research-article

Genodroid: are privacy-preserving genomic tests ready for prime time?

Authors:

Emiliano De Cristofaro,

Gene TsudikAuthors Info & Claims

WPES '12: Proceedings of the 2012 ACM workshop on Privacy in the electronic society

Pages 97 - 108

https://doi.org/10.1145/2381966.2381980

Published: 15 October 2012 Publication History

Abstract

As fast and accurate sequencing of human genomes becomes affordable, it is expected that individuals will soon be able to carry around copies of their sequenced DNA, using it for medical, identification, and social purposes. This will undoubtedly prompt a wide range of new and interesting genomic applications. However, the very same progress raises some worrisome privacy issues, since a genome represents a treasure trove of highly personal and sensitive information. Some recent research explored privacy-preserving personal genomic operations by applying (or customizing) cryptographic protocols based on techniques such as: conditional oblivious transfer, garbled circuits, and homomorphic encryption. In this paper, we take this line of work a step further by investigating real-world practicality and usability of (as well as interest in) some of these methods. Motivated by both medical and social applications, we aim to test viability of privacy-agile computational genomic tests in a portable and pervasive setting of modern smartphones. We design a personal genomic toolkit (called GenoDroid), implement it on the Android platform, assess its performance, and conduct a pilot usability study that yields some interesting results.

References

[1]

Bluetooth SIG, Simple Pairing Whitepaper. http://preview.tinyurl.com/bluetooth-simple-pairing, 2007.

[2]

1000 Genomes Project. A Deep Catalog of Human Genetic Variation. http://www.1000genomes.org/.

[3]

23andMe. https://www.23andme.com/.

[4]

A. Abbott. Special section on human genetics: With your genes? Take one of these, three times a day. Nature, 425(6960), 2003.

[5]

AT&T. Mobilizing Enterprise Applications. http://www.business.att.com/content/whitepaper/mobilizing-enterprise-applications.pdf, 2010.

[6]

P. Baldi, R. Baronio, E. De Cristofaro, P. Gasti, and G. Tsudik. Countering GATTACA: Efficient and Secure Testing of Fully-Sequenced Human Genomes. In CCS, 2011.

Digital Library

[7]

M. Blanton and M. Aliasgari. Secure outsourcing of dna searching via finite automata. In DBSec, 2010.

Digital Library

[8]

E. Blass, R. D. Pietro, R. Molva, and M. Onen. PRISM: Privacy-Preserving Searches in MapReduce. In PETS, 2012.

Digital Library

[9]

D. Bolnick et al. GENETICS: The Science and Business of Genetic Ancestry Testing. Science, 318(5849), 2007.

[10]

A. Broder. On the resemblance and containment of documents. In Compression and Complexity of Sequences, 1997.

[11]

J. Brooke. SUS - a quick and dirty usability scale. Usability evaluation in Industry, 189, 1996.

[12]

T. Brown. Genomes 3. Garland science, 2006.

[13]

F. Bruekers, S. Katzenbeisser, K. Kursawe, and P. Tuyls. Privacy-Preserving Matching of DNA Profiles. http://eprint.iacr.org/2008/203, 2008.

[14]

P. Burton et al. Genome-wide association study of 14,000 cases of seven common diseases and 3,000 shared controls. Nature, 447, 2007.

[15]

J. Camenisch and A. Lysyanskaya. An efficient system for non-transferable anonymous credentials with optional anonymity revocation. Eurocrypt, 2001.

Digital Library

[16]

Canalys Research. Smart phones overtake client PCs in 2011. http://www.canalys.com/newsroom/smart-phones-overtake-client-pcs-2011.

[17]

T. Canli. The emergence of genomic psychology. Nature, 8, 2007.

[18]

B. Carlson. SNPs - A shortcut to personalized medicine. Genetic Engineering & Biotechnology News, 2008.

[19]

H. Carter, C. Amrutkar, I. Dacosta, and P. Traynor. Efficient Oblivious Computation Techniques for Privacy-Preserving Mobile Applications. Technical report, 2011. http://smartech.gatech.edu/handle/1853/42367.

