Measures of Information Leakage for Incomplete Statistical Information: Application to a Binary Privacy Mechanism-Reference-Cited by-同舟云学术

Measures of Information Leakage for Incomplete Statistical Information: Application to a Binary Privacy Mechanism

Published:2023-11-13 Issue:4 Volume:26 Page:1-31
ISSN:2471-2566
Container-title:ACM Transactions on Privacy and Security
language:en
Short-container-title:ACM Trans. Priv. Secur.

Author:

Sakib Shahnewaz Karim¹^ORCID,Amariucai George T²^ORCID,Guan Yong¹^ORCID

Affiliation:

1. Iowa State University, USA

2. Kansas State University, USA

Abstract

Information leakage is usually defined as the logarithmic increment in the adversary’s probability of correctly guessing the legitimate user’s private data or some arbitrary function of the private data when presented with the legitimate user’s publicly disclosed information. However, this definition of information leakage implicitly assumes that both the privacy mechanism and the prior probability of the original data are entirely known to the attacker. In reality, the assumption of complete knowledge of the privacy mechanism for an attacker is often impractical. The attacker can usually have access to only an approximate version of the correct privacy mechanism, computed from a limited set of the disclosed data, for which they can access the corresponding un-distorted data. In this scenario, the conventional definition of leakage no longer has an operational meaning. To address this problem, in this article, we propose novel meaningful information-theoretic metrics for information leakage when the attacker has incomplete information about the privacy mechanism—we call them average subjective leakage , average confidence boost , and average objective leakage , respectively. For the simplest, binary scenario, we demonstrate how to find an optimized privacy mechanism that minimizes the worst-case value of either of these leakages.

Funder

NIST CSAFE

NSF

NPRP

Qatar National Research Fund

Publisher

Association for Computing Machinery (ACM)

Subject

Safety, Risk, Reliability and Quality,General Computer Science

Link

https://dl.acm.org/doi/pdf/10.1145/3624982

Reference60 articles.

1. Jayadev Acharya, Ziteng Sun, and Huanyu Zhang. 2018. Differentially private testing of identity and closeness of discrete distributions. In Conference on Advances in Neural Information Processing Systems. 6878–6891.

2. Privacy and Security Issues in Online Social Networks

3. Mário S. Alvim, Miguel E. Andrés, Konstantinos Chatzikokolakis, Pierpaolo Degano, and Catuscia Palamidessi. 2011. Differential privacy: On the trade-off between utility and information leakage. In International Workshop on Formal Aspects in Security and Trust. Springer, 39–54.

4. A Game-Theoretic Approach to Information-Flow Control via Protocol Composition

5. Mário S. Alvim, Konstantinos Chatzikokolakis, Annabelle McIver, Carroll Morgan, Catuscia Palamidessi, and Geoffrey Smith. 2016. Axioms for information leakage. In EEE 29th Computer Security Foundations Symposium (CSF’16). IEEE, 77–92.