research-article

Preventing velocity-based linkage attacks in location-aware applications

Authors:

Gabriel Ghinita,

Maria Luisa Damiani,

Claudio Silvestri,

Elisa BertinoAuthors Info & Claims

GIS '09: Proceedings of the 17th ACM SIGSPATIAL International Conference on Advances in Geographic Information Systems

Pages 246 - 255

https://doi.org/10.1145/1653771.1653807

Published: 04 November 2009 Publication History

Abstract

Mobile devices with positioning capabilities allow users to participate in novel and exciting location-based applications. For instance, users may track the whereabouts of their acquaintances in location-aware social networking applications, e.g., GoogleLatitude. Furthermore, users can request information about landmarks in their proximity. Such scenarios require users to report their coordinates to other parties, which may not be fully trusted. Reporting precise locations may result in serious privacy violations, such as disclosure of lifestyle details, sexual orientation, etc. A typical approach to preserve location privacy is to generate a cloaking region (CR) that encloses the user position. However, if locations are continuously reported, an attacker can correlate CRs from multiple timestamps to accurately pinpoint the user position within a CR.

In this work, we protect against linkage attacks that infer exact locations based on prior knowledge about maximum user velocity. Assume user u who reports two consecutive cloaked regions A and B. We consider two distinct protection scenarios: in the first case, the attacker does not have information about the sensitive locations on the map, and the objective is to ensure that u can reach some point in B from any point in A. In the second case, the attacker knows the placement of sensitive locations, and the objective is to ensure that u can reach any point in B from any point in A. We propose spatial and temporal cloaking transformations to preserve user privacy, and we show experimentally that privacy can be achieved without significant quality of service deterioration.

References

[1]

M. J. Atallah. Algorithms and Theory of Computation Handbook. CRC Press, 1998.

Digital Library

[2]

R. Cheng, Y. Zhang, E. Bertino, and S. Prahbakar. Preserving User Location Privacy in Mobile Data Management Infrastructures. In Privacy Enhancing Technologies (PET), 2006.

Digital Library

[3]

C.-Y. Chow and M. F. Mokbel. Enabling Private Continuous Queries for Revealed User Locations. In SSTD, pages 258--275, 2007.

Digital Library

[4]

M. Damiani, E. Bertino, and C. Silvestri. Protecting Location Privacy against Spatial Inferences: the PROBE Approach. 2nd ACM GIS Intl. Workshop on Security and Privacy in GIS and LBS, 2009.

Digital Library

[5]

M. de Berg, M. van Kreveld, M. Overmars, and O. Schwarzkopf. Computational Geometry: Algorithms and Applications. Springer-Verlag, 2nd edition, 2000.

Digital Library

[6]

Fox News. Man Accused of Stalking Ex-Girlfriend With GPS. http://www.foxnews.com/story/0,2933,131487,00.html. Sep 04, 2004.

[7]

B. Gedik and L. Liu. Location Privacy in Mobile Systems: A Personalized Anonymization Model. In ICDCS, 2005.

Digital Library

[8]

G. Ghinita, P. Kalnis, A. Khoshgozaran, C. Shahabi, and K. L. Tan. Private Queries in Location Based Services: Anonymizers are not Necessary. In SIGMOD, 2008.

Digital Library

[9]

M. Gruteser and D. Grunwald. Anonymous Usage of Location-Based Services Through Spatial and Temporal Cloaking. In Proc. of USENIX MobiSys, 2003.

Digital Library

[10]

M. Gruteser and X. Liu. Protecting Privacy in Continuous Location-Tracking Applications. IEEE Security and Privacy, 2:28--34, 2004.

Digital Library

[11]

J. Henrikson. Completeness and Total Boundedness of the Hausdorff Metric. MIT Undergraduate Journal of Mathematics

[12]

P. Kalnis, G. Ghinita, K. Mouratidis, and D. Papadias. Preserving Location-based Identity Inference in Anonymous Spatial Queries. IEEE TKDE, 19(12), 2007.

