Auditing Interval-based Inference
Publication Type
Conference Proceeding Article
Publication Date
5-2002
Abstract
In this paper we study the feasibility of auditing interval-based inference. Sensitive information about individuals is said to be compromised if an accurate enough interval, called inference interval, is obtained into which the value of the sensitive information must fall. Compared with auditing exact inference that is traditionally studied, auditing interval-based inference is more complicated. Existing auditing methods such as audit expert do not apply to this case. Our result shows that it is intractable to audit interval-based inference for bounded integer values; while for bounded real values, the auditing problem is polynomial yet involves complicated computation of mathematical programming. To further examine the practicability of auditing interval-based inference, we classify various auditing methods into three categories: exact auditing, optimistic auditing, and pessimistic auditing. We analyze the trade-offs that can be achieved by these methods among various auditing objectives: inference security, database usability, and auditing complexity.
Keywords
Audit, Usability, Feasibility, Mathematical programming, Database
Discipline
Information Security
Research Areas
Information Security and Trust
Publication
Advanced Information Systems Engineering: 14th International Conference, CAiSE 2002 Toronto, Canada, May 27-31: Proceedings
Volume
2348
First Page
553
Last Page
568
ISBN
9783540479611
Identifier
10.1007/3-540-47961-9_38
Publisher
Springer Verlag
City or Country
Toronto, Canada
Citation
LI, Yingjiu; WANG, Lingyu; WANG, X. Sean; and Jajodia, Sushil.
Auditing Interval-based Inference. (2002). Advanced Information Systems Engineering: 14th International Conference, CAiSE 2002 Toronto, Canada, May 27-31: Proceedings. 2348, 553-568.
Available at: https://ink.library.smu.edu.sg/sis_research/1047
Additional URL
http://dx.doi.org/10.1007/3-540-47961-9_38