Measuring anonymization privacy/analysis tradeoffs inherent to sharing network data

Author

Yurcik, William ; Woolam, Clay ; Hellings, Greg ; Khan, Latifur ; Thuraisingham, Bhavani

Author_Institution

Texas Univ., Dallas, TX

fYear

2008

fDate

7-11 April 2008

Firstpage

991

Lastpage

994

Abstract

Sharing of network data between organizations is desperately needed as attackers bounce between targets in different security domains and launch attacks across security domains. Anonymization to protect private/sensitive information has emerged as a promising approach to sharing network data between security domains. However, a fundamental tradeoff exists between the anonymization of data for privacy protection and the utility of anonymized for security analysis. While many researchers have referred to this tradeoff, no one has characterized it with testing. In this paper we present a testing framework we have developed to characterize privacy/analysis anonymization tradeoffs along with some preliminary results.

Keywords

Internet; data privacy; analysis tradeoffs; anonymization privacy; data anonymization; network data sharing; private/sensitive information protection; security analysis; security domains; Collaboration; Data privacy; Data security; Information security; Pattern analysis; Protection; Risk analysis; Telecommunication traffic; Testing; Traffic control; SCRUB*; SCRUB-Netflows; SCRUB-PA; SCRUB-tcpdump; anonymization; data obfuscation; network data anonymization; network data sharing; network intrusion detection; network log anonymization; network monitoring; network packet trace anonymization; network packet traces; privacy protection; security data sharing; trust management;

fLanguage

English

Publisher

ieee

Conference_Titel

Network Operations and Management Symposium, 2008. NOMS 2008. IEEE

Conference_Location

Salvador, Bahia

ISSN

1542-1201

Print_ISBN

978-1-4244-2065-0

Electronic_ISBN

1542-1201

Type

conf

DOI

10.1109/NOMS.2008.4575265

Filename

4575265