TY - GEN
T1 - Distributed privacy-preserving methods for statistical disclosure control
AU - Herranz, Javier
AU - Nin, J.
AU - Torra, Vicenç
PY - 2010
Y1 - 2010
N2 - Statistical disclosure control (SDC) methods aim to protect privacy of the confidential information included in some databases, for example by perturbing the non-confidential parts of the original databases. Such methods are commonly used by statistical agencies before publishing the perturbed data, which must ensure privacy at the same time as it preserves as much as possible the statistical information of the original data. In this paper we consider the problem of designing distributed privacy-preserving versions of these perturbation methods: each part of the original database is owned by a different entity, and they want to jointly compute the perturbed version of the global database, without leaking any sensitive information on their individual parts of the original data. We show that some perturbation methods do not allow a private distributed extension, whereas other methods do. Among the methods that allow a distributed privacy-preserving version, we can list noise addition, resampling and a new protection method, rank shuffling, which is described and analyzed here for the first time.
AB - Statistical disclosure control (SDC) methods aim to protect privacy of the confidential information included in some databases, for example by perturbing the non-confidential parts of the original databases. Such methods are commonly used by statistical agencies before publishing the perturbed data, which must ensure privacy at the same time as it preserves as much as possible the statistical information of the original data. In this paper we consider the problem of designing distributed privacy-preserving versions of these perturbation methods: each part of the original database is owned by a different entity, and they want to jointly compute the perturbed version of the global database, without leaking any sensitive information on their individual parts of the original data. We show that some perturbation methods do not allow a private distributed extension, whereas other methods do. Among the methods that allow a distributed privacy-preserving version, we can list noise addition, resampling and a new protection method, rank shuffling, which is described and analyzed here for the first time.
KW - Homomorphic encryption
KW - Privacy
KW - Statistical disclosure control
UR - http://www.scopus.com/inward/record.url?scp=77951599720&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-11207-2_4
DO - 10.1007/978-3-642-11207-2_4
M3 - Conference contribution
AN - SCOPUS:77951599720
SN - 3642112064
SN - 9783642112065
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 33
EP - 47
BT - Data Privacy Management and Autonomous Spontaneous Security - 4th International Workshop, DPM 2009, and Second International Workshop, SETOP 2009, Revised Selected Papers
T2 - 4th International Workshop on Data Privacy Management, DPM 2009, and 2nd International Workshop on Autonomous and Spontaneous Security, SETOP 2009
Y2 - 24 September 2009 through 25 September 2009
ER -