Presentation is loading. Please wait.

Presentation is loading. Please wait.

Quantifying Location Privacy: The Case of Sporadic Location Exposure Reza Shokri George Theodorakopoulos George Danezis Jean-Pierre Hubaux Jean-Yves Le.

Published byHarvey Dawson Modified over 9 years ago

Similar presentations

Presentation on theme: "Quantifying Location Privacy: The Case of Sporadic Location Exposure Reza Shokri George Theodorakopoulos George Danezis Jean-Pierre Hubaux Jean-Yves Le."— Presentation transcript:

1 Quantifying Location Privacy: The Case of Sporadic Location Exposure Reza Shokri George Theodorakopoulos George Danezis Jean-Pierre Hubaux Jean-Yves Le Boudec The 11th Privacy Enhancing Technologies Symposium (PETS), July 2011

2 2 ● Assume time and location are discrete…

3 Location-based Services Sporadic vs. Continuous Location Exposure Application Model 3 Mobility Model Actual Location of user ‘u’ at time ‘t’ Is the location exposed? 0/1

4 Protection Mechanisms 4 12345 678910 1112131415 1617181920 2122232425 Actual Location ● Consider a given user at a given time instant obfuscate anonymize 12345 678910 1112131415 1617181920 2122232425 Observed Location exposed Application hide fake Protection Mechanism uiui Actual Trajectory

5 Protection Mechanisms Model 5 ● User pseudonyms stay unchanged over time… user to pseudonym assignment Observed location of pseudonymous user u’ at time t

6 Adversary Background Knowledge – Stronger: Users’ transition probability between locations Markov Chain transition probability matrix – Weaker: Users’ location distribution over space Stationary distribution of the ‘transition probability matrix’ 6 ● Adversary also knows the PDFs associated to the ‘application’ and the ‘protection mechanism’

7 Adversary Localization Attack – What is the probability that Alice is at a given location at a specific time instant? (given the observation and adversary’s background knowledge) – Bayesian Inference relying on Hidden Markov Model Forward-Backward algorithm, Maximum weight assignment 7 ● Find the details of the attack in the paper

8 Location Privacy Metric Anonymity? – How successfully can the adversary link the user pseudonyms to their identities? – Metric: The percentage of correct assignments Location Privacy? – How correctly can the adversary localize the users? – Metric: Expected Estimation Error (Distortion) 8 ● Justification: R. Shokri, G. Theodorakopoulos, J-Y. Le Boudec, J-P. Hubaux. ‘Quantifying Location Privacy’. IEEE S&P 2011

9 Evaluation Location-Privacy Meter – Input: Actual Traces Vehicular traces in SF, 20 mobile users moving in 40 regions – Output: ‘Anonymity’ and ‘Location Privacy’ of users over time – Modules: Associated PDFs of ‘Location-based Application’ and ‘Location-Privacy Preserving Mechanisms’ 9 ● More information here: http://lca.epfl.ch/projects/quantifyingprivacy

10 Evaluation Location-based Applications – once-in-a-while APP(o, Θ ) – local search APP(s, Θ ) Location-Privacy Preserving Mechanisms – fake-location injection (with rate φ) (u) Uniform selection (g) Selection according to the average mobility profile – location obfuscation (with parameter ρ) ρ : The number of removed low-order bits from the location identifier 10 LPPM(φ, ρ, {u,g})

11 Results - Anonymity 11

12 Results – Location Privacy 12 φ: the fake-location injection rate

13 0 0.0 2 0.0 4 0.0 0 0.3 0.0 0 0.5 0.0 0 0.0 0.3 0 0.0 0.5 More Results – Location Privacy obfuscation fake injection hiding uniform selection

14 Conclusions & Future Work The effectiveness of ‘Location-Privacy Preserving Mechanisms’ cannot be evaluated independently of the ‘Location-based Application’ used by the users Fake-location injection technique is very effective for ‘sporadic location exposure’ applications – Advantage: no loss of quality of service – Drawback: more traffic exchange The ‘Location-Privacy Meter’ tool is enhanced in order to model the applications and also new protection mechanisms, notably fake- location injection Changing pseudonyms over time: to be added to our probabilistic framework 14

15 Location-Privacy Meter (LPM): A Tool to Quantify Location Privacy 15 http://lca.epfl.ch/projects/quantifyingprivacy

16 16

Download ppt "Quantifying Location Privacy: The Case of Sporadic Location Exposure Reza Shokri George Theodorakopoulos George Danezis Jean-Pierre Hubaux Jean-Yves Le."

Similar presentations

A Probabilistic Analysis of Onion Routing in a Black-box Model 10/29/2007 Workshop on Privacy in the Electronic Society Aaron Johnson (Yale) with Joan.

A Probabilistic Analysis of Onion Routing in a Black-box Model 10/29/2007 Workshop on Privacy in the Electronic Society Aaron Johnson (Yale) with Joan.
Cipher Techniques to Protect Anonymized Mobility Traces from Privacy Attacks Chris Y. T. Ma, David K. Y. Yau, Nung Kwan Yip and Nageswara S. V. Rao.

Cipher Techniques to Protect Anonymized Mobility Traces from Privacy Attacks Chris Y. T. Ma, David K. Y. Yau, Nung Kwan Yip and Nageswara S. V. Rao.
On the Optimal Placement of Mix Zones Julien Freudiger, Reza Shokri and Jean-Pierre Hubaux PETS, 2009.

