Please enable JavaScript.
Coggle requires JavaScript to display documents.
IT Sicherheit - 8.2 (Big) data Privacy (The need for Data & query…
IT Sicherheit - 8.2 (Big) data Privacy
The need for Data & query anonymization
exisiting privacy legal frameworks
BDSG - Bundesdatenschutzgesetzt
EU directive
"typically encode what privacy is and how it should be dealt with"
EU GDPR - European General data protection regulation
Anonymization and PSeudonimization
anonymization
process of rendering, so data subject is not or no longer identifiable
pseudonimization
means the processing of personal data to an unnatural person
pre conditions for data sharing
key legal mechanisms
Towards operatoinalizing data anonymization / pseudonimzation
Define a taxonomy of personal data
reflect on possible data disclosure / sharing scenarios
define your attacker model
consider appropriate data anonymization models and techniques
Data anonymization Model and Metrics
Disclosure scenarios
challenge
find and maintain a good trade-off between data utility and privacy
models
data supression-based model
focusing on preservinf the privacy of those individuals who are included in the dataset
data pertubation-based model
focus on protecting the privacy of both data respondents an dpeople not included in the dataset
metrics
data supression-based model
K-anonymity & co
aims at preventing record linkage attacks
limitations
homogenity attack
background knowledge attack
l-Diversity
aims at adressing the homogenity and backgorund knowledge attacks against k-anonymity
limitations
skewness attack
similiarity attack
t-closeness
insuffiency of l-diversity leads to t-closeness
data pertubation-based model
epsilon-differential privacy
adding noies to true data