article

Free access

Security of statistical databases: multidimensional transformation

Author:

Jan SchlöerAuthors Info & Claims

ACM Transactions on Database Systems (TODS), Volume 5, Issue 4

Pages 467 - 492

https://doi.org/10.1145/320610.320645

Published: 01 December 1980 Publication History

Abstract

Statistical evaluation of databases which contain personal records may entail risks for the confidentiality of the individual records. The risk has increased with the availability of flexible interactive evaluation programs which permit the use of trackers, the most dangerous class of snooping tools known. A class of trackers, called union trackers, is described. They permit reconstruction of the entire database without supplementary knowledge and include the general tracker recently described as a special case. For many real statistical databases the overwhelming majority of definable sets of records will form trackers. For such databases a random search for a tracker is likely to succeed rapidly. Individual trackers are redefined and counted and their cardinalities are investigated. If there are n records in the database, then most individual trackers employ innocent cardinalities near n/3, making them difficult to detect. Disclosure with trackers usually requires little effort per retrieved data element.

References

[1]

CHIN, F.Y. Security in statistical databases for queries with smah counts. ACM Trans. Database Syst. 3,1 (March 1978), 92-104.

Digital Library

[2]

COX, L.H. Statistical disclosure in publication hierarchies. Proc. Sot. Stat. Sect. Am. Stat. Assoc. (1976), 130-136.

[3]

DALENILJS, T. Towards a methodology for statistical disclosure control. Stat. tic&&r. 15,5 (1977), 429-444.

[4]

DENNING, D.E. Are statistical databases secure? In Proc. AFIPS 1978 NCC, vol. 47, AFIPS Press, Arlington, Va., pp. 525-530.

[5]

DENNING, D.E. Secure statistical databases with random sample queries. CSD-TR-302, Dep. Computer Science, Purdue Univ., W. Lafayette, Ind., April 1979.

[6]

DENNING, D.E., DENNING, P.J., AND SCHWARTZ, M.D. The tracker: A threat to statistical database security. ACM Trans. Database Syst. 4, 1 (March 1979), 76-96.

Digital Library

[7]

DENNING, D.E., AND SCHLBRER, J. A fast procedure for finding a tracker in a statistical database. ACM Trans. Database Syst. 5,l (March 1980), 88-102.

Digital Library

[8]

DOBKIN, D., JONES, A.K., AND LIPTON, R. Secure databases: Protection against user influence. ACM Trans. Database Syst. 4,1 (March 1979), 97-106.

Digital Library

[9]

FANO, R.M. On the social role of computer communications. Proc. IEEE 60 (1972), 1249-1253.

[10]

FELLER, W. An Introduction to Probability Theory and its Applications, vol. I. Wiley, New York, 1968.

[11]

FELLEGI, I.P. On the question of statistical confidentiality J. Am. Stat. Assoc. 67, 337 (March 1972), 7-18.

[12]

FRANK, 0. An application of information theory to the problem of statistical disclosure. J. Stat. Plunn. Inference 2 (1978), 143-152.

[13]

HANSEN, M.H. Insuring confidentiality of individual records in data storage and retrieval for statistical purposes. In Proc. AFIPS 1971 FJCC, vol. 39, AFIPS Press, Arlington, Va., pp. 579- 585.

[14]

HAQ, M.I. Security in a statistical data base. Proc. Am. Sot. Znf Sci. 11 (1974), 33-39.

[15]

HAQ, M.I. Insuring individual's privacy from statistical data base users. In Proc. AFIPS 1975 NCC, vol. 44, AFIPS Press, Arlington, Va., pp. 941-946.

[16]

HOFFMAN, L.J., AND MILLER, W.F. Getting a personal dossier from a statistical data bank. Datanation 16,5 (May 1970), 74-75.

[17]

KAM, J.B., AND ULLMAN, J.D. A model of statistical databases and their security. ACM Trans. Database Syst. 51 (March 1977), l-10.

