A Privacy-Preserving Framework for Rank Inference

Yunpeng Gao; Tong Yan; Nan Zhang

doi:10.1109/PAC.2017.23

A Privacy-Preserving Framework for Rank Inference

Yunpeng Gao, Tong Yan, Nan Zhang

College of Information Sciences and Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Citation (Scopus)

Abstract

In this paper, we address privacy issues related to ranked retrieval model in web databases, each of which takes private attributes as part of input in the ranking function. Many web databases have both public attributes and private attributes which serve different purposes. The owners of web databases, which normally are websites, show the public attributes but keep private attributes invisible to public. For example, social network websites provide privacy settings which allow users to control the visibility of user profiles by hiding certain attributes values from public view. In order to maximize the protection effect, these websites also hide private attributes in query results so that public can only access attributes that are set to public. In this way, even private attributes have been taken as part of input in the ranking function, many websites believe that the adversary is unable to reveal the private attribute values from ranked query results. Thus they declare the private attributes are well protected. Intuitively, users indeed cannot view others' private attribute values and their own private attribute values are hidden from public view. Users trust these websites because they believe that 'what you see is what you get', and be persuaded to input sensitive personal information as private attributes to databases. However, the investigation by Rahman et al.[1] proves that though the values of private attributes could be hidden from public view, they still can be inferred from the ranking function.

Original language	English (US)
Title of host publication	Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	180-181
Number of pages	2
Volume	2017-January
ISBN (Electronic)	9781538610275
DOIs	https://doi.org/10.1109/PAC.2017.23
State	Published - Dec 4 2017
Event	1st IEEE Symposium on Privacy-Aware Computing, PAC 2017 - Washington, United States Duration: Aug 1 2017 → Aug 3 2017

Other

Other	1st IEEE Symposium on Privacy-Aware Computing, PAC 2017
Country	United States
City	Washington
Period	8/1/17 → 8/3/17

Fingerprint

Websites

Visibility

World Wide Web

All Science Journal Classification (ASJC) codes

Computer Networks and Communications
Safety, Risk, Reliability and Quality

Cite this

Gao, Y., Yan, T., & Zhang, N. (2017). A Privacy-Preserving Framework for Rank Inference. In Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017 (Vol. 2017-January, pp. 180-181). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/PAC.2017.23

Gao, Yunpeng ; Yan, Tong ; Zhang, Nan. / A Privacy-Preserving Framework for Rank Inference. Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017. Vol. 2017-January Institute of Electrical and Electronics Engineers Inc., 2017. pp. 180-181

@inproceedings{5087c566c24a4c9abffea250441317ff,

title = "A Privacy-Preserving Framework for Rank Inference",

abstract = "In this paper, we address privacy issues related to ranked retrieval model in web databases, each of which takes private attributes as part of input in the ranking function. Many web databases have both public attributes and private attributes which serve different purposes. The owners of web databases, which normally are websites, show the public attributes but keep private attributes invisible to public. For example, social network websites provide privacy settings which allow users to control the visibility of user profiles by hiding certain attributes values from public view. In order to maximize the protection effect, these websites also hide private attributes in query results so that public can only access attributes that are set to public. In this way, even private attributes have been taken as part of input in the ranking function, many websites believe that the adversary is unable to reveal the private attribute values from ranked query results. Thus they declare the private attributes are well protected. Intuitively, users indeed cannot view others' private attribute values and their own private attribute values are hidden from public view. Users trust these websites because they believe that 'what you see is what you get', and be persuaded to input sensitive personal information as private attributes to databases. However, the investigation by Rahman et al.[1] proves that though the values of private attributes could be hidden from public view, they still can be inferred from the ranking function.",

author = "Yunpeng Gao and Tong Yan and Nan Zhang",

year = "2017",

month = "12",

day = "4",

doi = "10.1109/PAC.2017.23",

language = "English (US)",

volume = "2017-January",

pages = "180--181",

booktitle = "Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

address = "United States",

}

Gao, Y, Yan, T & Zhang, N 2017, A Privacy-Preserving Framework for Rank Inference. in Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017. vol. 2017-January, Institute of Electrical and Electronics Engineers Inc., pp. 180-181, 1st IEEE Symposium on Privacy-Aware Computing, PAC 2017, Washington, United States, 8/1/17. https://doi.org/10.1109/PAC.2017.23

A Privacy-Preserving Framework for Rank Inference. / Gao, Yunpeng; Yan, Tong; Zhang, Nan.

Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017. Vol. 2017-January Institute of Electrical and Electronics Engineers Inc., 2017. p. 180-181.

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - A Privacy-Preserving Framework for Rank Inference

AU - Gao, Yunpeng

AU - Yan, Tong

AU - Zhang, Nan

PY - 2017/12/4

Y1 - 2017/12/4

N2 - In this paper, we address privacy issues related to ranked retrieval model in web databases, each of which takes private attributes as part of input in the ranking function. Many web databases have both public attributes and private attributes which serve different purposes. The owners of web databases, which normally are websites, show the public attributes but keep private attributes invisible to public. For example, social network websites provide privacy settings which allow users to control the visibility of user profiles by hiding certain attributes values from public view. In order to maximize the protection effect, these websites also hide private attributes in query results so that public can only access attributes that are set to public. In this way, even private attributes have been taken as part of input in the ranking function, many websites believe that the adversary is unable to reveal the private attribute values from ranked query results. Thus they declare the private attributes are well protected. Intuitively, users indeed cannot view others' private attribute values and their own private attribute values are hidden from public view. Users trust these websites because they believe that 'what you see is what you get', and be persuaded to input sensitive personal information as private attributes to databases. However, the investigation by Rahman et al.[1] proves that though the values of private attributes could be hidden from public view, they still can be inferred from the ranking function.

AB - In this paper, we address privacy issues related to ranked retrieval model in web databases, each of which takes private attributes as part of input in the ranking function. Many web databases have both public attributes and private attributes which serve different purposes. The owners of web databases, which normally are websites, show the public attributes but keep private attributes invisible to public. For example, social network websites provide privacy settings which allow users to control the visibility of user profiles by hiding certain attributes values from public view. In order to maximize the protection effect, these websites also hide private attributes in query results so that public can only access attributes that are set to public. In this way, even private attributes have been taken as part of input in the ranking function, many websites believe that the adversary is unable to reveal the private attribute values from ranked query results. Thus they declare the private attributes are well protected. Intuitively, users indeed cannot view others' private attribute values and their own private attribute values are hidden from public view. Users trust these websites because they believe that 'what you see is what you get', and be persuaded to input sensitive personal information as private attributes to databases. However, the investigation by Rahman et al.[1] proves that though the values of private attributes could be hidden from public view, they still can be inferred from the ranking function.

UR - http://www.scopus.com/inward/record.url?scp=85046543120&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85046543120&partnerID=8YFLogxK

U2 - 10.1109/PAC.2017.23

DO - 10.1109/PAC.2017.23

M3 - Conference contribution

AN - SCOPUS:85046543120

VL - 2017-January

SP - 180

EP - 181

BT - Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017

PB - Institute of Electrical and Electronics Engineers Inc.

ER -

Gao Y, Yan T, Zhang N. A Privacy-Preserving Framework for Rank Inference. In Proceedings - 2017 IEEE Symposium on Privacy-Aware Computing, PAC 2017. Vol. 2017-January. Institute of Electrical and Electronics Engineers Inc. 2017. p. 180-181 https://doi.org/10.1109/PAC.2017.23

Access to Document

10.1109/PAC.2017.23