12
CS573 Data Privacy and Security Secure data outsourcing – Combining encryption and fragmentation

CS573 Data Privacy and Security

  • Upload
    jadon

  • View
    34

  • Download
    0

Tags:

Embed Size (px)

DESCRIPTION

CS573 Data Privacy and Security. Secure data outsourcing – Combining encryption and fragmentation. Combining Fragmentation and Encryption for outsourcing. Breaking sensitive associations between attributes. Confidentiality Constraints. Example: constraint { DoB , Zip, Illness} - PowerPoint PPT Presentation

Citation preview

Page 1: CS573 Data Privacy and Security

CS573 Data Privacy and Security

Secure data outsourcing – Combining encryption and fragmentation

Page 2: CS573 Data Privacy and Security

Combining Fragmentation and Encryption for outsourcing

• Breaking sensitive associations between attributes

Page 3: CS573 Data Privacy and Security

Confidentiality Constraints

• Example: constraint {DoB, Zip, Illness}– Okay to release {DoB, Zip}, {Zip}, …

Page 4: CS573 Data Privacy and Security

Constraint Example

Page 5: CS573 Data Privacy and Security

Basic ideas

• Singleton constraints– encryption

• Association constraints– encryption of any one attribute– Fragmentation of the attributes

Page 6: CS573 Data Privacy and Security

Example

Page 7: CS573 Data Privacy and Security
Page 8: CS573 Data Privacy and Security
Page 9: CS573 Data Privacy and Security

Fragmentation

• Classical distributed database design problem (vertical fragmentation)

• Total number of possible fragmentations given N attributes?

• What would be an optimal fragmentation?

Page 10: CS573 Data Privacy and Security

Optimal fragmentation

• Correctly enforce constraints• Maximal visibility• Minimal fragmentation– Maximal attribute affinity

• Problem is NP hard

Page 11: CS573 Data Privacy and Security

Algorithm without confidentiality constraints

• Without confidentiality constraints - Hierarchical clustering

• With confidentiality constraints?– {s}, {n,d}, {n,z}, {n, i}, {n, p}, {d, z, i}, {d, z, p}

Page 12: CS573 Data Privacy and Security

References

• Combining fragmentation and encryption to protect privacy in data storage, TISSEC, 2010

• Fragmentation design for efficient query execution over sensitive distributed databases, ICDCS, 2009


Privacy and Security Work Group Draft Privacy & Security Policies & Recommendations

Privacy and Security Work Group Draft Privacy & Security Policies & Recommendations

Documents
Li Xiong CS573 Data Privacy and Security Healthcare privacy and security

Li Xiong CS573 Data Privacy and Security Healthcare privacy and security

Documents
Federal: Privacy and Security - SCPMCS Privacy & Security 031914… · security so that patient privacy is protected. Following good privacy and security practices is also good sense

Federal: Privacy and Security - SCPMCS Privacy & Security 031914… · security so that patient privacy is protected. Following good privacy and security practices is also good sense

Documents
Li Xiong CS573 Data Privacy and Security

Li Xiong CS573 Data Privacy and Security

Documents
IoT Security & Privacy - SentryBay - Security that works security and privacy_040715.pdfPage 3: © 2015 SentryBay Corporation / IoT Security & Privacy!!! IoT Security & Privacy The

IoT Security & Privacy - SentryBay - Security that works security and privacy_040715.pdfPage 3: © 2015 SentryBay Corporation / IoT Security & Privacy!!! IoT Security & Privacy The

Documents
Privacy Security

Privacy Security

Documents
CS573 Data Privacy and Security Anonymization methods

CS573 Data Privacy and Security Anonymization methods

Documents
CS573 Data Privacy and Security - mathcs.emory.edu

CS573 Data Privacy and Security - mathcs.emory.edu

Documents
CS573 Data privacy and security in the cloud

CS573 Data privacy and security in the cloud

Documents
the usable security & privacy group · the usable security & privacy group. overview • framing privacy and security decisions • privacy and IoT • privacy on mobile devices

the usable security & privacy group · the usable security & privacy group. overview • framing privacy and security decisions • privacy and IoT • privacy on mobile devices

Documents
CS573 Data Privacy and Security Anonymization methodslxiong/cs573_s12/share/... · Mondrian, l-diversity …) – Charge a penalty to each record for being ... −How to determine

CS573 Data Privacy and Security Anonymization methodslxiong/cs573_s12/share/... · Mondrian, l-diversity …) – Charge a penalty to each record for being ... −How to determine

Documents
Privacy & Security Training - Texas CASAtexascasa.org/.../Privacy-and-Security-Course-Companion.pdfguidelines for confidentiality, privacy, physical and information security, breach