Digital Library

[13]

A. Khoshgozaran and C. Shahabi. Blind Evaluation of Nearest Neighbor Queries Using Space Transformation to Preserve Location Privacy. In SSTD, 2007.

Digital Library

[14]

H. Kido, Y. Yanagisawa, and T. Satoh. An anonymous communication technique using dummies for location-based services. In International Conference on Pervasive Services (ICPS), pages 88--97, 2005.

[15]

M. F. Mokbel, C. Y. Chow, and W. G. Aref. The New Casper: Query Processing for Location Services without Compromising Privacy. In Proc. of VLDB, 2006.

Digital Library

[16]

M. L. Yiu, C. Jensen, X. Huang, and H. Lu. SpaceTwist: Managing the Trade-Offs Among Location Privacy, Query Performance, and Query Accuracy in Mobile Services. In International Conference on Data Engineering (ICDE), pages 366--375, 2008.

Digital Library

Cited By

Yadav SYu CXie XHuang YQiu C(2024)Protecting Vehicle Location Privacy with Contextually-Driven Synthetic Location GenerationProceedings of the 32nd ACM International Conference on Advances in Geographic Information Systems10.1145/3678717.3691211(29-41)Online publication date: 29-Oct-2024
https://dl.acm.org/doi/10.1145/3678717.3691211
Meteriz-Yildiran UYildiran NKim JMohaisen D(2024)Learning Location From Shared Elevation Profiles in Fitness Apps: A Privacy PerspectiveIEEE Transactions on Mobile Computing10.1109/TMC.2022.321814823:1(581-596)Online publication date: Jan-2024
https://doi.org/10.1109/TMC.2022.3218148
Ma ZXu SLiu BCao J(2023)LPP2KL: Online Location Privacy Protection Against Knowing-and-Learning Attacks for LBSsIEEE Transactions on Computational Social Systems10.1109/TCSS.2022.314207810:1(234-245)Online publication date: Feb-2023
https://doi.org/10.1109/TCSS.2022.3142078
Show More Cited By

Index Terms

Preventing velocity-based linkage attacks in location-aware applications
1. Information systems
  1. Data management systems
  2. Information systems applications

Recommendations

Protecting Against Velocity-Based, Proximity-Based, and External Event Attacks in Location-Centric Social Networks
Invited Papers from ACM SIGSPATIAL

Mobile devices with positioning capabilities allow users to participate in novel and exciting location-based applications. For instance, users may track the whereabouts of their acquaintances in location-aware social networking applications (e.g., ...
A privacy-aware location cloaking technique reducing bandwidth consumption in location-based services
QUeST '12: Proceedings of the Third ACM SIGSPATIAL International Workshop on Querying and Mining Uncertain Spatio-Temporal Data

The explosive growth of location-detection devices, such as GPS (Global Positioning System), continuously increases users' privacy threat in location-based services (LBSs). However, in order to enjoy such services, the user must precisely disclose his/...
Protecting location privacy using location semantics
KDD '11: Proceedings of the 17th ACM SIGKDD international conference on Knowledge discovery and data mining

As the use of mobile devices increases, a location-based service (LBS) becomes increasingly popular because it provides more convenient context-aware services. However, LBS introduces problematic issues for location privacy due to the nature of the ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

GIS '09: Proceedings of the 17th ACM SIGSPATIAL International Conference on Advances in Geographic Information Systems

November 2009

575 pages

ISBN:9781605586496

DOI:10.1145/1653771

General Chairs:
Ouri Wolfson
University of Illinois at Chicago
,
Divyakant Agrawal
University of California, Santa Barbara
,
Chang-Tien Lu
Virginia Tech

Copyright © 2009 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGSPATIAL: ACM Special Interest Group on Spatial Information

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 04 November 2009

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Funding Sources

National Science Foundation

Conference

GIS '09

Sponsor:

SIGSPATIAL

GIS '09: 17th SIGSPATIAL International Conference on Advances in Geographic Information Systems

