Records Access and Management
US-2024419838-A1 · Dec 19, 2024 · US
Method and apparatus for utility-aware privacy preserving mapping against inference attacks
US2016203333A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2016203333-A1 |
| Application number | US-201314912639-A |
| Country | US |
| Kind code | A1 |
| Filing date | Nov 21, 2013 |
| Priority date | Aug 20, 2012 |
| Publication date | Jul 14, 2016 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
The present principles focus on the privacy-utility tradeoff encountered by a user who wishes to release some public data (denoted by X) to an analyst, that is correlated with his private data (denoted by S), in the hope of getting some utility. The public data is distorted before its release according to a probabilistic privacy preserving mapping mechanism, which limits information leakage under utility constraints. In particular, this probabilistic privacy mechanism is modeled as a conditional distribution, P_(Y|X), where Y is the actual released data to the analyst. The present principles design utility-aware privacy preserving mapping mechanisms against inference attacks, when only partial, or no, statistical knowledge of the prior distribution, P_(S,X), is available. Specifically, using maximal correlation techniques, the present principles provide a separability result on the information leakage that leads to the design of the privacy preserving mapping.
First claim
Opening claim text (preview).
1 . A method for processing user data for a user, comprising: accessing the user data, which includes private data and public data, the private data corresponding to a first category of data, and the public data corresponding to a second category of data; decoupling dependencies between the first category of data and the second category of data, from dependencies between the second category of data and released data; determining a privacy preserving mapping that maps the second category of data to the released data responsive the dependencies between the second category of data and the released data; modifying the public data for the user based on the privacy preserving mapping; and releasing the modified data to at least one of a service provider and a data collecting agency. 2 . The method of claim 1 , wherein the public data comprises data that the user has indicated can be publicly released, and the private data comprises data that the user has indicated is not to be publicly released. 3 . The method of claim 1 , further comprising the step of: determining the dependencies between the first category of data and the second category of data responsive to mutual information between the first category of data and the second category of data. 4 . The method of claim 1 , wherein the steps of decoupling and determining a privacy preserving mapping are based on maximal correlation techniques. 5 . The method of claim 1 , further comprising the step of: accessing a constraint on utility, the utility being responsive to the second category of data and the released data, wherein the step of determining a privacy preserving mapping is further responsive to the utility constraint. 6 . The method of claim 1 , wherein the determining a privacy preserving mapping comprises: minimizing the maximum information leakage between the first category of data and the released data. 7 . The method of claim 1 , further comprising the step of: accessing statistical information based on the second category of data from other users, wherein the statistical information is used to determine the privacy preserving mapping. 8 . The method of claim 7 , wherein the step of determining comprises determining independently of a joint distribution between the first category of data and the second category of data. 9 . The method of claim 7 , wherein the step of determining comprises determining independently of a marginal distribution of the second category of data. 10 . The method of claim 1 , further comprising the step of receiving service based on the released distorted data. 11 . An apparatus for processing user data for a user, comprising: a processor configured to access the user data, which includes private data and public data, the private data corresponding to a first category of data, and the public data corresponding to a second category of data a privacy preserving mapping decision module coupled to the processor and configured to decouple dependencies between the first category of data and the second category of data, from dependencies between the second category of data and released data, and determine a privacy preserving mapping that maps the second category of data to the released data responsive the dependencies between the second category of data and released data; a privacy preserving module configured to modify the public data for the user based on the privacy preserving mapping, and release the modified data to at least one of a service provider and a data collecting agency. 12 . The apparatus of claim 11 , wherein the public data comprises data that the user has indicated can be publicly released, and the private data comprises data that the user has indicated is not to be publicly released. 13 . The apparatus of claim 11 , wherein the privacy preserving mapping decision module determines the dependencies between the first category of data and the second category of data responsive to mutual information between the first category of data and the second category of data. 14 . The apparatus of claim 11 , wherein the privacy preserving mapping decision module decouple dependencies and determines a privacy preserving mapping based on maximal correlation techniques. 15 . The apparatus of claim 11 , wherein the privacy preserving mapping decision module accesses a constraint on utility, the utility being responsive to the second category of data and the released data, and determines the privacy preserving mapping responsive to the utility constraint. 16 . The apparatus of claim 11 , wherein the privacy preserving mapping decision module minimizes the maximum information leakage between the first category of data and the released data. 17 . The apparatus of claim 11 , wherein the privacy preserving mapping decision module accesses statistical information based on the second category of data from other users, wherein the statistical information is used to determine the privacy preserving mapping. 18 . The apparatus of claim 17 , wherein the privacy preserving mapping decision module determines the privacy preserving mapping independently of a joint distribution between the first category of data and the second category of data. 19 . The method of claim 17 , wherein the privacy preserving mapping decision module determines the privacy preserving mapping independently of a marginal distribution of the second category of data. 20 . The apparatus of claim 11 , further comprising a processor configured to receive service based on the released distorted data. 21 . (canceled)
Assignees
Inventors
Classifications
- G06F21/6245Primary
Protecting personal data, e.g. for financial or medical purposes · CPC title
Physics · mapped topic
Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII] · CPC title
wherein the identity of one or more communicating identities is hidden (cryptographic mechanisms or cryptographic arrangements for anonymous credentials or for identity based cryptographic systems H04L9/00) · CPC title
Inheriting rights or properties, e.g., propagation of permissions or restrictions within a hierarchy · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2016203333A1 cover?
- The present principles focus on the privacy-utility tradeoff encountered by a user who wishes to release some public data (denoted by X) to an analyst, that is correlated with his private data (denoted by S), in the hope of getting some utility. The public data is distorted before its release according to a probabilistic privacy preserving mapping mechanism, which limits information leakage und…
- Who is the assignee on this patent?
- Thomson Licensing
- What technology area does this patent fall under?
- Primary CPC classification G06F21/6245. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Jul 14 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).