Privacy & Security Training - Texas CASAtexascasa.org/.../Privacy-and-Security-Course-Companion.pdfguidelines for confidentiality, privacy, physical and information security, breach

Documents
CS573 Data Privacy and Securitylxiong/cs573_s12/share/share/share/... · 2012-01-26 · If you do care … • Use cash when you can. • Do not give your phone number, social-security

CS573 Data Privacy and Securitylxiong/cs573_s12/share/share/share/... · 2012-01-26 · If you do care … • Use cash when you can. • Do not give your phone number, social-security

Documents
Privacy preserving data mining – randomized response and association rule hiding Li Xiong CS573 Data Privacy and Anonymity Partial slides credit: W. Du,

Privacy preserving data mining – randomized response and association rule hiding Li Xiong CS573 Data Privacy and Anonymity Partial slides credit: W. Du,

Documents
Anonymization Algorithms - Microaggregation and Clustering Li Xiong CS573 Data Privacy and Anonymity

Anonymization Algorithms - Microaggregation and Clustering Li Xiong CS573 Data Privacy and Anonymity

Documents
Li Xiong CS573 Data Privacy and Security Healthcare privacy and security: Genomic data privacy

Li Xiong CS573 Data Privacy and Security Healthcare privacy and security: Genomic data privacy

Documents
CS573 Data Privacy and Security Data Privacy and Security ...€¦ · •PHI is: information, oral or recorded, in any form or medium, that: 6 –Is created or received by a provider,

CS573 Data Privacy and Security Data Privacy and Security ...€¦ · •PHI is: information, oral or recorded, in any form or medium, that: 6 –Is created or received by a provider,

Documents
Slide credits: Ragib Hasan, Johns Hopkins University CS573 Data privacy and security in the cloud

Slide credits: Ragib Hasan, Johns Hopkins University CS573 Data privacy and security in the cloud

Documents
Data Anonymization - Generalization Algorithms Li Xiong, Slawek Goryczka CS573 Data Privacy and Anonymity

Data Anonymization - Generalization Algorithms Li Xiong, Slawek Goryczka CS573 Data Privacy and Anonymity

Documents
Secure Multiparty Computation – Basic Cryptographic Methods Li Xiong CS573 Data Privacy and Security

Secure Multiparty Computation – Basic Cryptographic Methods Li Xiong CS573 Data Privacy and Security

Documents
CS573 Data Privacy and Security Statistical Databases

CS573 Data Privacy and Security Statistical Databases

Documents
CS573 Data Privacy and Security Data Privacy and Security ...lxiong/cs573_s12/share/slides/0320_healthcare.pdf– Security Rule applies only to electronic health information – Both

CS573 Data Privacy and Security Data Privacy and Security ...lxiong/cs573_s12/share/slides/0320_healthcare.pdf– Security Rule applies only to electronic health information – Both

Documents
CS573 Data Privacy and Security Secure data outsourcing – Combining encryption and fragmentation

CS573 Data Privacy and Security Secure data outsourcing – Combining encryption and fragmentation

Documents
Li Xiong CS573 Data Privacy and Security Privacy Preserving Data Mining – Secure multiparty computation and random response techniques

Li Xiong CS573 Data Privacy and Security Privacy Preserving Data Mining – Secure multiparty computation and random response techniques

Documents
CS573 Data Privacy and Security Anonymization methods Li Xiong

CS573 Data Privacy and Security Anonymization methods Li Xiong

Documents
Privacy preserving data mining – multiplicative perturbation techniques Li Xiong CS573 Data Privacy and Anonymity

Privacy preserving data mining – multiplicative perturbation techniques Li Xiong CS573 Data Privacy and Anonymity

Documents
Privacy - Introductie Beware of privacy – security fallacies ! Privacy

Privacy - Introductie Beware of privacy – security fallacies ! Privacy

Documents
HMIS Security & Privacy Plan - sacramentostepsforward.org · HMIS PRIVACY & SECURITY PLAN Sacramento County CoC PRIVACY & SECURITY Privacy refers to the protection of the client's

HMIS Security & Privacy Plan - sacramentostepsforward.org · HMIS PRIVACY & SECURITY PLAN Sacramento County CoC PRIVACY & SECURITY Privacy refers to the protection of the client's

Documents
Privacy preserving data mining Li Xiong CS573 Data Privacy and Anonymity

Privacy preserving data mining Li Xiong CS573 Data Privacy and Anonymity

Documents
CS573 Data Privacy and Security Midterm Revielxiong/cs573_f16/share/slides/midterm_revie… · CS573 Data Privacy and Security Midterm Review ... Learn empirical distribution through

CS573 Data Privacy and Security Midterm Revielxiong/cs573_f16/share/slides/midterm_revie… · CS573 Data Privacy and Security Midterm Review ... Learn empirical distribution through

Documents