TY - GEN
T1 - Towards effective differential privacy communication for users' data sharing decision and comprehension
AU - Xiong, Aiping
AU - Wang, Tianhao
AU - Li, Ninghui
AU - Jha, Somesh
N1 - Funding Information:
X. ACKNOWLEDGEMENTS This work was funded in part by the NSF awards #1640374 and #1931443. We would also like to thank Andreas Haeberlen for shepherding this paper, Joesph Calandrino for serving as our point of contact, and other reviewers for their helpful comments which guided us revise and improve the paper.
Publisher Copyright:
© 2020 IEEE.
PY - 2020/5
Y1 - 2020/5
N2 - Differential privacy protects an individual's privacy by perturbing data on an aggregated level (DP) or individual level (LDP). We report four online human-subject experiments investigating the effects of using different approaches to communicate differential privacy techniques to laypersons in a health app data collection setting. Experiments 1 and 2 investigated participants' data disclosure decisions for low-sensitive and high-sensitive personal information when given different DP or LDP descriptions. Experiments 3 and 4 uncovered reasons behind participants' data sharing decisions, and examined participants' subjective and objective comprehensions of these DP or LDP descriptions. When shown descriptions that explain the implications instead of the definition/processes of DP or LDP technique, participants demonstrated better comprehension and showed more willingness to share information with LDP than with DP, indicating their understanding of LDP's stronger privacy guarantee compared with DP.
AB - Differential privacy protects an individual's privacy by perturbing data on an aggregated level (DP) or individual level (LDP). We report four online human-subject experiments investigating the effects of using different approaches to communicate differential privacy techniques to laypersons in a health app data collection setting. Experiments 1 and 2 investigated participants' data disclosure decisions for low-sensitive and high-sensitive personal information when given different DP or LDP descriptions. Experiments 3 and 4 uncovered reasons behind participants' data sharing decisions, and examined participants' subjective and objective comprehensions of these DP or LDP descriptions. When shown descriptions that explain the implications instead of the definition/processes of DP or LDP technique, participants demonstrated better comprehension and showed more willingness to share information with LDP than with DP, indicating their understanding of LDP's stronger privacy guarantee compared with DP.
UR - http://www.scopus.com/inward/record.url?scp=85091597237&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=85091597237&partnerID=8YFLogxK
U2 - 10.1109/SP40000.2020.00088
DO - 10.1109/SP40000.2020.00088
M3 - Conference contribution
AN - SCOPUS:85091597237
T3 - Proceedings - IEEE Symposium on Security and Privacy
SP - 392
EP - 410
BT - Proceedings - 2020 IEEE Symposium on Security and Privacy, SP 2020
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 41st IEEE Symposium on Security and Privacy, SP 2020
Y2 - 18 May 2020 through 21 May 2020
ER -