Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSCI 347, Data Mining Data Anonymization.

Published bySilvia Jennings Modified over 9 years ago

Similar presentations

Presentation on theme: "CSCI 347, Data Mining Data Anonymization."— Presentation transcript:

1 CSCI 347, Data Mining Data Anonymization

2 Importance of Data Anonymization
Current trends are making data anonymization more and more important. Examples: Amount of data being collected Proliferation of devices implementing global positioning system capabilities Proliferation of client-aware applications New and better data mining techniques Cloud computing

3 Reidentification 1990 census data, study showed 87% of people in the US can be identified by the combination of zip code, birthday and gender 2000 census data found number was only 61% Still reidentification is surprisingly easy

4 Example Anonymizing Data
Source:

5 Techniques for Data Anonymization
Encryption K-anonymization / l-diversity Generalization Perturbation

6 Data Anonymization Data anonymization - making personal data so that reidentification is impossible Specifically want to be able to process the data in a useful way, while preventing that data from being linked to individual identities of people, objects or organizations

7 Encryption Encryption– transforming data to make it unreadable to those who don’t have the key to decrypt it

8 Data Anonymization versus Encryption
Data anonymization - making personal data so that reidentification is impossible Encryption– transforming data to make it unreadable to those who don’t have the key to decrypt it Data can be successfully anonymized without encryption and encrypted data is not necessarily anonymized

9 Encryption Encryption is sufficient for analysis done internally that won’t be published or shared with affiliate companies

10 K-anonymity K-anonymity– make each record indistinguishable from a defined number (k) of other records. A set of data is k-anonymized if, for any data record with a given set of attributes, there are at least k-1 other records that match those attributes

11 K-anonymity Data Properties
k-anonymity assign properties to data attributes and requires that they be handled in specific ways Key attributes, such as name, social security numbers, student ids, are key data and they need to be removed  Quasi-identified attributes, such as zip code, birthday and gender, need to be suppressed or generalized  Sensitive attributes, such as income and type of illness, need to be de-linked from the individual

12 Example of 2-anonymity

13 Example of Attacks Examples for the above data:
If an attacker knows that Bob has an entry in the data and that Bob is in his 30s, the attacker will know that Bob has cancer If an attacker knows that a 21-year-old Yoko has an entry in the data and that as a young woman she is unlikely to have heart disease, the attacker then knows Yuko has a viral infection.

14 L-diversity l-diversity improves anonymization beyond what k-anonymity provides. K-anonymization requires each combination of quasi-identifiers to have k entries. L-diversity requires that there are l different sensitive values for each combination of quasi-identifiers.

15 Example: 2-diversity, 4-anonymity

16 Generalization Generalization – categorized the values, publishing the categories, rather than the specific values. This can help achieve k-anonymity

17 Perturbation Perturbation – change the data
Several techniques are available: Adding fictitious records Shifting data values Macroaggregation

18 Macroaggregation Example
Sort the data Break data into categories Given the income data: 57000 56367 38479 36294 31029 29993 Group it into three groups of two, and publish average of the groups 30511

19 Macroaggregation Example
No individual income is available but you have not skewed the numbers in a way that would make analysis and prediction difficult

Download ppt "CSCI 347, Data Mining Data Anonymization."

Similar presentations

Hash Functions A hash function takes data of arbitrary size and returns a value in a fixed range. If you compute the hash of the same data at different.

Hash Functions A hash function takes data of arbitrary size and returns a value in a fixed range. If you compute the hash of the same data at different.
21-1 Last time Database Security  Data Inference  Statistical Inference  Controls against Inference Multilevel Security Databases  Separation  Integrity.

21-1 Last time Database Security  Data Inference  Statistical Inference  Controls against Inference Multilevel Security Databases  Separation  Integrity.
Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.

Modelling and Analysing of Security Protocol: Lecture 10 Anonymity: Systems.
Cryptology  Terminology  plaintext - text that is not encrypted.  ciphertext - the output of the encryption process.  key - the information required.

Cryptology  Terminology  plaintext - text that is not encrypted.  ciphertext - the output of the encryption process.  key - the information required.
1 Privacy in Microdata Release Prof. Ravi Sandhu Executive Director and Endowed Chair March 22, 2013 © Ravi Sandhu.