November 4 - 6, 2009

Washington, Seattle

Acceptance Rates

Overall Acceptance Rate 257 of 1,238 submissions, 21%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

81
Total Citations
View Citations
86
Total Downloads

Downloads (Last 12 months)11
Downloads (Last 6 weeks)4

Reflects downloads up to 23 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

Yadav SYu CXie XHuang YQiu C(2024)Protecting Vehicle Location Privacy with Contextually-Driven Synthetic Location GenerationProceedings of the 32nd ACM International Conference on Advances in Geographic Information Systems10.1145/3678717.3691211(29-41)Online publication date: 29-Oct-2024
https://dl.acm.org/doi/10.1145/3678717.3691211
Meteriz-Yildiran UYildiran NKim JMohaisen D(2024)Learning Location From Shared Elevation Profiles in Fitness Apps: A Privacy PerspectiveIEEE Transactions on Mobile Computing10.1109/TMC.2022.321814823:1(581-596)Online publication date: Jan-2024
https://doi.org/10.1109/TMC.2022.3218148
Ma ZXu SLiu BCao J(2023)LPP2KL: Online Location Privacy Protection Against Knowing-and-Learning Attacks for LBSsIEEE Transactions on Computational Social Systems10.1109/TCSS.2022.314207810:1(234-245)Online publication date: Feb-2023
https://doi.org/10.1109/TCSS.2022.3142078
Tsubouchi KMiyazaki T(2023)Permission Method for Use of Smartphone Location Data with Emphasis on Users' Understanding2023 IEEE International Conference on Pervasive Computing and Communications Workshops and other Affiliated Events (PerCom Workshops)10.1109/PerComWorkshops56833.2023.10150409(398-403)Online publication date: 13-Mar-2023
https://doi.org/10.1109/PerComWorkshops56833.2023.10150409
Alkanjr BMahgoub I(2023)A Novel Deception-Based Scheme to Secure the Location Information for IoBT EntitiesIEEE Access10.1109/ACCESS.2023.324413811(15540-15554)Online publication date: 2023
https://doi.org/10.1109/ACCESS.2023.3244138
Abul O(2022)Location-privacy preserving partial nearby friends querying in urban areasData & Knowledge Engineering10.1016/j.datak.2022.102006139:COnline publication date: 1-May-2022
https://dl.acm.org/doi/10.1016/j.datak.2022.102006
Zhan YLi LQian YMa CDing MLiu B(2021)A Hybrid Spatiotemporal Attack in Continuous LBS Queries2021 IEEE International Conferences on Internet of Things (iThings) and IEEE Green Computing & Communications (GreenCom) and IEEE Cyber, Physical & Social Computing (CPSCom) and IEEE Smart Data (SmartData) and IEEE Congress on Cybermatics (Cybermatics)10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics53846.2021.00039(174-181)Online publication date: Dec-2021
https://doi.org/10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics53846.2021.00039
Wen RZhang RPeng KWang C(2021)Protecting Locations with Differential Privacy against Location-Dependent Attacks in Continuous LBS Queries2021 IEEE 20th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom)10.1109/TrustCom53373.2021.00065(379-386)Online publication date: Oct-2021
https://doi.org/10.1109/TrustCom53373.2021.00065
Zhao PJiang HLi JXiao ZLiu DRen JGuo D(2021)Garbage In, Garbage Out: Poisoning Attacks Disguised With Plausible Mobility in Data AggregationIEEE Transactions on Network Science and Engineering10.1109/TNSE.2021.31039198:3(2679-2693)Online publication date: 1-Jul-2021
https://doi.org/10.1109/TNSE.2021.3103919
Cao YXiao YXiong LBai LYoshikawa M(2021)Protecting Spatiotemporal Event Privacy in Continuous Location-Based ServicesIEEE Transactions on Knowledge and Data Engineering10.1109/TKDE.2019.296331233:8(3141-3154)Online publication date: 1-Aug-2021
https://doi.org/10.1109/TKDE.2019.2963312
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Media

Figures

Other

Tables

View Table of Contents