Privacy-preserving distributed clustering: A fully homomorphic encrypted approach for time series

IF 5.4 2区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

Computers & Security Pub Date : 2025-07-28 DOI:10.1016/j.cose.2025.104579

Iván Abellán Álvarez, Joaquín Delgado Fernández, Sergio Potenciano Menci

{"title":"Privacy-preserving distributed clustering: A fully homomorphic encrypted approach for time series","authors":"Iván Abellán Álvarez, Joaquín Delgado Fernández, Sergio Potenciano Menci","doi":"10.1016/j.cose.2025.104579","DOIUrl":null,"url":null,"abstract":"<div><div>In time series analysis, particularly in domains like smart metering, the drive for accurate predictions often depends on access to fine-grained, sensitive data. This need raises significant privacy concerns, especially in distributed data environments. To address these challenges, we apply the LINDDUN privacy threat modeling framework to identify and formalize privacy risks, and establish privacy requirements specific to distributed clustering of time series data. We extend the framework by integrating system design assumptions early on, and derive new attack trees that align with current threat patterns. We propose a distributed clustering protocol based on fully homomorphic encryption, and further enhance privacy guarantees by integrating differential privacy mechanisms and a software-based local caching strategy to bound computational costs. In the context of smart metering, assuming a semi-honest model where agents adhere to the protocol without collusion, our simulation results indicate a favorable trade-off between privacy and performance at <span><math><mrow><mi>ϵ</mi><mo>≃</mo><mn>3</mn><mo>.</mo><mn>0</mn></mrow></math></span>. Our approach offers a blueprint for designing privacy-first systems that enable accurate predictions while safeguarding individual privacy.</div></div>","PeriodicalId":51004,"journal":{"name":"Computers & Security","volume":"157 ","pages":"Article 104579"},"PeriodicalIF":5.4000,"publicationDate":"2025-07-28","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computers & Security","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0167404825002688","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

In time series analysis, particularly in domains like smart metering, the drive for accurate predictions often depends on access to fine-grained, sensitive data. This need raises significant privacy concerns, especially in distributed data environments. To address these challenges, we apply the LINDDUN privacy threat modeling framework to identify and formalize privacy risks, and establish privacy requirements specific to distributed clustering of time series data. We extend the framework by integrating system design assumptions early on, and derive new attack trees that align with current threat patterns. We propose a distributed clustering protocol based on fully homomorphic encryption, and further enhance privacy guarantees by integrating differential privacy mechanisms and a software-based local caching strategy to bound computational costs. In the context of smart metering, assuming a semi-honest model where agents adhere to the protocol without collusion, our simulation results indicate a favorable trade-off between privacy and performance at

ϵ ≃ 3.0

. Our approach offers a blueprint for designing privacy-first systems that enable accurate predictions while safeguarding individual privacy.

查看原文本刊更多论文

保护隐私的分布式聚类：时间序列的全同态加密方法

在时间序列分析中，特别是在智能计量等领域，准确预测的驱动力通常取决于对细粒度、敏感数据的访问。这种需求引起了严重的隐私问题，特别是在分布式数据环境中。为了应对这些挑战，我们应用LINDDUN隐私威胁建模框架来识别和形式化隐私风险，并建立针对时间序列数据分布式聚类的隐私需求。我们通过早期集成系统设计假设来扩展框架，并派生出与当前威胁模式一致的新攻击树。我们提出了一种基于全同态加密的分布式集群协议，并通过集成差分隐私机制和基于软件的本地缓存策略来约束计算成本，进一步增强了隐私保障。在智能计量的背景下，假设一个半诚实的模型，其中代理人遵守协议而不串通，我们的模拟结果表明，在λ≃3.0时，隐私与性能之间存在有利的权衡。我们的方法为设计隐私优先的系统提供了蓝图，该系统可以在保护个人隐私的同时进行准确的预测。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Computers & Security 工程技术-计算机：信息系统

CiteScore

12.40

自引率

7.10%

发文量

365

审稿时长

10.7 months

期刊介绍： Computers & Security is the most respected technical journal in the IT security field. With its high-profile editorial board and informative regular features and columns, the journal is essential reading for IT security professionals around the world. Computers & Security provides you with a unique blend of leading edge research and sound practical management advice. It is aimed at the professional involved with computer security, audit, control and data integrity in all sectors - industry, commerce and academia. Recognized worldwide as THE primary source of reference for applied research and technical expertise it is your first step to fully secure systems.