多数据库环境下的分布式推理检测系统

2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC) Pub Date : 2022-06-01 DOI:10.1109/COMPSAC54236.2022.00246

Sad Rafik, P. Lachat, N. Bennani, V. Rehn-Sonigo

{"title":"多数据库环境下的分布式推理检测系统","authors":"Sad Rafik, P. Lachat, N. Bennani, V. Rehn-Sonigo","doi":"10.1109/COMPSAC54236.2022.00246","DOIUrl":null,"url":null,"abstract":"The omnipresence of services offered by diverse applications leads customers to share more and more personal data, among which some are sensitive. Dishonest entities perform inference attacks by querying non-sensitive data in order to deduce the stored sensitive data. Detecting those attacks is still an open problem in a setting where a dishonest entity has access to distinct data controllers' databases containing data collected from the same customer. This problem has been addressed considering a centralized detection system. However, this approach is limited because of this centralized nature where the system protects the customers' privacy at the expense of the data controllers' privacy. Hence, we propose in this article the description of a distributed architecture to detect inference attacks in a multi-database context, while preserving the privacy of both the applications and the customers.","PeriodicalId":330838,"journal":{"name":"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)","volume":"26 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-06-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":"{\"title\":\"Towards a Distributed Inference Detection System in a Multi-Database Context\",\"authors\":\"Sad Rafik, P. Lachat, N. Bennani, V. Rehn-Sonigo\",\"doi\":\"10.1109/COMPSAC54236.2022.00246\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The omnipresence of services offered by diverse applications leads customers to share more and more personal data, among which some are sensitive. Dishonest entities perform inference attacks by querying non-sensitive data in order to deduce the stored sensitive data. Detecting those attacks is still an open problem in a setting where a dishonest entity has access to distinct data controllers' databases containing data collected from the same customer. This problem has been addressed considering a centralized detection system. However, this approach is limited because of this centralized nature where the system protects the customers' privacy at the expense of the data controllers' privacy. Hence, we propose in this article the description of a distributed architecture to detect inference attacks in a multi-database context, while preserving the privacy of both the applications and the customers.\",\"PeriodicalId\":330838,\"journal\":{\"name\":\"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)\",\"volume\":\"26 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-06-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"1\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/COMPSAC54236.2022.00246\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/COMPSAC54236.2022.00246","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

摘要

各种应用程序提供的服务无处不在，导致客户分享越来越多的个人数据，其中一些是敏感的。不诚实实体通过查询非敏感数据来推断存储的敏感数据，从而进行推理攻击。在一个不诚实的实体可以访问包含从同一客户收集的数据的不同数据控制器的数据库的情况下，检测这些攻击仍然是一个悬而未决的问题。考虑到集中式检测系统，这个问题已经得到了解决。然而，这种方法是有限的，因为这种集中的性质，系统以牺牲数据控制器的隐私为代价来保护客户的隐私。因此，我们在本文中提出了一种分布式体系结构的描述，以检测多数据库上下文中的推理攻击，同时保护应用程序和客户的隐私。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Towards a Distributed Inference Detection System in a Multi-Database Context

The omnipresence of services offered by diverse applications leads customers to share more and more personal data, among which some are sensitive. Dishonest entities perform inference attacks by querying non-sensitive data in order to deduce the stored sensitive data. Detecting those attacks is still an open problem in a setting where a dishonest entity has access to distinct data controllers' databases containing data collected from the same customer. This problem has been addressed considering a centralized detection system. However, this approach is limited because of this centralized nature where the system protects the customers' privacy at the expense of the data controllers' privacy. Hence, we propose in this article the description of a distributed architecture to detect inference attacks in a multi-database context, while preserving the privacy of both the applications and the customers.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2022 IEEE 46th Annual Computers, Software, and Applications Conference (COMPSAC)

自引率

0.00%

发文量