周治平^{1, 2,,},
李智聪¹
1.江南大学物联网工程学院? ?无锡? ?214122
2.江南大学物联网技术应用教育部工程研究中心? ?无锡? ?214122

详细信息

作者简介:周治平：男，1962 年生，博士，教授，研究方向为检测技术与自动化装置、信息安全等
李智聪：男，1992 年生，硕士生，研究方向为物联网安全认证

通讯作者:周治平　zzp@jiangnan.edu.cn

中图分类号:TP309.2

计量

文章访问数:1127
HTML全文浏览量:487
PDF下载量:42
被引次数:0

出版历程

收稿日期:2018-06-19
修回日期:2019-03-04
网络出版日期:2019-03-25
刊出日期:2019-06-01

Data Anonymous Collection Protocol without Trusted Third Party

Zhiping ZHOU^{1, 2,,},
Zhicong LI¹
1. School of Internet of Things Engineering, Jiangnan University, Wuxi 214122, China
2. Engineering Research Center of Internet of Things Technology Applications ofMinistry of Education, Jiangnan University, Wuxi 214122, China


摘要
摘要:针对半诚信的数据收集者对包含敏感属性(SA)数据收集和使用过程中可能造成隐私泄露问题，该文在传统模型中增加实时的数据领导者，并基于改进模型提出一个隐私保护的数据收集协议，确保无可信第三方假设前提下，数据收集者最大化数据效用只能建立在K匿名处理过的数据基础上。数据拥有者分布协作的方式参与协议流程，实现了准标识(QI)匿名化后SA的传输，降低了数据收集者通过QI关联准确SA值的概率，减弱内部标识揭露造成隐私泄露风险；通过树形编码结构将SA的编码值分为随机锚点和补偿距离两份份额，由K匿名形成的等价类成员选举获取两个数据领导者，分别对两份份额进行聚集和转发，解除唯一性的网络标识和SA值的关联，有效防止外部标识揭露造成的隐私泄露；建立符合该协议特性的形式化规则并对协议进行安全分析，证明了协议满足隐私保护需求。
关键词:数据隐私/
隐私保护/
K匿名/
敏感属性/
匿名化
Abstract:Semi-honest data collectors may cause privacy leaks during the collection and use of Sensitive Attribute (SA) data. In view of the problem, real-time data leaders are added in the traditional model and a privacy-protected data collection protocol based on the improved model is proposed. Without the assumption of trusted third party, the protocol ensures that data collectors maximization data utility can only be established on the basis of K-anonymized data. Data owners participates in the protocol flow in a distributed and collaborative manner to achieve the transmission of SA after the Quasi-Identifier (QI) is anonymized. This reduces the probability that the data collector uses the QI to associate SA values and weakens the risk of privacy leakage caused by internal identity disclosure. It divides the coded value of the SA into two shares of a random anchor point and a compensation distance through the tree coding structure and the members of the equivalent class formed by K-anonymity elect two data leaders to aggregate and forward the two shares respectively, which releases the association between unique network identification and SA values and prevents leakage of privacy caused by external identification effectively. Formal rules are established that meet the characteristics of the protocol and analyze the protocol to prove that the protocol meets privacy protection requirements.
Key words:Data privacy/
Privacy protection/
K-anonymity/
Sensitive Attribute (SA)/
Anonymization



PDF全文下载地址:

https://jeit.ac.cn/article/exportPdf?id=6b5db194-e476-4f3d-ae37-e699a659f074