and Wei-Peng Chen SEDN (Solutions for.

Ulrich Herberg(*), Daisuke Mashima, Jorjeta G. Jetcheva, and Sanam Mirzazad-Barijough Fujitsu Laboratories of America, Inc. (* Currently with Panasonic)

1 Programa de Engenharia Elétrica - PEE/COPPE/UFRJ Universidade Federal do Rio de Janeiro A Review of Anomalies Detection Schemes for Smart Grids Andrés.

Location Privacy Preservation in Collaborative Spectrum Sensing Shuai Li, Haojin Zhu, Zhaoyu Gao, Xinping Guan, Shanghai Jiao Tong University Kai Xing.

Home Area Networks …Expect More Mohan Wanchoo Jasmine Systems, Inc.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.

Presenter: Nguyen Ba Anh HCMC University of Technology Information System Security Course.

Claudia Diaz, Hannelore Dekeyser, Markulf Kohlweiss, Girma Nigusse K.U.Leuven IDIS Workshop 29/05/2008 [Work done in the context of the ADAPID project]

Smart Grid, Data and Behaviour – Privacy and Security Issues - Potential for Secure Computation Lexpert Seminar December 9, 2013David Young, Partner.

Lect. 18: Cryptographic Protocols. 2 1.Cryptographic Protocols 2.Special Signatures 3.Secret Sharing and Threshold Cryptography 4.Zero-knowledge Proofs.

Gaurav Lahoti University of Illinois at Urbana-Champaign, IL, USA Daisuke Mashima Wei-Peng Chen Fujitsu Laboratories of America Inc., USA Customer-centric.

A Practical Smart Metering System Supporting Privacy Preserving Billing and Load Monitoring Hsiao-Ying Lin National Chiao Tung University Joint work with.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 790: Computer Network Security Chin-Tser Huang University of South Carolina.

CMSC 414 Computer (and Network) Security Lecture 2 Jonathan Katz.

Security Issues In Sensor Networks By Priya Palanivelu.

Dept. of Computer Science & Engineering, CUHK1 Trust- and Clustering-Based Authentication Services in Mobile Ad Hoc Networks Edith Ngai and Michael R.

Using Digital Credentials On The World-Wide Web M. Winslett.

Privacy-Preserving Cross-Domain Network Reachability Quantification

SPINS: Security Protocols for Sensor Networks Adrian Perrig, Robert Szewczyk, Victor Wen, David Culler, J.D. Tygar Research Topics in Security in the context.

Applied Cryptography for Network Security

K.U.Leuven George Danezis 1 and Alfredo Rial 1,2 Privacy-Preserving Smart Metering 1 Microsoft Research Cambridge 2 KULeuven ESAT/SCD/COSIC – IBBT, Belgium.

Elias M. Awad Third Edition ELECTRONIC COMMERCE From Vision to Fulfillment 13-1© 2007 Prentice-Hall, Inc ELC 200 Day 23.

Fall 2010/Lecture 311 CS 426 (Fall 2010) Public Key Encryption and Digital Signatures.

Cryptography and Network Security Third Edition by William Stallings Lecture slides by Lawrie Brown.

A Survey of Home Energy Management Systems in Future Smart Grid Communications By Muhammad Ishfaq Khan.

Advanced Metering Infrastructure

13.1 Copyright © The McGraw-Hill Companies, Inc. Permission required for reproduction or display. Chapter 13 Digital Signature.

Chapter 13 Digital Signature

D ATABASE S ECURITY Proposed by Abdulrahman Aldekhelallah University of Scranton – CS521 Spring2015.

Cong Wang1, Qian Wang1, Kui Ren1 and Wenjing Lou2

Construction of efficient PDP scheme for Distributed Cloud Storage. By Manognya Reddy Kondam.

Instituto de Investigaciones Eléctricas

Masud Hasan Secue VS Hushmail Project 2.

Smart Grid Security Challenges Ahmad Alqasim 1. Agenda Problem Statement Power system vs. smart grid Background Information Focus Point Privacy Attack.

DATA DYNAMICS AND PUBLIC VERIFIABILITY CHECKING WITHOUT THIRD PARTY AUDITOR GUIDED BY PROJECT MEMBERS: Ms. V.JAYANTHI M.E Assistant Professor V.KARTHIKEYAN.

Network Security Lecture 26 Presented by: Dr. Munam Ali Shah.

Smart Metering and the Smart Grid How does it work and what can it do? Will Chaney 1Energy Awareness Week, 3-8 May 2010.

Cryptography, Authentication and Digital Signatures

E-Commerce Security Professor: Morteza Anvari Student: Xiaoli Li Student ID: March 10, 2001.

