Understanding ε for Differential Privacy in Differencing Attack Scenarios

Narges Ashena; Daniele Dell'Aglio; Abraham Bernstein

doi:10.1007/978-3-030-90019-9_10

Understanding ε for Differential Privacy in Differencing Attack Scenarios

Narges Ashena^*, Daniele Dell'Aglio, Abraham Bernstein

^*Corresponding author for this work

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

2 Citations (Scopus)

Abstract

One of the recent notions of privacy protection is Differential Privacy (DP) with potential application in several personal data protection settings. DP acts as an intermediate layer between a private dataset and data analysts introducing privacy by injecting noise into the results of queries. Key to DP is the role of ε– a parameter that controls the magnitude of injected noise and, therefore, the trade-off between utility and privacy. Choosing properεvalue is a key challenge and a non-trivial task, as there is no straightforward way to assess the level of privacy loss associated with a givenεvalue. In this study, we measure the privacy loss imposed by a givenεthrough an adversarial model that exploits auxiliary information. We define the adversarial model and the privacy loss based on a differencing attack and the success probability of such an attack, respectively. Then, we restrict the probability of a successful differencing attack by tuning theε. The result is an approach for set-tingεbased on the probability of a successful differencing attack and,hence, privacy leak. Our evaluation finds that settingεbased on some of the approaches presented in related work does not seem to offer adequate protection against the adversarial model introduced in this paper. Furthermore, our analysis shows that theεselected by our proposed approach provides privacy protection for the adversary model in this paper and the adversary models in the related work.

Original language	English
Title of host publication	Security and Privacy in Communication Networks : 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6–9, 2021, Proceedings, Part I
Editors	Joaquin Garcia-Alfaro, Shujun Li, Radha Poovendran, Hervé Debar, Moti Yung
Number of pages	20
Volume	1
Place of Publication	Cham
Publisher	Springer
Publication date	2021
Pages	187-206
ISBN (Print)	978-3-030-90018-2
ISBN (Electronic)	978-3-030-90019-9
DOIs	https://doi.org/10.1007/978-3-030-90019-9_10
Publication status	Published - 2021
Event	International Conference, SecureComm 2021 - Virtual Event Duration: 6 Sept 2021 → 9 Sept 2021 Conference number: 17th

Conference

Conference	International Conference, SecureComm 2021
Number	17th
Location	Virtual Event
Period	06/09/2021 → 09/09/2021

Series	Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering
Volume	398
ISSN	1867-8211

Keywords

Differencing attack
Differential privacy
Parameter tuning

Access to Document

10.1007/978-3-030-90019-9_10

AUB Link

Search for the material in Aalborg University Library's search engine

Cite this

Ashena, N., Dell'Aglio, D., & Bernstein, A. (2021). Understanding ε for Differential Privacy in Differencing Attack Scenarios. In J. Garcia-Alfaro, S. Li, R. Poovendran, H. Debar, & M. Yung (Eds.), Security and Privacy in Communication Networks: 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6–9, 2021, Proceedings, Part I (Vol. 1, pp. 187-206). Springer. https://doi.org/10.1007/978-3-030-90019-9_10

Ashena, Narges ; Dell'Aglio, Daniele ; Bernstein, Abraham. / Understanding ε for Differential Privacy in Differencing Attack Scenarios. Security and Privacy in Communication Networks: 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6–9, 2021, Proceedings, Part I. editor / Joaquin Garcia-Alfaro ; Shujun Li ; Radha Poovendran ; Hervé Debar ; Moti Yung. Vol. 1 Cham : Springer, 2021. pp. 187-206 (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, Vol. 398).

@inproceedings{0ea966e665bb4764b7318db1632991ad,

title = "Understanding ε for Differential Privacy in Differencing Attack Scenarios",

abstract = "One of the recent notions of privacy protection is Differential Privacy (DP) with potential application in several personal data protection settings. DP acts as an intermediate layer between a private dataset and data analysts introducing privacy by injecting noise into the results of queries. Key to DP is the role of ε– a parameter that controls the magnitude of injected noise and, therefore, the trade-off between utility and privacy. Choosing properεvalue is a key challenge and a non-trivial task, as there is no straightforward way to assess the level of privacy loss associated with a givenεvalue. In this study, we measure the privacy loss imposed by a givenεthrough an adversarial model that exploits auxiliary information. We define the adversarial model and the privacy loss based on a differencing attack and the success probability of such an attack, respectively. Then, we restrict the probability of a successful differencing attack by tuning theε. The result is an approach for set-tingεbased on the probability of a successful differencing attack and,hence, privacy leak. Our evaluation finds that settingεbased on some of the approaches presented in related work does not seem to offer adequate protection against the adversarial model introduced in this paper. Furthermore, our analysis shows that theεselected by our proposed approach provides privacy protection for the adversary model in this paper and the adversary models in the related work.",

keywords = "Differencing attack, Differential privacy, Parameter tuning",

author = "Narges Ashena and Daniele Dell'Aglio and Abraham Bernstein",

year = "2021",

doi = "10.1007/978-3-030-90019-9_10",

language = "English",

isbn = "978-3-030-90018-2",

volume = "1",

series = "Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering",

publisher = "Springer",

pages = "187--206",

editor = "Joaquin Garcia-Alfaro and Shujun Li and Radha Poovendran and Herv{\'e} Debar and Moti Yung",

booktitle = "Security and Privacy in Communication Networks",

address = "Germany",

note = "International Conference, SecureComm 2021 ; Conference date: 06-09-2021 Through 09-09-2021",

}

Ashena, N, Dell'Aglio, D & Bernstein, A 2021, Understanding ε for Differential Privacy in Differencing Attack Scenarios. in J Garcia-Alfaro, S Li, R Poovendran, H Debar & M Yung (eds), Security and Privacy in Communication Networks: 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6–9, 2021, Proceedings, Part I. vol. 1, Springer, Cham, Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, vol. 398, pp. 187-206, International Conference, SecureComm 2021, 06/09/2021. https://doi.org/10.1007/978-3-030-90019-9_10

Understanding ε for Differential Privacy in Differencing Attack Scenarios. / Ashena, Narges; Dell'Aglio, Daniele; Bernstein, Abraham.
Security and Privacy in Communication Networks: 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6–9, 2021, Proceedings, Part I. ed. / Joaquin Garcia-Alfaro; Shujun Li; Radha Poovendran; Hervé Debar; Moti Yung. Vol. 1 Cham: Springer, 2021. p. 187-206 (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, Vol. 398).

Research output: Contribution to book/anthology/report/conference proceeding › Article in proceeding › Research › peer-review

TY - GEN

T1 - Understanding ε for Differential Privacy in Differencing Attack Scenarios

AU - Ashena, Narges

AU - Dell'Aglio, Daniele

AU - Bernstein, Abraham

N1 - Conference code: 17th

PY - 2021

Y1 - 2021

N2 - One of the recent notions of privacy protection is Differential Privacy (DP) with potential application in several personal data protection settings. DP acts as an intermediate layer between a private dataset and data analysts introducing privacy by injecting noise into the results of queries. Key to DP is the role of ε– a parameter that controls the magnitude of injected noise and, therefore, the trade-off between utility and privacy. Choosing properεvalue is a key challenge and a non-trivial task, as there is no straightforward way to assess the level of privacy loss associated with a givenεvalue. In this study, we measure the privacy loss imposed by a givenεthrough an adversarial model that exploits auxiliary information. We define the adversarial model and the privacy loss based on a differencing attack and the success probability of such an attack, respectively. Then, we restrict the probability of a successful differencing attack by tuning theε. The result is an approach for set-tingεbased on the probability of a successful differencing attack and,hence, privacy leak. Our evaluation finds that settingεbased on some of the approaches presented in related work does not seem to offer adequate protection against the adversarial model introduced in this paper. Furthermore, our analysis shows that theεselected by our proposed approach provides privacy protection for the adversary model in this paper and the adversary models in the related work.

AB - One of the recent notions of privacy protection is Differential Privacy (DP) with potential application in several personal data protection settings. DP acts as an intermediate layer between a private dataset and data analysts introducing privacy by injecting noise into the results of queries. Key to DP is the role of ε– a parameter that controls the magnitude of injected noise and, therefore, the trade-off between utility and privacy. Choosing properεvalue is a key challenge and a non-trivial task, as there is no straightforward way to assess the level of privacy loss associated with a givenεvalue. In this study, we measure the privacy loss imposed by a givenεthrough an adversarial model that exploits auxiliary information. We define the adversarial model and the privacy loss based on a differencing attack and the success probability of such an attack, respectively. Then, we restrict the probability of a successful differencing attack by tuning theε. The result is an approach for set-tingεbased on the probability of a successful differencing attack and,hence, privacy leak. Our evaluation finds that settingεbased on some of the approaches presented in related work does not seem to offer adequate protection against the adversarial model introduced in this paper. Furthermore, our analysis shows that theεselected by our proposed approach provides privacy protection for the adversary model in this paper and the adversary models in the related work.

KW - Differencing attack

KW - Differential privacy

KW - Parameter tuning

UR - http://www.scopus.com/inward/record.url?scp=85120047890&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-90019-9_10

DO - 10.1007/978-3-030-90019-9_10

M3 - Article in proceeding

SN - 978-3-030-90018-2

VL - 1

T3 - Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering

SP - 187

EP - 206

BT - Security and Privacy in Communication Networks

A2 - Garcia-Alfaro, Joaquin

A2 - Li, Shujun

A2 - Poovendran, Radha

A2 - Debar, Hervé

A2 - Yung, Moti

PB - Springer

CY - Cham

T2 - International Conference, SecureComm 2021

Y2 - 6 September 2021 through 9 September 2021

ER -

Ashena N, Dell'Aglio D, Bernstein A. Understanding ε for Differential Privacy in Differencing Attack Scenarios. In Garcia-Alfaro J, Li S, Poovendran R, Debar H, Yung M, editors, Security and Privacy in Communication Networks: 17th EAI International Conference, SecureComm 2021, Virtual Event, September 6–9, 2021, Proceedings, Part I. Vol. 1. Cham: Springer. 2021. p. 187-206. (Lecture Notes of the Institute for Computer Sciences, Social Informatics and Telecommunications Engineering, Vol. 398). doi: 10.1007/978-3-030-90019-9_10

Understanding ε for Differential Privacy in Differencing Attack Scenarios

Abstract

Conference

Keywords

Access to Document

AUB Link

Other files and links

Fingerprint

Cite this