On the Optimal Placement of Mix Zones Julien Freudiger, Reza Shokri and Jean-Pierre Hubaux PETS, 2009.
Protecting Location Privacy: Optimal Strategy against Localization Attacks Reza Shokri, George Theodorakopoulos, Carmela Troncoso, Jean-Pierre Hubaux,

Protecting Location Privacy: Optimal Strategy against Localization Attacks Reza Shokri, George Theodorakopoulos, Carmela Troncoso, Jean-Pierre Hubaux,
1 University of Southern California Keep the Adversary Guessing: Agent Security by Policy Randomization Praveen Paruchuri University of Southern California.

1 University of Southern California Keep the Adversary Guessing: Agent Security by Policy Randomization Praveen Paruchuri University of Southern California.
Self-Organized Anonymous Authentication in Mobile Ad Hoc Networks Julien Freudiger, Maxim Raya and Jean-Pierre Hubaux SECURECOMM, 2009.

Self-Organized Anonymous Authentication in Mobile Ad Hoc Networks Julien Freudiger, Maxim Raya and Jean-Pierre Hubaux SECURECOMM, 2009.
Topology Control for Effective Interference Cancellation in Multi-User MIMO Networks E. Gelal, K. Pelechrinis, T.S. Kim, I. Broustis Srikanth V. Krishnamurthy,

Topology Control for Effective Interference Cancellation in Multi-User MIMO Networks E. Gelal, K. Pelechrinis, T.S. Kim, I. Broustis Srikanth V. Krishnamurthy,
Hidden Markov Model Cryptanalysis Chris Karlof and David Wagner.

Hidden Markov Model Cryptanalysis Chris Karlof and David Wagner.
Visual Recognition Tutorial

Visual Recognition Tutorial
1 A Distortion-based Metric for Location Privacy Workshop on Privacy in the Electronic Society (WPES), Chicago, IL, USA - November 9, 2009 Reza Shokri.

1 A Distortion-based Metric for Location Privacy Workshop on Privacy in the Electronic Society (WPES), Chicago, IL, USA - November 9, 2009 Reza Shokri.
Hidden Markov Model Special case of Dynamic Bayesian network Single (hidden) state variable Single (observed) observation variable Transition probability.

Hidden Markov Model Special case of Dynamic Bayesian network Single (hidden) state variable Single (observed) observation variable Transition probability.
Maximum Likelihood Network Topology Identification Mark Coates McGill University Robert Nowak Rui Castro Rice University DYNAMICS May 5 th,2003.

Maximum Likelihood Network Topology Identification Mark Coates McGill University Robert Nowak Rui Castro Rice University DYNAMICS May 5 th,2003.
*Sponsored in part by the DARPA IT-MANET Program, NSF OCE-0520324 Opportunistic Scheduling with Reliability Guarantees in Cognitive Radio Networks Rahul.

*Sponsored in part by the DARPA IT-MANET Program, NSF OCE Opportunistic Scheduling with Reliability Guarantees in Cognitive Radio Networks Rahul.
1 Preserving Privacy in Collaborative Filtering through Distributed Aggregation of Offline Profiles The 3rd ACM Conference on Recommender Systems, New.

1 Preserving Privacy in Collaborative Filtering through Distributed Aggregation of Offline Profiles The 3rd ACM Conference on Recommender Systems, New.
Multiple Sender Distributed Video Streaming Thinh Nguyen, Avideh Zakhor appears on “IEEE Transactions On Multimedia, vol. 6, no. 2, April, 2004”

Multiple Sender Distributed Video Streaming Thinh Nguyen, Avideh Zakhor appears on “IEEE Transactions On Multimedia, vol. 6, no. 2, April, 2004”
1 A Generic Mean Field Convergence Result for Systems of Interacting Objects From Micro to Macro Jean-Yves Le Boudec, EPFL Joint work with David McDonald,

1 A Generic Mean Field Convergence Result for Systems of Interacting Objects From Micro to Macro Jean-Yves Le Boudec, EPFL Joint work with David McDonald,
May 11, 2005 Tracking on a Graph Songhwai Oh Shankar Sastry Target trajectoriesEstimated tracks Tracking in Sensor Networks Target tracking is a representative.

May 11, 2005 Tracking on a Graph Songhwai Oh Shankar Sastry Target trajectoriesEstimated tracks Tracking in Sensor Networks Target tracking is a representative.
SeCoWiNet 2007 FAMIC Fast Authentication and Message Integrity Check in Vehicular Communications Nikodin Ristanovic Papadimitratos Panos George Theodorakopoulos.

SeCoWiNet 2007 FAMIC Fast Authentication and Message Integrity Check in Vehicular Communications Nikodin Ristanovic Papadimitratos Panos George Theodorakopoulos.
CSE 221: Probabilistic Analysis of Computer Systems Topics covered: Statistical inference.

CSE 221: Probabilistic Analysis of Computer Systems Topics covered: Statistical inference.
Yi Wang, Bhaskar Krishnamachari, Qing Zhao, and Murali Annavaram 1 The Tradeoff between Energy Efficiency and User State Estimation Accuracy in Mobile.

Yi Wang, Bhaskar Krishnamachari, Qing Zhao, and Murali Annavaram 1 The Tradeoff between Energy Efficiency and User State Estimation Accuracy in Mobile.

Similar presentations

Ads by Google