[20]

S. Cass. Cheap DNA sequencing will drive a revolution in health care. http://www.technologyreview.com/biomedicine/24587/, 2010.

[21]

Y. Chen, B. Peng, X. Wang, and H. Tang. Large-Scale Privacy-Preserving Mapping of Human Genomic Sequences on Hybrid Clouds. In NDSS, 2012.

[22]

B. Chor, O. Goldreich, E. Kushilevitz, and M. Sudan. Private information retrieval. In FOCS. IEEE, 1995.

Digital Library

[23]

F. Collins. Medical and societal consequences of the human genome project. New England Journal of Medicine, 341(1), 1999.

[24]

F. Collins and V. McKusick. Implications of the Human Genome Project for medical science. Jama, 285(5), 2001.

[25]

D. Barnett. BamTools. https://github.com/pezmaster31/bamtools.

[26]

E. De Cristofaro, P. Gasti, and G. Tsudik. Fast and Private Computation of Set Intersection. Cryptology ePrint Archive, 2011. http://eprint.iacr.org/2011/141.

[27]

E. De Cristofaro, J. Kim, and G. Tsudik. Linear-complexity private set intersection protocols secure in malicious model. In Asiacrypt, 2010.

[28]

E. De Cristofaro and G. Tsudik. Practical Private Set Intersection Protocols with Linear Complexity. In FC, 2010.

Digital Library

[29]

T. ElGamal. A public key cryptosystem and a signature scheme based on discrete logarithms. IEEE Transactions on Information Theory, 31(4), 1985.

Digital Library

[30]

D. Endean. RFLP analysis for paternity testing: observations and caveats. In Human Identification, 1989.

[31]

J. Fowler, J. Settle, and N. Christakis. Correlated genotypes in friendship networks. National Academy of Sciences, 108(5), 2011.

[32]

M. Freedman, K. Nissim, and B. Pinkas. Efficient private matching and set intersection. In Eurocrypt, 2004.

[33]

M. Fumagalli et al. Parasites represent a major selective force for interleukin genes and shape the genetic predisposition to autoimmune conditions. Experimental Medicine, 206(6), 2009.

[34]

O. Goldreich. Foundations of cryptography: Basic applications, chapter 7.2.2. Cambridge Univ Press, 2004.

Digital Library

[35]

Google. Dalvik. http://code.google.com/p/dalvik/.

[36]

P. Gutmann. Secure Deletion of Data from Magnetic and Solid-state Memory. In Usenix Security, 1996.

Digital Library

[37]

M. Hoffman. The genome-enabled electronic medical record. Journal of Biomedical Informatics, 40(1), 2007.

Digital Library

[38]

N. Homer et al. Resolving individuals contributing trace amounts of DNA to highly complex mixtures using high-density SNP genotyping microarrays. PLoS Genetics, 4(8), 2008.

[39]

Y. Huang, P. Chapman, and D. Evans. Privacy-preserving applications on smartphones. In HotSec, 2011.

Digital Library

[40]

Y. Huang, D. Evans, J. Katz, and L. Malka. Faster secure two-party computation using garbled circuits. In Usenix Security, 2011.

Digital Library

[41]

International Human Genome Sequencing Consortium. Initial sequencing and analysis of the human genome. Nature, 409, 2001.

