Gergely Acs
ABSTRACT
This paper considers the problem of resource monitoring. We consider the scenario where an adversary is physically monitoring on the resource access, such as the electricity line or gas pipeline, of a user in order to learn private information about his victim. Recent works, in the context of smart metering, have shown that a motivated adversary can basically profile a user or a family solely from his electricity traces. However, these works only consider the case of a semi-honest-but-non-intrusive adversary that is only trying to learn information from the consumption reports sent by the user.
This paper, instead, considers the much more challenging case of a intrusive semi-honest adversary, i.e. a semi-honest adversary that is in addition physically monitoring the resource by modifying the distribution network. We aim at answering to the following question: is it possible to design a resource distribution scheme that prevents resource monitoring and provides strong protection? This paper proposes and analyzes several possible solutions. The proposed solutions provide different privacy bounds and performance results.
- U.S. Department of Energy prepared by Litos Strategic Communication. The Smart Grid: An introduction. http://www.oe.energy.gov/DocumentsandMedia/DOE_SG_Book_Single_Pages.pdf.Google Scholar
- A. Acquisti, R. Dingledine, and P. Syverson. On the economics of anonymity. In Financial Cryptography, 2003.Google ScholarCross Ref
- G. Acs and C. Castelluccia. I have a DREAM! (DiffeRentially privatE smArt Metering. In Proceedings of Information Hiding Conference, 2011. Google ScholarDigital Library
- R. Anderson and S. Fuloria. On the security economics of electricity metering. In Proceedings of the WEIS, June 2010.Google Scholar
- R. Anderson and S. Fuloria. Who controls the off switch? In Proceedings of the IEEE SmartGridComm, June 2010.Google ScholarCross Ref
- J.-M. Bohli, C. Sorge, and O. Ugus. A Privacy Model for Smart Metering. In Proceedings of IEEE ICC, 2010.Google ScholarCross Ref
- D. Chaum. Untraceable electronic mail, return addresses and digital pseudonyms. Communications of the ACM, 24(2):84--88, February 1981. Google ScholarDigital Library
- C. Dwork. Differential Privacy: A Survey of Results. In In Proceedings of Theory and Applications of Models of Computation (TAMC), 2008. Google ScholarDigital Library
- C. Dwork, F. McSherry, K. Nissim, and A. Smith. Calibrating Noise to Sensitivity in Private Data Analysis. In Proceedings of the 3rd IACR TCC, 2006. Google ScholarDigital Library
- C. Efthymiou and G. Kalogridis. Smart Grid Privacy via Anonymization of Smart Metering Data. In Proceedings of IEEE SmartGridComm, October 2010.Google ScholarCross Ref
- F. D. Garcia and B. Jacobs. Privacy-friendly Energy-metering via Homomorphic Encryption. In Proceedings of the S, 2010. Google ScholarDigital Library
- D. M. Goldschlag, M. G. Reed, and P. F. Syverson. Hiding routing information. In Proceedings of Information Hiding, pages 137--150, 1996. Google ScholarDigital Library
- G. Hart. Nonintrusive appliance load monitoring. Proceedings of the IEEE, 80(12):1870--1891, December 1992.Google ScholarCross Ref
- G. Kalogridis, C. Efthymiou, S. Denic, T. A. Lewis, and R. Cepeda. Privacy for Smart Meters: Towards Undetectable Appliance Load Signatures. In Proceedings of IEEE SmartGridComm, October 2010.Google ScholarCross Ref
- D. Kesdogan, J. Egner, and R. Büschkes. Stop-and-go-mixes providing probabilistic anonymity in an open system. In Information Hiding, pages 83--98, 1998.Google ScholarCross Ref
- D. Kifer and A. Machanavajjhala. No Free Lunch in Data Privacy. In to appear in SIGMOD 2011, 2011. Google ScholarDigital Library
- K. Kursawe, G. Danezis, and M. Kohlweiss. Privacy-friendly Aggregation for the Smart-grid. In Proceedings of PETS, 2011. Google ScholarDigital Library
- A. Molina-Markham, P. Shenoy, K. Fu, E. Cecchet, and D. Irwin. Private memoirs of a smart meter. In Proceedings of ACM Buildsys, 2010. Google ScholarDigital Library
- M. G. Reed, P. F. Syverson, and D. M. Goldschlag. Anonymous connections and onion routing. IEEE Journal on Selected Areas in Communications, 16(4):482--494, May 1998. Google ScholarDigital Library
- A. Rial and G. Danezis. Privacy-Preserving Smart Metering. In Technical Report, MSR-TR-2010-150. Microsoft Research, 2010.Google Scholar
- M. Sherr, E. Cronin, S. Clark, and M. Blaze. Signaling Vulnerabilities in Wiretapping Systems. IEEE Security & Privacy Magazine, 3(6):13--25, November 2005. Google ScholarDigital Library
- C. Wright, F. M. L. Ballard, and G. Masson. Language Identification of Encrypted VoIP Traffic: Alejandra y Roberto or Alice and Bob? In Proceedings of the 16th USENIX Security Symposium, 2007. Google ScholarDigital Library
Index Terms
- Protecting against physical resource monitoring
Recommendations
Protecting sensitive place visits in privacy-preserving trajectory publishing
Highlights- We propose a method for privacy-preserving trajectory publishing.
- It aims at ...
AbstractThe rise of mobile computing has generated huge amount of trajectory data. Since these data are valuable for many people, publishing them while providing adequate individual privacy protection has been a challenging task. In this paper,...
Differential privacy for real smart metering data
The collection of detailed consumption data through smart metering has led to privacy concerns. Aggregating the consumption data over a number of smart meters can be used to strike a balance between functional and privacy requirements. A number of ...
A practical smart metering system supporting privacy preserving billing and load monitoring
ACNS'12: Proceedings of the 10th international conference on Applied Cryptography and Network SecurityFine-grained meter readings enable applications in an advanced metering infrastructure. However, those meter readings threaten personal privacy by implying a sketch of daily activities of households. The privacy issue has been addressed in smart ...
Comments