Digital Library

[18]

MUELLER, P.J. Datenschutz und Sicherung der Individualdaten der empirischen Sozialforschung. Datenverarb. Steuer, Wirtsch. Recht 3, 1 (Jan. 1974), 2-11.

[19]

NARGUNDKAR, MS., AND SAVELAND, W. Random-rounding: A means of preventing disclosure of information about individual respondents in aggregate data. Statistics Canada, Ottawa, July 1972.

[20]

PALME, J. Software security. Datumation 20,l (Jan. 1974), 51-55.

[21]

REISS, S.P. Medians and database security. In Foundations of Secure Computation, R.A. DeMiUo, D. Dobkin, A.K. Jones, and R.J. Lipton, Eds. Academic Press, New York, 1978, pp. 57- 91.

[22]

SCHLRER, J. Identification and retrieval of personal records from a statistical data bank. Methods Znf Med. 14,l (Jan. 1975), 7-13.

[23]

SCHLRER, J. Confidentiality of statistical records A threat-monitoring scheme for on line dialogue. Methods Inf. Med. 15, 1 (Jan. 1976), 36-42.

[24]

SCHLRER, J. Zum Statistikgeheimnis: Riiken und Schutz statistischer Datenbanken. Datenverarb. Recht 5,3 (1976), 203-248.

[25]

SCHLRER, J. Union tracker and open statistical databases. Rep. TB-IMSD l/78, Inst. fiir Medizinische Statistikund Dokumentation, Univ. Giessen, Giessen, W. Germany, June 1978.

[26]

SCHWARTZ, M.D. Inference from statistical data bases. Ph.D. Dissertation, Dep. Computer Science, Purdue Univ., W. Lafayette, Ind., Aug. 1977.

Digital Library

[27]

SCHWARTZ, M.D., DENNING, D.E., AND DENNING, P.J. Linear queries in statistical databases. ACM Trans. Database Syst. 4,2 (June 1979), 156-167.

Digital Library

[28]

SELBMANN, H.K. Bitstring processing for statistical evaluation of large volumes of medical data. Methods Znf Med. 13,2 (April 1974), 61-64.

[29]

SELBMANN, H.K., AND RAAB, A. SAVOD-Q Anwendungshandbuch. TB-3, Inst. Med. Informationsv. Statist. Biomath., Univ. Miinchen, 1978.

[30]

SUNDGREN, B. Security and privacy of statistical databases. Stat. tidskr. 10,4 (1972), 299-312.

[31]

WYNN, H.P. Freedom of statistical information. J. R. Stat. Sot. A 141, 1 (1978), l-13.

[32]

Yu, C.T., AND CHIN, F.Y. A study on the protection of statistical data bases. In Proc. ACM SZGMOD Znt. Conf Management of Data, Toronto, 1977, pp. 169-181.

Digital Library

Cited By

Domingo-Ferrer J(2018)Inference Control in Statistical DatabasesEncyclopedia of Database Systems10.1007/978-1-4614-8265-9_203(1916-1920)Online publication date: 7-Dec-2018
https://doi.org/10.1007/978-1-4614-8265-9_203
Deng XMirkovic J(2017)Commoner Privacy And A Study On Network TracesProceedings of the 33rd Annual Computer Security Applications Conference10.1145/3134600.3134602(566-576)Online publication date: 4-Dec-2017
https://dl.acm.org/doi/10.1145/3134600.3134602
Domingo-Ferrer J(2016)Inference Control in Statistical DatabasesEncyclopedia of Database Systems10.1007/978-1-4899-7993-3_203-2(1-5)Online publication date: 25-Oct-2016
https://doi.org/10.1007/978-1-4899-7993-3_203-2
Show More Cited By

Index Terms

Security of statistical databases: multidimensional transformation

Recommendations

The tracker: a threat to statistical database security

The query programs of certain databases report raw statistics for query sets, which are groups of records specified implicitly by a characteristic formula. The raw statistics include query set size and sums of powers of values in the query set. Many ...
A fast procedure for finding a tracker in a statistical database