[42]

P. Jaccard. Etude comparative de la distribution florale dans une portion des Alpes et du Jura, 1901.

[43]

S. Jha, L. Kruger, and V. Shmatikov. Towards practical privacy for genomic computation. In S&P, 2008.

Digital Library

[44]

J. Kaiser. A plan to capture human diversity in 1000 genomes. Science, 319, 2008.

[45]

J. Katz and Y. Lindell. Introduction to modern cryptography. Chapman & Hall/CRC, 2008.

Digital Library

[46]

J. Katz and J. Malka. Secure text processing with applications to private DNA matching. In CCS, 2010.

Digital Library

[47]

E. Lander. DNA fingerprinting on trial. Nature, 339(6225), 1989.

[48]

R. Lewis and A. Reynolds. Human genetics: concepts and applications. McGraw-Hill, 2003.

[49]

B. Malin. An evaluation of the current state of genomic data privacy protection technology and a roadmap for the future. Journal of the American Medical Informatics Association, 12(1), 2005.

[50]

B. Malin and L. Sweeney. Determining the identifiability of DNA database entries. In AMIA, 2000.

[51]

B. Malin and L. Sweeney. Re-identification of DNA through an automated linkage process. In AMIA, 2001.

[52]

A. Menezes, P. V. Oorschot, and S. Vanstone. Handbook of applied cryptography. CRC, 1997.

Digital Library

[53]

B. Mood, L. Letaw, and K. Butler. Memory-Efficient Garbled Circuit Generation for Mobile Devices. In FC, 2012. http://fc12.ifca.ai/pre-proceedings/paper_71.pdf.

[54]

National Center for Biotechnology Information (US). Single Nucleotide Polymorphism Database. http://www.ncbi.nlm.nih.gov/projects/SNP/.

[55]

National Center for Biotechnology Information (US). Restriction Fragment Length Polymorphism (RFLP). http://www.ncbi.nlm.nih.gov/projects/genome/probe/doc/TechRFLP.shtml, 2011.

[56]

NHGRI. DNA Sequencing Costs - Data from the NHGRI Large-Scale Genome Sequencing Program. http://www.genome.gov/sequencingcosts, 2012.

[57]

J. Nielsen. Usability Engineering. 1997.

[58]

P. Paillier. Public-key cryptosystems based on composite degree residuosity classes. In Eurocrypt, 1999.

Digital Library

[59]

G. Putzer and Y. Park. Are Physicians Likely to Adopt Emerging Mobile Technologies? Attitudes and Innovation Factors Affecting Smartphone Use in the Southeastern United States. HIM, 2012.

[60]

R. Roberts. REBASE, The Restriction Enzyme Database. ftp://ftp.neb.com/pub/rebase/commdata.txt.

[61]

C. Rotimi and B. Jorde. Ancestry and disease in the age of genomic medicine. The New England journal of medicine, 363(16), Oct. 2010.

[62]

F. Sanger et al. The nucleotide sequence of bacteriophage φX174. Journal of molecular biology, 125(2), 1978.

[63]

J. Sarasohn-Kahn. How smartphones are changing health care for consumers and providers. California HealthCare Foundation, 2010.

[64]

E. Schadt, S. Woo, and K. Hao. Bayesian method to predict individual SNP genotypes from gene expression data. Nature Genetics, 2012.

[65]

E. Singer. Democratizing DNA Sequencing. http://www.technologyreview.com/biomedicine/26850, 2012.

[66]

N. Siva. 1000 Genomes project. Nature biotechnology, 26(3), 2008.

[67]

T. Smith and M. Waterman. Identification of common molecular subsequences. Journal of Molecular Biology, 147, 1981.

[68]

P. Stenson et al. The human gene mutation database: 2008 update. Genome Medicine, 1(1), 2009.

[69]

H. Tabor, B. Berkman, S. Hull, and M. Bamshad. Genomics really gets personal: How exome and whole genome sequencing challenge the ethical framework of human genetics research. American Journal of Medical Genetics, 2011.

[70]

The Federal Bureau of Investigation. Combined DNA Index System (CODIS). http://www.fbi.gov/about-us/lab/codis.

[71]

J. Troncoso-Pastoriza, S. Katzenbeisser, and M. Celik. Privacy preserving error resilient DNA searching through oblivious automata. In CCS, 2007.

Digital Library

[72]

R. Wang et al. Learning your identity and disease from research papers: information leaks in Genome Wide Association Study. In CCS, 2009.