©The McGraw-Hill Companies, Inc., 2000© Adapted for use at JMU by Mohamed Aboutabl, 2003Mohamed Aboutabl1 1 Chapter 29 Internet Security.

Interdomain Routing Security. How Secure are BGP Security Protocols? Some strange assumptions? – Focused on attracting traffic from as many Ases as possible.

Supporting further and higher education The Akenti Authorisation System Alan Robiette, JISC Development Group.

DIGITAL SIGNATURE. GOOD OLD DAYS VS. NOW GOOD OLD DAYS FILE WHATEVER YOU WANT – PUT ‘NA’ OR ‘-’ OR SCRATCH OUT FILE BACK DATED, FILE BLANK FORMS, FILE.

P2: Privacy-Preserving Communication and Precise Reward Architecture for V2G Networks in Smart Grid P2: Privacy-Preserving Communication and Precise Reward.

Lecture 2: Introduction to Cryptography

Decentralized authorization and data security in web content delivery * Danfeng Yao (Brown University, USA) Yunhua Koglin (Purdue University, USA) Elisa.

IEEE MEDIA INDEPENDENT HANDOVER DCN: REVP-Proposal-on-the-security-of Title: Proposal on the security of Date Submitted:

Privacy Issues in Smart Grid R. Newman. Topics Defining anonymity Need for anonymity Defining privacy Threats to anonymity and privacy Mechanisms to provide.

Jonathan Katz University of Maryland Andrew Lindell Aladdin Knowledge Systems and Bar-Ilan University 04/08/08 CRYP-108 Aggregate Message- Authentication.

Cryptography and Network Security Chapter 1. Background  Information Security requirements have changed in recent times  traditionally provided by physical.

Introduction to Network Systems Security Mort Anvari.

Keyword search on encrypted data. Keyword search problem  Linux utility: grep  Information retrieval Basic operation Advanced operations – relevance.

9.2 SECURE CHANNELS JEJI RAMCHAND VEDULLAPALLI. Content Introduction Authentication Message Integrity and Confidentiality Secure Group Communications.

Energy Efficient Data Management in Sensor Networks Sanjay K Madria Web and Wireless Computing Lab (W2C) Department of Computer Science, Missouri University.

6.033 Quiz3 Review Spring How can we achieve security? Authenticate agent’s identity Verify the integrity of the request Check the agent’s authorization.

SECURITY. Security Threats, Policies, and Mechanisms There are four types of security threats to consider 1. Interception 2 Interruption 3. Modification.

Content Introduction History What is Digital Signature Why Digital Signature Basic Requirements How the Technology Works Approaches.

1 Network Security Maaz bin ahmad.. 2 Outline Attacks, services and mechanisms Security attacks Security services Security Mechanisms A model for Internetwork.

Myongji University HMCL

Daisuke Mashima Fujitsu Laboratories of America, Inc. Sunnyvale, CA Copyright 2015 Fujitsu Laboratories of America Authenticated Down-sampling for Privacy-preserving.

CMSC 414 Computer and Network Security Lecture 2 Jonathan Katz.

Customer-centric Energy Usage Data Management for Balancing Tradeoff of Benefit and Privacy Daisuke Mashima, Ph.D. Fujitsu Laboratories of America (Sunnyvale,

 Introduction  History  What is Digital Signature  Why Digital Signature  Basic Requirements  How the Technology Works  Approaches.

Presented by Edith Ngai MPhil Term 3 Presentation

Overview on Hardware Security

© 2016 Global Market Insights, Inc. USA. All Rights Reserved Smart Grid Market to reach $70bn by 2024: Global Market Insights Inc.

Smart Meter Data Privacy: A Survey

Outline A. Perrig, R. Szewczyk, V. Wen, D. Culler, and J. D. Tygar. SPINS: Security protocols for sensor networks. In Proceedings of MOBICOM, 2001 Sensor.

Presentation transcript:

Daisuke Mashima and Arnab Roy Fujitsu Laboratories of America, Inc. Privacy Preserving Disclosure of Authenticated Energy Usage Data

Background Utilization and sharing of fine-grained energy usage data by third-party service providers have been increasing. E.g., Green Button Visualization, analytics, advise for energy efficiency, gaming for fun, etc. Copyright 2014 Fujitsu Laboratories of America 1

Motivation Energy usage data collected at unprecedented granularity would cause privacy risks (e.g., Non-intrusive Load Monitoring) Life style of residential customers Appliances used in each household 2All Right Reserved, Copyright FUJITSU LABORATORIES LTD Source: Sleeping? Not at home?