To avoid trivial compromises, most on-line statistical databases refuse to answer queries for statistics about small subgroups. Previous research discovered a powerful snooping tool, the tracker, with which the answers to these unanswerable queries are ...
Security of statistical databases: multidimensional transformation

The concept of multidimensional transformation of statistical databases is described. A given set of statistical output may be compatible with more than one statistical database. A transformed database D' is a database which (1) differs from the ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Transactions on Database Systems

ACM Transactions on Database Systems Volume 5, Issue 4

Dec. 1980

128 pages

ISSN:0362-5915

EISSN:1557-4644

DOI:10.1145/320610

Editor:
David K. Hsiao
Ohio State Univ., Columbus

Issue’s Table of Contents

Copyright © 1980 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 01 December 1980

Published in TODS Volume 5, Issue 4

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

35
Total Citations
View Citations
822
Total Downloads

Downloads (Last 12 months)62
Downloads (Last 6 weeks)6

Reflects downloads up to 18 Feb 2025

Other Metrics

View Author Metrics

Citations

Cited By

Domingo-Ferrer J(2018)Inference Control in Statistical DatabasesEncyclopedia of Database Systems10.1007/978-1-4614-8265-9_203(1916-1920)Online publication date: 7-Dec-2018
https://doi.org/10.1007/978-1-4614-8265-9_203
Deng XMirkovic J(2017)Commoner Privacy And A Study On Network TracesProceedings of the 33rd Annual Computer Security Applications Conference10.1145/3134600.3134602(566-576)Online publication date: 4-Dec-2017
https://dl.acm.org/doi/10.1145/3134600.3134602
Domingo-Ferrer J(2016)Inference Control in Statistical DatabasesEncyclopedia of Database Systems10.1007/978-1-4899-7993-3_203-2(1-5)Online publication date: 25-Oct-2016
https://doi.org/10.1007/978-1-4899-7993-3_203-2
Domingo-Ferrer JSánchez DHajian S(2015)Database PrivacyPrivacy in a Digital, Networked World10.1007/978-3-319-08470-1_2(9-35)Online publication date: 14-Oct-2015
https://doi.org/10.1007/978-3-319-08470-1_2
Yang YLi YWeng JZhou JBao F(2009)Self-enforcing Private Inference ControlProceedings of the 3rd International Conference on Provable Security10.1007/978-3-642-04642-1_21(260-274)Online publication date: 10-Nov-2009
https://dl.acm.org/doi/10.1007/978-3-642-04642-1_21
Domingo-Ferrer J(2009)Inference Control in Statistical DatabasesEncyclopedia of Database Systems10.1007/978-0-387-39940-9_203(1472-1476)Online publication date: 2009
https://doi.org/10.1007/978-0-387-39940-9_203
Domingo-Ferrer J(2007)A three-dimensional conceptual framework for database privacyProceedings of the 4th VLDB conference on Secure data management10.5555/1780014.1780032(193-202)Online publication date: 23-Sep-2007
https://dl.acm.org/doi/10.5555/1780014.1780032
Yang YLi YDeng R(2007)New paradigm of inference control with trusted computingProceedings of the 21st annual IFIP WG 11.3 working conference on Data and applications security10.5555/1770560.1770585(243-258)Online publication date: 8-Jul-2007
https://dl.acm.org/doi/10.5555/1770560.1770585
Domingo-Ferrer J(2007)A Three-Dimensional Conceptual Framework for Database PrivacySecure Data Management10.1007/978-3-540-75248-6_14(193-202)Online publication date: 2007
https://doi.org/10.1007/978-3-540-75248-6_14
Yang YLi YDeng R(2007)New Paradigm of Inference Control with Trusted ComputingData and Applications Security XXI10.1007/978-3-540-73538-0_18(243-258)Online publication date: 2007
https://doi.org/10.1007/978-3-540-73538-0_18
Show More Cited By

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Article

Figures

Tables

Media

View Issue’s Table of Contents