Presentation is loading. Please wait.

Presentation is loading. Please wait.

Strategic Modeling of Information Sharing among Data Privacy Attackers Quang Duong, Kristen LeFevre, and Michael Wellman University of Michigan Presented.

Published byBrent Dean Modified over 9 years ago

Similar presentations

Presentation on theme: "Strategic Modeling of Information Sharing among Data Privacy Attackers Quang Duong, Kristen LeFevre, and Michael Wellman University of Michigan Presented."— Presentation transcript:

1 Strategic Modeling of Information Sharing among Data Privacy Attackers Quang Duong, Kristen LeFevre, and Michael Wellman University of Michigan Presented by: Quang Duong

2 Privacy-Sensitive Data Publication NameAgeZipcodeDisease Alex2013456AIDS Bob2513457cancer Carol3212345flu AgeZipcodeDisease Under 301345*AIDS Under 301345*cancer 30 or above1234*flu AgeZipcodeDisease 2013456AIDS 2513457cancer 3212345flu Target’s sensitive value Attackers’ background knowledge is relevant to data publication de-identification generalization

3 How Much Generalization? Competing effects: More generalization makes published data more resistant to privacy attackers More generalization degrades information quality of published data  Need to model attackers’ background knowledge

4 Model of Privacy Attackers Main difference: network of attackers who share background knowledge Main contribution: a framework for constructing models that: capture information sharing activities among attackers estimate attackers’ background knowledge

5 Privacy Attacker Model’s Stages 1. ACQUIRE information separately 2. DECIDE how much and what to SHARE 3.ATTACK with their augmented knowledge

6 Decision: How much and what information to share Tradeoff (of sharing background knowledge): Increase attack capability Decrease compromised data’s exclusiveness Utility: (number of successful attackers) -2 if capable of compromising the dataset 0 otherwise Data Privacy Attacker Model

7 Database Publisher Model Decision: How much generalization should be applied to the published data Tradeoff (of generalizing data): Reduce privacy breach risk Induce more information loss Utility: (Linear) combination of privacy breach risk and information loss

8 Two-Stage Game Model Publisher decides how to generalize the data set Attacker n 1 st 2 nd  We can reason about the attackers’ actions and background knowledge, using different solution concepts such as Nash equilibrium Attacker 2 Attacker 1 … Choose how much and what to share

9 Model Details: Background Knowledge 3 categories of background knowledge: [Chen et al. ‘07] 1.(L) values that the target doesn’t have: Alex does not have cancer 2.(K) sensitive info about individuals different from the target Carol has flu 3.(M) relations between the target’s sensitive value and others’ If Carol has AIDS, Alex has AIDS

10 Model Details: Attackers 1.Agent space: n attackers, each is represented by its prior knowledge set: (K,L,M) 2.Action space: Each attacker decides how many and what instances to share (a k,a l,a m ) 1.Sharing mechanism: Pair-wise: direct exchange between every pair of attackers Reciprocal: exchange the same amount of information

11 Example Alex: no cancer Carol: flu Bob: cance r Carol: flu Bob: cance r

12 Normal-form Game Model Publisher chooses anonymization method Attackers choose how much and what information to share AFTER observing the anonymized data set Attackers choose how much and what information to share AFTER observing the anonymized data set Incomplete Information Game: KLMKLM akalamakalam Normal-form Game: KLMKLM akalamakalam Monte Carlo Sampling

13 Model Construction Overview Reason about attackers’ knowledge Evaluate anonymization choices

14 Example Model – Empirical Study Overview: Data: 10 records, |domain of sensitive values| = 5 Attackers: 3, each has 1 instance of each knowledge type Publisher: explicitly specifies her generalization method  Construct and estimate the game’s payoff matrix Testing scenarios: 1Attackers share all their knowledge 2No one shares 3Attackers play some Nash Equilibrium (NE)

15 Outcomes under Different Attacker Action Scenarios Publisher’s actions (I, II, III…): each has 3 data points corresponding to 3 attacker action scenarios. Each point corresponds to the publisher and attackers’ actions Main result: the publisher may adopt different generalization strategies under different beliefs about attackers’ strategies

16 Concluding Remarks Contributions: Propose a framework for reasoning about attackers’ actions Initiate a game-theoretic study of privacy attackers as a knowledge-sharing network Demonstrate that it matters to take into account attackers’ knowledge and their information-sharing activities

17 Future Work Compact representations of prior knowledge [Chen et al ‘07] Incorporate more behavioral observations in reasoning about attackers’ behavior Non-game theoretic models (such as GMM [Duong et al ‘08])

18 THANK YOU!

Download ppt "Strategic Modeling of Information Sharing among Data Privacy Attackers Quang Duong, Kristen LeFevre, and Michael Wellman University of Michigan Presented."

Similar presentations

1 ISLE Transfer Learning Team Main Technology Components The I CARUS Architecture Markov Logic Networks Executes skills in the environment Long-TermConceptualMemoryShort-TermConceptualMemory.

1 ISLE Transfer Learning Team Main Technology Components The I CARUS Architecture Markov Logic Networks Executes skills in the environment Long-TermConceptualMemoryShort-TermConceptualMemory.
F. Amigoni, N. Basilico, N. Gatti DEI, Politecnico di Milano Finding the Optimal Strategies in Robotic Patrolling with Adversaries in Topologically-Represented.

F. Amigoni, N. Basilico, N. Gatti DEI, Politecnico di Milano Finding the Optimal Strategies in Robotic Patrolling with Adversaries in Topologically-Represented.
Market Institutions: Oligopoly

Market Institutions: Oligopoly
M9302 Mathematical Models in Economics Instructor: Georgi Burlakov 3.1.Dynamic Games of Complete but Imperfect Information Lecture 326.03.2010.

M9302 Mathematical Models in Economics Instructor: Georgi Burlakov 3.1.Dynamic Games of Complete but Imperfect Information Lecture
1 Game Theory. 2 Definitions Game theory -- formal way to analyze interactions among a group of rational agents behaving strategically Agents – players.

1 Game Theory. 2 Definitions Game theory -- formal way to analyze interactions among a group of rational agents behaving strategically Agents – players.
3. Basic Topics in Game Theory. Strategic Behavior in Business and Econ Outline 3.1 What is a Game ? 3.1.1 The elements of a Game 3.1.2 The Rules of the.

3. Basic Topics in Game Theory. Strategic Behavior in Business and Econ Outline 3.1 What is a Game ? The elements of a Game The Rules of the.
© 2009 Institute of Information Management National Chiao Tung University Game theory The study of multiperson decisions Four types of games Static games.

© 2009 Institute of Information Management National Chiao Tung University Game theory The study of multiperson decisions Four types of games Static games.
Game Theoretical Insights in Strategic Patrolling: Model and Analysis Nicola Gatti – DEI, Politecnico di Milano, Piazza Leonardo.

Game Theoretical Insights in Strategic Patrolling: Model and Analysis Nicola Gatti – DEI, Politecnico di Milano, Piazza Leonardo.
Managerial Economics Game Theory for Oligopoly

Managerial Economics Game Theory for Oligopoly
Game Theory and Computer Networks: a useful combination? Christos Samaras, COMNET Group, DUTH.

Game Theory and Computer Networks: a useful combination? Christos Samaras, COMNET Group, DUTH.
Game Theory: Inside Oligopoly

Game Theory: Inside Oligopoly
Benjamin Johnson Carnegie Mellon University Are Security Experts Useful? Bayesian Nash Equilibria for Network Security Games with Limited Information TRUST.

Benjamin Johnson Carnegie Mellon University Are Security Experts Useful? Bayesian Nash Equilibria for Network Security Games with Limited Information TRUST.
M9302 Mathematical Models in Economics Instructor: Georgi Burlakov 3.1.Dynamic Games of Complete but Imperfect Information Lecture 324.03.2011.

M9302 Mathematical Models in Economics Instructor: Georgi Burlakov 3.1.Dynamic Games of Complete but Imperfect Information Lecture
Using Game Theoretic Approach to Analyze Security Issues In Ad Hoc Networks Term Presentation Name: Li Xiaoqi, Gigi Supervisor: Michael R. Lyu Department:

Using Game Theoretic Approach to Analyze Security Issues In Ad Hoc Networks Term Presentation Name: Li Xiaoqi, Gigi Supervisor: Michael R. Lyu Department:
An Introduction to Game Theory Part I: Strategic Games

An Introduction to Game Theory Part I: Strategic Games
Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.

Sogang University ICC Lab Using Game Theory to Analyze Wireless Ad Hoc networks.
Satisfaction Equilibrium Stéphane Ross. Canadian AI 20062 / 21 Problem In real life multiagent systems :  Agents generally do not know the preferences.

Satisfaction Equilibrium Stéphane Ross. Canadian AI / 21 Problem In real life multiagent systems :  Agents generally do not know the preferences.
Sep. 5, 2013 Lirong Xia Introduction to Game Theory.

Sep. 5, 2013 Lirong Xia Introduction to Game Theory.
Slide 1 of 13 So... What’s Game Theory? Game theory refers to a branch of applied math that deals with the strategic interactions between various ‘agents’,

Slide 1 of 13 So... What’s Game Theory? Game theory refers to a branch of applied math that deals with the strategic interactions between various ‘agents’,
Fast Data Anonymization with Low Information Loss 1 National University of Singapore 2 Hong Kong University

Fast Data Anonymization with Low Information Loss 1 National University of Singapore 2 Hong Kong University

Similar presentations

Ads by Google