Motivation (Related Work) While privacy preservation in collection of smart meter data has been explored, privacy issues in sharing of energy usage data between customers and third-parties are not enough explored. A. Rial and G. Danezis, “Privacy-preserving smart metering” (ACM WPES 2011) E. Shi, T.-H. H. Chan, E. G. Rieffel, R. Chow, and D. Song, “Privacy- preserving aggregation of time-series data.” (NDSS 2011) A. Molina-Markham, G. Danezis, K. Fu, P. J. Shenoy, and D. E. Irwin, “Designing privacy-preserving smart meters with low-cost microcontrollers.” (FC 2012) and more (including other papers presented in this session) Our work is orthogonal to these and aims at privacy control when sharing the collected energy usage data. 3All Right Reserved, Copyright FUJITSU LABORATORIES LTD. 2013

Customer-centric Data Management “Customer-centric Energy Usage Data Management and Sharing in Smart Grid Systems” (ACM SEGS 2013) Customer’s electricity data is collected by utility, then is downloaded by Customer. Downloaded data is stored on “Repository”, which managed under Customer’s control. Upon sharing with Service provider, data can be “pre-processed” for privacy, without losing data authenticity E.g., Redactable Signatures 4 Customer Repository Smart Meter Signed energy usage data Signed & pre-processed Energy usage data Service Provider (Data Consumer) Privacy Control Customer (Data Subject) Utility (Data Issuer) Copyright 2014 Fujitsu Laboratories of America 4

Customer-centric Data Management Limitations Pre-processing using Redactable Signatures can hide arbitrary portion of data, without invalidating digital signature, and thereby customers can limit privacy risks. At the same time, it could lower the capability of data analytics E.g., disconnected series of data would prohibit application of some popular machine learning techniques, such as ARIMA While minimized, disclosed portion may still leak some privacy sensitive information, e.g., by means of NILM Copyright 2014 Fujitsu Laboratories of America 5

High-level Idea of Proposed Mechanism By adding artificial, controlled noises, allow customers to hide details in consumption patterns to enhance privacy Customers can add arbitrary amount of nose based on the service agreement with service providers, privacy preference, and level of trust on service providers At the same time, loose authenticity of noisy data should be verifiable by data consumers Original, read energy consumption data was issued by a trustworthy entity (e.g., utility) Added noise is bounded to the amount claimed by each customer Copyright 2014 Fujitsu Laboratories of America 6

High-level Idea of Proposed Mechanism E.g., add noise up to 10% of individual values Can hide fluctuation and exact height of peaks in high-usage periods. Effective to counter NILM attacks, re-identification attacks etc. Copyright 2014 Fujitsu Laboratories of America 7

Primitives for Construction Digital signatures (Integrity and authenticity) Public-key encryption (Confidentiality) Non-interactive Zero-knowledge Proofs Language for NIZK Proof System: m is a energy consumption value(s) Sig is utility’s digital signature on it Added noise is bounded by ε e is ciphertext of a pair of m and sig encrypted with customer’s public key Copyright 2014 Fujitsu Laboratories of America 8

Security Properties Correctness of the protocol: If the data consumer (third party) accepts the proof and m′, then the deviation of m′ is bounded from data signed by the data issuer (utility). By the soundness of the NIZK proof system for L, we have: there exists (m, sig), such that m′ is within a noise bound of m and sig passes the verification test with the data issuer’s verification key for the message m and that e is an encryption of such a message-signature pair. Hiding of original data: The data consumer (third party) learns nothing beyond correctness about the real m. By the zero-knowledge property of NIZK proof system and IND- CPA property of public key encryption scheme, we can show that the distribution of the message sent by customer to third party is computationally indistinguishable from a distribution which doesn’t use m at all. Copyright 2014 Fujitsu Laboratories of America 9

Protocol Definition Utility (Data Issuer)Customer (Data Subject) Third Party (Data Consumer) Utility signs energy usage data to be downloaded Customer can verify signature on downloaded data. When sharing is necessary, customer can generate noisy data and prepare NIZK proof. Third Party verifies the NIZK proof. When successful, data can be used for later processing Copyright 2014 Fujitsu Laboratories of America 10

Conclusions Designed a privacy-preservation scheme for sharing of energy usage data, using Non-interactive Zero-knowledge Proof system. Mitigate privacy risks by added noise Allow the pre-processed data to be for services that require trustworthy data Allow broader range of machine learning techniques to be applied Future Work Practical implementation of the proposed scheme and evaluate its overhead and effectiveness is needed. Implementation on the popular data sharing scheme like Green Button Quantitative evaluation of how much NILM can be made difficult Explore an optimal way to add noise for privacy goals Combination with other privacy-preserving schemes, e.g., Redactable Signatures, to further enhance the privacy control Copyright 2014 Fujitsu Laboratories of America 11

Copyright 2010 FUJITSU LIMITED