TY - GEN
T1 - Frequency-based Randomization for Guaranteeing Differential Privacy in Spatial Trajectories
AU - Jin, Fengmei
AU - Hua, Wen
AU - Ruan, Boyu
AU - Zhou, Xiaofang
N1 - Funding Information:
ACKNOWLEDGMENT This work was partially supported by the Australian Research Council (DP200103650 and LP180100018) and the Natural Science Foundation of China (Grant No. 62072125).
Publisher Copyright:
© 2022 IEEE.
PY - 2022/8/2
Y1 - 2022/8/2
N2 - With the popularity of GPS-enabled devices, a huge amount of trajectory data has been continuously collected and a variety of location-based services have been developed that greatly benefit our daily life. However, the released trajectories also bring severe concern on personal privacy, and several recent studies have demonstrated the existence of personally-identifying information in spatial trajectories. Trajectory anonymization is nontrivial due to the trade-off between privacy protection and utility preservation. Furthermore, recovery attack has not been well studied in the current literature. To tackle these issues, we propose a frequency-based randomization model with a rigorous differential privacy guarantee for trajectory data publishing. In particular, we introduce two randomized mechanisms to perturb the local/global frequency distributions of significantly important locations in trajectories by injecting Laplace noise. We design a hierarchical indexing along with a novel search algorithm to support efficient trajectory modification, ensuring the modified trajectories satisfy the perturbed distributions without compromising privacy guarantee or data utility. Extensive experiments on a real-world trajectory dataset verify the effectiveness of our approaches in resisting individual re-identification and recovery attacks, and meanwhile preserving desirable data utility as well as the feasibility in practice.
AB - With the popularity of GPS-enabled devices, a huge amount of trajectory data has been continuously collected and a variety of location-based services have been developed that greatly benefit our daily life. However, the released trajectories also bring severe concern on personal privacy, and several recent studies have demonstrated the existence of personally-identifying information in spatial trajectories. Trajectory anonymization is nontrivial due to the trade-off between privacy protection and utility preservation. Furthermore, recovery attack has not been well studied in the current literature. To tackle these issues, we propose a frequency-based randomization model with a rigorous differential privacy guarantee for trajectory data publishing. In particular, we introduce two randomized mechanisms to perturb the local/global frequency distributions of significantly important locations in trajectories by injecting Laplace noise. We design a hierarchical indexing along with a novel search algorithm to support efficient trajectory modification, ensuring the modified trajectories satisfy the perturbed distributions without compromising privacy guarantee or data utility. Extensive experiments on a real-world trajectory dataset verify the effectiveness of our approaches in resisting individual re-identification and recovery attacks, and meanwhile preserving desirable data utility as well as the feasibility in practice.
KW - differential privacy
KW - frequency randomization
KW - hierarchical grid index
KW - recovery attack
KW - reidentification attack
UR - http://www.scopus.com/inward/record.url?scp=85136425113&partnerID=8YFLogxK
U2 - 10.1109/ICDE53745.2022.00175
DO - 10.1109/ICDE53745.2022.00175
M3 - Conference article published in proceeding or book
AN - SCOPUS:85136425113
T3 - Proceedings - International Conference on Data Engineering
SP - 1727
EP - 1739
BT - Proceedings - 2022 IEEE 38th International Conference on Data Engineering, ICDE 2022
PB - IEEE Computer Society
T2 - 38th IEEE International Conference on Data Engineering, ICDE 2022
Y2 - 9 May 2022 through 12 May 2022
ER -