De-anonymization attack on geolocated data

Sébastien Gambs; Marc Olivier Killijian; Miguel Núñez Del Prado Cortez

doi:10.1016/j.jcss.2014.04.024

De-anonymization attack on geolocated data

Sébastien Gambs
, Marc Olivier Killijian
, Miguel Núñez Del Prado Cortez

Producción científica: Contribución a una revista › Artículo de revista › revisión exhaustiva

141 Citas (Scopus)

Resumen

With the advent of GPS-equipped devices, a massive amount of location data is being collected, raising the issue of the privacy risks incurred by the individuals whose movements are recorded. In this work, we focus on a specific inference attack called the de-anonymization attack, by which an adversary tries to infer the identity of a particular individual behind a set of mobility traces. More specifically, we propose an implementation of this attack based on a mobility model called Mobility Markov Chain (MMC). An MMC is built out from the mobility traces observed during the training phase and is used to perform the attack during the testing phase. We design several distance metrics quantifying the closeness between two MMCs and combine these distances to build de-anonymizers that can re-identify users. Experiments conducted on real datasets demonstrate that the attack is both accurate and resilient to sanitization mechanisms.

Idioma original	Inglés
Páginas (desde-hasta)	1597-1614
Número de páginas	18
Publicación	Journal of Computer and System Sciences
Volumen	80
N.º	8
DOI	https://doi.org/10.1016/j.jcss.2014.04.024
Estado	Publicada - dic. 2014
Publicado de forma externa	Sí

Palabras clave

De-anonymization
Geolocation
Inference attack
Privacy

Acceder al documento

10.1016/j.jcss.2014.04.024

Otros archivos y enlaces

Citar esto

@article{a5dca84941ab460d87cf191149ba7652,

title = "De-anonymization attack on geolocated data",

abstract = "With the advent of GPS-equipped devices, a massive amount of location data is being collected, raising the issue of the privacy risks incurred by the individuals whose movements are recorded. In this work, we focus on a specific inference attack called the de-anonymization attack, by which an adversary tries to infer the identity of a particular individual behind a set of mobility traces. More specifically, we propose an implementation of this attack based on a mobility model called Mobility Markov Chain (MMC). An MMC is built out from the mobility traces observed during the training phase and is used to perform the attack during the testing phase. We design several distance metrics quantifying the closeness between two MMCs and combine these distances to build de-anonymizers that can re-identify users. Experiments conducted on real datasets demonstrate that the attack is both accurate and resilient to sanitization mechanisms.",

keywords = "De-anonymization, Geolocation, Inference attack, Privacy, De-anonymization, Geolocation, Inference attack, Privacy",

author = "S{\'e}bastien Gambs and Killijian, \{Marc Olivier\} and \{N{\'u}{\~n}ez Del Prado Cortez\}, Miguel",

year = "2014",

month = dec,

doi = "10.1016/j.jcss.2014.04.024",

language = "English",

volume = "80",

pages = "1597--1614",

number = "8",

}

TY - JOUR

T1 - De-anonymization attack on geolocated data

AU - Gambs, Sébastien

AU - Killijian, Marc Olivier

AU - Núñez Del Prado Cortez, Miguel

PY - 2014/12

Y1 - 2014/12

N2 - With the advent of GPS-equipped devices, a massive amount of location data is being collected, raising the issue of the privacy risks incurred by the individuals whose movements are recorded. In this work, we focus on a specific inference attack called the de-anonymization attack, by which an adversary tries to infer the identity of a particular individual behind a set of mobility traces. More specifically, we propose an implementation of this attack based on a mobility model called Mobility Markov Chain (MMC). An MMC is built out from the mobility traces observed during the training phase and is used to perform the attack during the testing phase. We design several distance metrics quantifying the closeness between two MMCs and combine these distances to build de-anonymizers that can re-identify users. Experiments conducted on real datasets demonstrate that the attack is both accurate and resilient to sanitization mechanisms.

AB - With the advent of GPS-equipped devices, a massive amount of location data is being collected, raising the issue of the privacy risks incurred by the individuals whose movements are recorded. In this work, we focus on a specific inference attack called the de-anonymization attack, by which an adversary tries to infer the identity of a particular individual behind a set of mobility traces. More specifically, we propose an implementation of this attack based on a mobility model called Mobility Markov Chain (MMC). An MMC is built out from the mobility traces observed during the training phase and is used to perform the attack during the testing phase. We design several distance metrics quantifying the closeness between two MMCs and combine these distances to build de-anonymizers that can re-identify users. Experiments conducted on real datasets demonstrate that the attack is both accurate and resilient to sanitization mechanisms.

KW - De-anonymization

KW - Geolocation

KW - Inference attack

KW - Privacy

KW - De-anonymization

KW - Geolocation

KW - Inference attack

KW - Privacy

UR - https://www.scopus.com/pages/publications/84905121759

UR - https://www.scopus.com/pages/publications/84905121759#tab=citedBy

U2 - 10.1016/j.jcss.2014.04.024

DO - 10.1016/j.jcss.2014.04.024

M3 - Article in a journal

SN - 0022-0000

VL - 80

SP - 1597

EP - 1614

JO - Journal of Computer and System Sciences

JF - Journal of Computer and System Sciences

IS - 8

ER -

De-anonymization attack on geolocated data

Resumen

Palabras clave

Acceder al documento

Otros archivos y enlaces

Huella

Citar esto