1
COMP7370 Advanced Computer and Network Security
Generalizing Data to Provide Anonymity when Disclosing Information (1)
Topics:
1. Problem description
a.
How to formally define a problem?
Topic 1: Problem Description
Motivation:
o
Protect individual-specific (private) data
-
e.g., name, address, phone number, SSN
o
Solution 1: no release of data
o
Question 1:
Limitations – usage, business and research need shared info.
-
Story: IRB - INSTITUTIONAL REVIEW BOARD for RESEARCH
INVOLVING HUMAN SUBJECTS
o
Solution 2: remove/encrypt private data -> anonymous info.
o
Limitation: (see slide09b, p2)
-
Re-identifying
anonymous data
-
Link to outside data (public data)
-
e.g., voting list - use DOB (12%); DOB+gender (29%); DOB+Zip (69%)
Private data
Other data
Remove or
Encrypt
Private Data
Private data
Other data
Release Data
DB:
Private data
Other data
Remove or
Encrypt
Private Data
DB_release:
Private data
Other data
Re-identify: Linking
DB_outside:
Private-data’
Other-data’
Private-data’+
Other data
Quasi-identifier
This
preview
has intentionally blurred sections.
Sign up to view the full version.
This is the end of the preview.
Sign up
to
access the rest of the document.
- Summer '08
- Qin,X
- Information privacy, institutional review board, ) data
-
Click to edit the document details