TY - GEN
T1 - User Customizable and Robust Geo-Indistinguishability for Location Privacy
AU - Pappachan, Primal
AU - Qiu, Chenxi
AU - Squicciarini, Anna
AU - Manjunath, Vishnu Sharma Hunsur
N1 - Publisher Copyright:
© 2023 Copyright held by the owner/author(s)
PY - 2023/3/20
Y1 - 2023/3/20
N2 - Geo-Indistinguishability (Geo-Ind), based on Differential Privacy, is a popular privacy notion of privacy used for protecting individual's location data. Existing approaches, to generate a Geo-Ind satisfying obfuscation function, rely on a server, as this generation is computationally expensive. As a result, these obfuscation functions are not modifiable by users and any customization will lead to weakening of the Geo-Ind privacy guarantees i.e., violation of constraints in the function. A non-customizable obfuscation function can map an individual to an undesirable location, leading to poor quality of service. We present a framework called CORGI, i.e., CustOmizable Robust Geo-Indistinguishability, which allows users to customize an obfuscation function and ensure it is robust i.e., after user customization only minimal number of Geo-Ind constraints are violated. The experimental results on a real-world dataset demonstrate the effectiveness of CORGI in generating obfuscation functions that are more robust against customization by users, e.g., removing 14.28% of locations from the range of the obfuscation function leads to 18.58% and 3.07% Geo-Indistinguishability constraint violations, when the obfuscation function is generated by prior approaches and CORGI respectively.
AB - Geo-Indistinguishability (Geo-Ind), based on Differential Privacy, is a popular privacy notion of privacy used for protecting individual's location data. Existing approaches, to generate a Geo-Ind satisfying obfuscation function, rely on a server, as this generation is computationally expensive. As a result, these obfuscation functions are not modifiable by users and any customization will lead to weakening of the Geo-Ind privacy guarantees i.e., violation of constraints in the function. A non-customizable obfuscation function can map an individual to an undesirable location, leading to poor quality of service. We present a framework called CORGI, i.e., CustOmizable Robust Geo-Indistinguishability, which allows users to customize an obfuscation function and ensure it is robust i.e., after user customization only minimal number of Geo-Ind constraints are violated. The experimental results on a real-world dataset demonstrate the effectiveness of CORGI in generating obfuscation functions that are more robust against customization by users, e.g., removing 14.28% of locations from the range of the obfuscation function leads to 18.58% and 3.07% Geo-Indistinguishability constraint violations, when the obfuscation function is generated by prior approaches and CORGI respectively.
UR - https://www.scopus.com/pages/publications/85165054667
UR - https://www.scopus.com/pages/publications/85165054667#tab=citedBy
U2 - 10.48786/edbt.2023.55
DO - 10.48786/edbt.2023.55
M3 - Conference contribution
AN - SCOPUS:85165054667
T3 - Advances in Database Technology - EDBT
SP - 658
EP - 670
BT - Proceedings of the 26th International Conference on Extending Database Technology, EDBT 2023
PB - OpenProceedings.org
T2 - 26th International Conference on Extending Database Technology, EDBT 2023
Y2 - 28 March 2023 through 31 March 2023
ER -