Measuring re-identification risk

CJ Carey; Travis Dick; Alessandro Epasto; Adel Javanmard; Josh Karlin; Shankar Kumar; Andres Muñoz Medina; Vahab Mirrokni; Gabriel Henrique Nunes; Sergei Vassilvitskii; Peilin Zhong

doi:10.1145/3589294

Measuring re-identification risk

CJ Carey, Travis Dick, Alessandro Epasto, Adel Javanmard, Josh Karlin, Shankar Kumar, Andres Muñoz Medina, Vahab Mirrokni, Gabriel Henrique Nunes, Sergei Vassilvitskii, Peilin Zhong

Research output: Contribution to journal › Conference paper › peer-review

64 Downloads (Pure)

Abstract

Compact user representations (such as embeddings) form the backbone of personalization services. In this work, we present a new theoretical framework to measure re-identification risk in such user representations. Our framework, based on hypothesis testing, formally bounds the probability that an attacker may be able to obtain the identity of a user from their representation. As an application, we show how our framework is general enough to model important real-world applications such as the Chrome's Topics API for interest-based advertising. We complement our theoretical bounds by showing provably good attack algorithms for re-identification that we use to estimate the re-identification risk in the Topics API. We believe this work provides a rigorous and interpretable notion of re-identification risk and a framework to measure it that can be used to inform real-world applications.

Original language	English
Article number	149
Pages (from-to)	1-26
Number of pages	26
Journal	Proceedings of the ACM on Management of Data
Volume	1
Issue number	2
DOIs	https://doi.org/10.1145/3589294
Publication status	Published - Jun 2023
Externally published	Yes
Event	2023 ACM SIGMOD/PODS Conference - Seattle, United States Duration: 18 Jun 2023 → 23 Jun 2023 https://2023.sigmod.org/

Bibliographical note

Copyright the Author(s) 2023. Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.

Keywords

Re-identification risk
privacy
user representations

Access to Document

10.1145/3589294Licence: CC BY

Publisher version (open access)Final published version, 853 KBLicence: CC BY

1 Preprint

Measuring re-identification risk
Carey, CJ., Dick, T., Epasto, A., Javanmard, A., Karlin, J., Kumar, S., Medina, A. M., Mirrokni, V., Nunes, G. H., Vassilvitskii, S. & Zhong, P., 12 Apr 2023, (Submitted) p. 1-26, 26 p. (arXiv).
Research output: Working paper › Preprint

Cite this

@article{0527b4463b1449478c2618c2af29f21c,

title = "Measuring re-identification risk",

abstract = "Compact user representations (such as embeddings) form the backbone of personalization services. In this work, we present a new theoretical framework to measure re-identification risk in such user representations. Our framework, based on hypothesis testing, formally bounds the probability that an attacker may be able to obtain the identity of a user from their representation. As an application, we show how our framework is general enough to model important real-world applications such as the Chrome's Topics API for interest-based advertising. We complement our theoretical bounds by showing provably good attack algorithms for re-identification that we use to estimate the re-identification risk in the Topics API. We believe this work provides a rigorous and interpretable notion of re-identification risk and a framework to measure it that can be used to inform real-world applications.",

keywords = "Re-identification risk, privacy, user representations",

author = "CJ Carey and Travis Dick and Alessandro Epasto and Adel Javanmard and Josh Karlin and Shankar Kumar and Medina, {Andres Mu{\~n}oz} and Vahab Mirrokni and Nunes, {Gabriel Henrique} and Sergei Vassilvitskii and Peilin Zhong",

note = "Copyright the Author(s) 2023. Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.; 2023 ACM SIGMOD/PODS Conference ; Conference date: 18-06-2023 Through 23-06-2023",

year = "2023",

month = jun,

doi = "10.1145/3589294",

language = "English",

volume = "1",

pages = "1--26",

journal = "Proceedings of the ACM on Management of Data",

issn = "2836-6573",

publisher = "Association for Computing Machinery (ACM)",

number = "2",

url = "https://2023.sigmod.org/",

}

TY - JOUR

T1 - Measuring re-identification risk

AU - Carey, CJ

AU - Dick, Travis

AU - Epasto, Alessandro

AU - Javanmard, Adel

AU - Karlin, Josh

AU - Kumar, Shankar

AU - Medina, Andres Muñoz

AU - Mirrokni, Vahab

AU - Nunes, Gabriel Henrique

AU - Vassilvitskii, Sergei

AU - Zhong, Peilin

N1 - Copyright the Author(s) 2023. Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.

PY - 2023/6

Y1 - 2023/6

N2 - Compact user representations (such as embeddings) form the backbone of personalization services. In this work, we present a new theoretical framework to measure re-identification risk in such user representations. Our framework, based on hypothesis testing, formally bounds the probability that an attacker may be able to obtain the identity of a user from their representation. As an application, we show how our framework is general enough to model important real-world applications such as the Chrome's Topics API for interest-based advertising. We complement our theoretical bounds by showing provably good attack algorithms for re-identification that we use to estimate the re-identification risk in the Topics API. We believe this work provides a rigorous and interpretable notion of re-identification risk and a framework to measure it that can be used to inform real-world applications.

AB - Compact user representations (such as embeddings) form the backbone of personalization services. In this work, we present a new theoretical framework to measure re-identification risk in such user representations. Our framework, based on hypothesis testing, formally bounds the probability that an attacker may be able to obtain the identity of a user from their representation. As an application, we show how our framework is general enough to model important real-world applications such as the Chrome's Topics API for interest-based advertising. We complement our theoretical bounds by showing provably good attack algorithms for re-identification that we use to estimate the re-identification risk in the Topics API. We believe this work provides a rigorous and interpretable notion of re-identification risk and a framework to measure it that can be used to inform real-world applications.

KW - Re-identification risk

KW - privacy

KW - user representations

U2 - 10.1145/3589294

DO - 10.1145/3589294

M3 - Conference paper

SN - 2836-6573

VL - 1

SP - 1

EP - 26

JO - Proceedings of the ACM on Management of Data

JF - Proceedings of the ACM on Management of Data

IS - 2

M1 - 149

T2 - 2023 ACM SIGMOD/PODS Conference

Y2 - 18 June 2023 through 23 June 2023

ER -

Measuring re-identification risk

Abstract

Bibliographical note

Keywords

Access to Document

Fingerprint

Research output

Measuring re-identification risk

Cite this