TU Darmstadt / ULB / TUbiblio

You are AIRing too much: Assessing the privacy of users in crowdsourcing environmental data

Mineraud, Julien ; Lancerin, Federico ; Balasubramaniam, Sasitharan ; Conti, Mauro ; Tarkoma, Sasu (2015)
You are AIRing too much: Assessing the privacy of users in crowdsourcing environmental data.
Helsinki, Finland
Konferenzveröffentlichung, Bibliographie

Kurzbeschreibung (Abstract)

With the availability of inexpensive sensors, the attractiveness of participatory sensing has tremendously increased in the last decade. However, when sensing is performed with devices owned by individuals, it raises several privacy issues with respect to the data producers, and hence reduces the incentive to contribute to the service. In this paper, we evaluate the extent to which a malicious server in a crowdsourcing air quality monitoring service can track the locations of users that contribute to the service. The participants periodically send information, such as temperature, relative humidity, carbon monoxide, and luminosity of their surrounding, using an off-the-shelf sensor connected to their mobile phones. The participants also send their coarse-grain location (i.e., disclosing the ID of the cell tower to which their mobile is coupled) along with the air quality data. We evaluate the precision with which the attacker can track the participants using only air quality data. We perform a thorough analysis of the attack and show that it can accurately discover the destination of the users up to a precision of 97% (in the most ideal condition).

Typ des Eintrags: Konferenzveröffentlichung
Erschienen: 2015
Autor(en): Mineraud, Julien ; Lancerin, Federico ; Balasubramaniam, Sasitharan ; Conti, Mauro ; Tarkoma, Sasu
Art des Eintrags: Bibliographie
Titel: You are AIRing too much: Assessing the privacy of users in crowdsourcing environmental data
Sprache: Deutsch
Publikationsjahr: August 2015
Buchtitel: The 14th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-15)
Veranstaltungsort: Helsinki, Finland
Kurzbeschreibung (Abstract):

With the availability of inexpensive sensors, the attractiveness of participatory sensing has tremendously increased in the last decade. However, when sensing is performed with devices owned by individuals, it raises several privacy issues with respect to the data producers, and hence reduces the incentive to contribute to the service. In this paper, we evaluate the extent to which a malicious server in a crowdsourcing air quality monitoring service can track the locations of users that contribute to the service. The participants periodically send information, such as temperature, relative humidity, carbon monoxide, and luminosity of their surrounding, using an off-the-shelf sensor connected to their mobile phones. The participants also send their coarse-grain location (i.e., disclosing the ID of the cell tower to which their mobile is coupled) along with the air quality data. We evaluate the precision with which the attacker can track the participants using only air quality data. We perform a thorough analysis of the attack and show that it can accurately discover the destination of the users up to a precision of 97% (in the most ideal condition).

Freie Schlagworte: ICRI-SC
ID-Nummer: TUD-CS-2015-1224
Fachbereich(e)/-gebiet(e): Profilbereiche > Cybersicherheit (CYSEC)
Profilbereiche
Hinterlegungsdatum: 31 Dez 2016 00:01
Letzte Änderung: 16 Mai 2018 12:47
PPN:
Export:
Suche nach Titel in: TUfind oder in Google
Frage zum Eintrag Frage zum Eintrag

Optionen (nur für Redakteure)
Redaktionelle Details anzeigen Redaktionelle Details anzeigen