Digital Library

[73]

R. Wang, X. Wang, Z. Li, H. Tang, M. Reiter, and Z. Dong. Privacy-preserving genomic computation through program specialization. In CCS, 2009.

Digital Library

[74]

A. Weston and L. Hood. Systems biology, proteomics, and the future of health care: toward predictive, preventative, and personalized medicine. Journal of proteome research, 3(2), 2004.

[75]

A. Yao. Protocols for secure computations. In FOCS, 1982.

Digital Library

[76]

X. Zhou, B. Peng, Y. Li, Y. Chen, H. Tang, and X. Wang. To Release Or Not To Release: Evaluating Information Leaks in Aggregate Human-Genome Data. In ESORICS, 2011.

Digital Library

Cited By

Liang MChoi SDachman-Soled DLiu LYerukhimovich A(2025)On the Privacy of Sublinear-Communication Jaccard Index Estimation via Min-hashIACR Communications in Cryptology10.62056/ak2i5w7sf1:4Online publication date: 13-Jan-2025
https://doi.org/10.62056/ak2i5w7sf
Hwang SOzturk ETsudik G(2023)Balancing Security and Privacy in Genomic Range QueriesACM Transactions on Privacy and Security10.1145/357579626:3(1-28)Online publication date: 13-Mar-2023
https://dl.acm.org/doi/10.1145/3575796
Zhou JSu DDeng J(2023)Multi-party Threshold Private Set Intersection Cardinality Based On Encrypted Bloom Filter2023 IEEE International Conferences on Internet of Things (iThings) and IEEE Green Computing & Communications (GreenCom) and IEEE Cyber, Physical & Social Computing (CPSCom) and IEEE Smart Data (SmartData) and IEEE Congress on Cybermatics (Cybermatics)10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics60724.2023.00098(503-511)Online publication date: 17-Dec-2023
https://doi.org/10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics60724.2023.00098
Show More Cited By

Index Terms

Genodroid: are privacy-preserving genomic tests ready for prime time?
1. Security and privacy
  1. Cryptography
    1. Public key (asymmetric) techniques
      1. Public key encryption

Recommendations

Countering GATTACA: efficient and secure testing of fully-sequenced human genomes
CCS '11: Proceedings of the 18th ACM conference on Computer and communications security

Recent advances in DNA sequencing technologies have put ubiquitous availability of fully sequenced human genomes within reach. It is no longer hard to imagine the day when everyone will have the means to obtain and store one's own DNA sequence. ...
Secure genomic testing with size- and position-hiding private substring matching
WPES '13: Proceedings of the 12th ACM workshop on Workshop on privacy in the electronic society

Recent progress in genomics and bioinformatics is bringing complete and on-demand sequencing of human (and other) genomes closer and closer to reality. Despite exciting new opportunities, affordable and ubiquitous genome sequencing prompts some serious ...
Privacy-Enhancing Proxy Signatures from Non-interactive Anonymous Credentials
DBSec 2014: Proceedings of the 28th Annual IFIP WG 11.3 Working Conference on Data and Applications Security and Privacy XXVIII - Volume 8566

Proxy signatures enable an originator to delegate the signing rights for a restricted set of messages to a proxy. The proxy is then able to produce valid signatures only for messages from this delegated set on behalf of the originator. Recently, two ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

WPES '12: Proceedings of the 2012 ACM workshop on Privacy in the electronic society

October 2012

150 pages

ISBN:9781450316637

DOI:10.1145/2381966

General Chair:
Ting Yu
North Carolina State University, USA
,
Program Chair:
Nikita Borisov
University of Illinois at Urbana-Champaign, USA

Copyright © 2012 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 15 October 2012

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

CCS'12

Sponsor:

SIGSAC

CCS'12: the ACM Conference on Computer and Communications Security

October 15, 2012

North Carolina, Raleigh, USA

Acceptance Rates

Overall Acceptance Rate 106 of 355 submissions, 30%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

