Abstract
Anonymization provides a mechanism for sharing data while obscuring private/sensitive values within the shared data. However, anonymization for sharing also sets up a fundamental tradeoff – the stronger the anonymization protection, the less information remains for analysis. This privacy/analysis tradeoff has been descriptively acknowledged by many researchers but no one has yet attempted to quantify this tradeoff. We perform anonymization options on network packet traces and make empirical measurements using IDS alarms as an indicator for security analysis capability. Preliminary results show most packet fields have unexpected complex tradeoffs while only two fields exhibiting the classic zero sum tradeoff.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
LBNL/ICSI Enterprise Tracing Project, http://www.icir.org/enterprise-tracing/
Lundin, R., Jonsson, E.: Privacy vs Intrusion Detection Analysis. In: International Symposium on Recent Advances in Intrusion Detection (RAID) (1999)
Rastogi, V., Suciu, D., Hong, S.: The Boundary Between Privacy and Utility in Data Publishing. In: Very Large Data Bases (VLDB) Conference (2007)
Sobirey, M., Fischer-Hubner, S., Rannenberg, K.: Pseudonymous Audit for Privacy Enhanced Intrusion Detection. In: 13th International Information Security Conference (1997)
Yurcik, W., et al.: SCRUB-tcpdump: A Multi-Level Packet Anonymizer Demonstrating Privacy/Analysis Tradeoffs. In: 3rd IEEE International Workshop on the Value of Security through Collaboration (SECOVAL) (2007)
Yurcik, W., et al.: Toward Trusted Sharing of Network Packet Traces Using Anonymization: Single-Field Privacy/Analysis Tradeoffs. ACM Computing Research Repository (CoRR) Technical Report cs.CR/0710.3979v1 (2007)
Author information
Authors and Affiliations
Editor information
Rights and permissions
Copyright information
© 2008 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Yurcik, W., Woolam, C., Hellings, G., Khan, L., Thuraisingham, B. (2008). Making Quantitative Measurements of Privacy/Analysis Tradeoffs Inherent to Packet Trace Anonymization. In: Tsudik, G. (eds) Financial Cryptography and Data Security. FC 2008. Lecture Notes in Computer Science, vol 5143. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-85230-8_33
Download citation
DOI: https://doi.org/10.1007/978-3-540-85230-8_33
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-85229-2
Online ISBN: 978-3-540-85230-8
eBook Packages: Computer ScienceComputer Science (R0)