{"title":"Practical Location Privacy Attacks and Defense on Point-of-interest Aggregates","authors":"Wei Tong, Chang Xia, Jingyu Hua, Qun A. Li, Sheng Zhong","doi":"10.1109/ICDCS51616.2021.00082","DOIUrl":null,"url":null,"abstract":"Location-based services have significantly affected mobile users' everyday life, and location privacy is also an essential issue in these services. In some applications (e.g., location-based recommendation, mobility analytic), the raw data is not required, and the service providers adopt aggregation to protect users' location traces. However, some works show that even these aggregation data may disclose users' location privacy when other prior knowledge is available to an adversary. We consider the location privacy problem in the presence of Location Uniqueness, which is a property that some geographical locations can be re-identified based on the aggregated point-of-interest (POI) information. We first study whether previous protection mechanisms are effective for defending against this novel type of attack. Then we present two practical attacks for inferring users' actual locations based on the POI aggregates. Furthermore, we propose a secure POI aggregate release mechanism that can defend against this type of re-identification attack and achieve differential privacy at the same time. We conduct extensive experiments on real-world datasets. The results show that the existing protection mechanisms cannot provide sufficient protection. The proposed enhanced attacks can significantly improve the inference performance, and the proposed protection mechanism achieves satisfactory performance.","PeriodicalId":222376,"journal":{"name":"2021 IEEE 41st International Conference on Distributed Computing Systems (ICDCS)","volume":"16 6","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-07-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"3","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 IEEE 41st International Conference on Distributed Computing Systems (ICDCS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICDCS51616.2021.00082","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 3
Abstract
Location-based services have significantly affected mobile users' everyday life, and location privacy is also an essential issue in these services. In some applications (e.g., location-based recommendation, mobility analytic), the raw data is not required, and the service providers adopt aggregation to protect users' location traces. However, some works show that even these aggregation data may disclose users' location privacy when other prior knowledge is available to an adversary. We consider the location privacy problem in the presence of Location Uniqueness, which is a property that some geographical locations can be re-identified based on the aggregated point-of-interest (POI) information. We first study whether previous protection mechanisms are effective for defending against this novel type of attack. Then we present two practical attacks for inferring users' actual locations based on the POI aggregates. Furthermore, we propose a secure POI aggregate release mechanism that can defend against this type of re-identification attack and achieve differential privacy at the same time. We conduct extensive experiments on real-world datasets. The results show that the existing protection mechanisms cannot provide sufficient protection. The proposed enhanced attacks can significantly improve the inference performance, and the proposed protection mechanism achieves satisfactory performance.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