37
Total Citations
View Citations
428
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)1

Reflects downloads up to 05 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Liang MChoi SDachman-Soled DLiu LYerukhimovich A(2025)On the Privacy of Sublinear-Communication Jaccard Index Estimation via Min-hashIACR Communications in Cryptology10.62056/ak2i5w7sf1:4Online publication date: 13-Jan-2025
https://doi.org/10.62056/ak2i5w7sf
Hwang SOzturk ETsudik G(2023)Balancing Security and Privacy in Genomic Range QueriesACM Transactions on Privacy and Security10.1145/357579626:3(1-28)Online publication date: 13-Mar-2023
https://dl.acm.org/doi/10.1145/3575796
Zhou JSu DDeng J(2023)Multi-party Threshold Private Set Intersection Cardinality Based On Encrypted Bloom Filter2023 IEEE International Conferences on Internet of Things (iThings) and IEEE Green Computing & Communications (GreenCom) and IEEE Cyber, Physical & Social Computing (CPSCom) and IEEE Smart Data (SmartData) and IEEE Congress on Cybermatics (Cybermatics)10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics60724.2023.00098(503-511)Online publication date: 17-Dec-2023
https://doi.org/10.1109/iThings-GreenCom-CPSCom-SmartData-Cybermatics60724.2023.00098
Huang QYue WYang YChen L(2022)P2GT: Fine-Grained Genomic Data Access Control With Privacy-Preserving Testing in Cloud ComputingIEEE/ACM Transactions on Computational Biology and Bioinformatics10.1109/TCBB.2021.306338819:4(2385-2398)Online publication date: 1-Jul-2022
https://doi.org/10.1109/TCBB.2021.3063388
Wood ANajarian KKahrobaei D(2020)Homomorphic Encryption for Machine Learning in Medicine and BioinformaticsACM Computing Surveys10.1145/339465853:4(1-35)Online publication date: 25-Aug-2020
https://dl.acm.org/doi/10.1145/3394658
Baig KMohamed RTheus AChiasson SBernhaupt RMueller FVerweij DAndres JMcGrenere JCockburn AAvellino IGoguey ABjørn PZhao SSamson BKocielnik R(2020)"I'm hoping they're an ethical company that won't do anything that I'll regret"Proceedings of the 2020 CHI Conference on Human Factors in Computing Systems10.1145/3313831.3376800(1-13)Online publication date: 21-Apr-2020
https://dl.acm.org/doi/10.1145/3313831.3376800
Wen YZhang FWang HMiao YGong Z(2020)Intersection-policy private mutual authentication from authorized private set intersectionScience China Information Sciences10.1007/s11432-019-9907-x63:2Online publication date: 16-Jan-2020
https://doi.org/10.1007/s11432-019-9907-x
Ding XOzturk ETsudik GCavallaro LKinder JDomingo-Ferrer J(2019)Balancing Security and Privacy in Genomic Range QueriesProceedings of the 18th ACM Workshop on Privacy in the Electronic Society10.1145/3338498.3358652(106-110)Online publication date: 11-Nov-2019
https://dl.acm.org/doi/10.1145/3338498.3358652
Zhang YZhao XLi XZhong MCurtis CChen CCulpepper JMoffat ABennett PLerman K(2019)Enabling Privacy-Preserving Sharing of Genomic Data for GWASs in Decentralized NetworksProceedings of the Twelfth ACM International Conference on Web Search and Data Mining10.1145/3289600.3290983(204-212)Online publication date: 30-Jan-2019
https://dl.acm.org/doi/10.1145/3289600.3290983
Viand AShafagh HBrenner MRohloff K(2018)MarbleProceedings of the 6th Workshop on Encrypted Computing & Applied Homomorphic Cryptography10.1145/3267973.3267978(49-60)Online publication date: 15-Oct-2018
https://dl.acm.org/doi/10.1145/3267973.3267978
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten