• DocumentCode
    5287
  • Title

    Attack-Resilient Mix-zones over Road Networks: Architecture and Algorithms

  • Author

    Palanisamy, Balaji ; Ling Liu

  • Author_Institution
    Sch. of Inf. Sci., Univ. of Pittsburgh, Pittsburgh, PA, USA
  • Volume
    14
  • Issue
    3
  • fYear
    2015
  • fDate
    March 1 2015
  • Firstpage
    495
  • Lastpage
    508
  • Abstract
    Continuous exposure of location information, even with spatially cloaked resolution, may lead to breaches of location privacy due to statistics-based inference attacks. An alternative and complementary approach to spatial cloaking based location anonymization is to break the continuity of location exposure by introducing techniques, such as mix-zones, where no application can trace user movements. Several factors impact on the effectiveness of mix-zone approach, such as user population, mix-zone geometry, location sensing rate and spatial resolution, as well as spatial and temporal constraints on user movement patterns. However, most of the existing mix-zone proposals fail to provide effective mix-zone construction and placement algorithms that are resilient to timing and transition attacks. This paper presents MobiMix, a road network based mix-zone framework to protect location privacy of mobile users traveling on road networks. It makes three original contributions. First, we provide the formal analysis on the vulnerabilities of directly applying theoretical rectangle mix-zones to road networks in terms of anonymization effectiveness and resilience to timing and transition attacks. Second, we develop a suite of road network mix-zone construction methods that effectively consider the above mentioned factors to provide higher level of resilience to timing and transition attacks, and yield a specified lowerbound on the level of anonymity. Third, we present a set of mix-zone placement algorithms that identify the best set of road intersections for mix-zone placement considering the road network topology, user mobility patterns and road characteristics. We evaluate the MobiMix approach through extensive experiments conducted on traces produced by GTMobiSim on different scales of geographic maps. Our experiments show that MobiMix offers high level of anonymity and high level of resilience to timing and transition attacks, compared to existing mix-zone approaches.
  • Keywords
    mobile radio; telecommunication network topology; GTMobiSim; MobiMix; location exposure; location information; location privacy; location sensing rate; mix-zone construction; mix-zone framework; mix-zone geometry; mix-zone placement algorithms; mobile users; road network topology; spatial cloaking based location anonymization; spatial constraints; spatial resolution; spatially cloaked resolution; statistics-based inference attacks; temporal constraints; user population; Entropy; Mobile communication; Mobile computing; Privacy; Roads; Spatial resolution; Timing; Location privacy; k-anonymity; location-based applications; mix-zone;
  • fLanguage
    English
  • Journal_Title
    Mobile Computing, IEEE Transactions on
  • Publisher
    ieee
  • ISSN
    1536-1233
  • Type

    jour

  • DOI
    10.1109/TMC.2014.2321747
  • Filename
    6815691
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=5287