1 Privacy in Microdata Release Prof. Ravi Sandhu Executive Director and Endowed Chair March 22, © Ravi Sandhu.
PRIVACY AND SECURITY ISSUES IN DATA MINING P.h.D. Candidate: Anna Monreale Supervisors Prof. Dino Pedreschi Dott.ssa Fosca Giannotti University of Pisa.

PRIVACY AND SECURITY ISSUES IN DATA MINING P.h.D. Candidate: Anna Monreale Supervisors Prof. Dino Pedreschi Dott.ssa Fosca Giannotti University of Pisa.
1 Privacy Preserving Data Publishing Prof. Ravi Sandhu Executive Director and Endowed Chair March 29, 2013 © Ravi.

1 Privacy Preserving Data Publishing Prof. Ravi Sandhu Executive Director and Endowed Chair March 29, © Ravi.
UTEPComputer Science Dept.1 University of Texas at El Paso Privacy in Statistical Databases Dr. Luc Longpré Computer Science Department Spring 2006.

UTEPComputer Science Dept.1 University of Texas at El Paso Privacy in Statistical Databases Dr. Luc Longpré Computer Science Department Spring 2006.
Privacy Preserving Publication of Moving Object Data Joey Lei CS295 Francesco Bonchi Yahoo! Research Avinguda Diagonal 177, Barcelona, Spain 6/10/20151CS295.

Privacy Preserving Publication of Moving Object Data Joey Lei CS295 Francesco Bonchi Yahoo! Research Avinguda Diagonal 177, Barcelona, Spain 6/10/20151CS295.
Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.

Security A system is secure if its resources are used and accessed as intended under all circumstances. It is not generally possible to achieve total security.
1 Dr. Xiao Qin Auburn University Spring, 2011 COMP 7370 Advanced Computer and Network Security Generalizing.

1 Dr. Xiao Qin Auburn University Spring, 2011 COMP 7370 Advanced Computer and Network Security Generalizing.
1 Dr. Xiao Qin Auburn University Spring, 2011 COMP 7370 Advanced Computer and Network Security Generalizing.

1 Dr. Xiao Qin Auburn University Spring, 2011 COMP 7370 Advanced Computer and Network Security Generalizing.
Finding Personally Identifying Information Mark Shaneck CSCI 5707 May 6, 2004.

Finding Personally Identifying Information Mark Shaneck CSCI 5707 May 6, 2004.
Dilys Thomas PODS 20061 Achieving Anonymity via Clustering G. Aggarwal, T. Feder, K. Kenthapadi, S. Khuller, R. Panigrahy, D. Thomas, A. Zhu.

Dilys Thomas PODS Achieving Anonymity via Clustering G. Aggarwal, T. Feder, K. Kenthapadi, S. Khuller, R. Panigrahy, D. Thomas, A. Zhu.
C MU U sable P rivacy and S ecurity Laboratory 1 Privacy Policy, Law and Technology Data Privacy October 30, 2008.

C MU U sable P rivacy and S ecurity Laboratory 1 Privacy Policy, Law and Technology Data Privacy October 30, 2008.
Anatomy: Simple and Effective Privacy Preservation Israel Chernyak DB Seminar (winter 2009)

Anatomy: Simple and Effective Privacy Preservation Israel Chernyak DB Seminar (winter 2009)
Suppose I learn that Garth has 3 friends. Then I know he must be one of {v 1,v 2,v 3 } in Figure 1 above. If I also learn the degrees of his neighbors,

Suppose I learn that Garth has 3 friends. Then I know he must be one of {v 1,v 2,v 3 } in Figure 1 above. If I also learn the degrees of his neighbors,
Attacks against K-anonymity

Attacks against K-anonymity
Privacy Policy, Law and Technology Carnegie Mellon University Fall 2007 Lorrie Cranor 1 Data Privacy.

Privacy Policy, Law and Technology Carnegie Mellon University Fall 2007 Lorrie Cranor 1 Data Privacy.
April 13, 2010 Towards Publishing Recommendation Data With Predictive Anonymization Chih-Cheng Chang †, Brian Thompson †, Hui Wang ‡, Danfeng Yao † †‡

April 13, 2010 Towards Publishing Recommendation Data With Predictive Anonymization Chih-Cheng Chang †, Brian Thompson †, Hui Wang ‡, Danfeng Yao † †‡

Similar presentations

Ads by Google