Title

Auditing Interval-based Inference

Publication Type

Conference Proceeding Article

Publication Date

5-2002

Abstract

In this paper we study the feasibility of auditing interval-based inference. Sensitive information about individuals is said to be compromised if an accurate enough interval, called inference interval, is obtained into which the value of the sensitive information must fall. Compared with auditing exact inference that is traditionally studied, auditing interval-based inference is more complicated. Existing auditing methods such as audit expert do not apply to this case. Our result shows that it is intractable to audit interval-based inference for bounded integer values; while for bounded real values, the auditing problem is polynomial yet involves complicated computation of mathematical programming. To further examine the practicability of auditing interval-based inference, we classify various auditing methods into three categories: exact auditing, optimistic auditing, and pessimistic auditing. We analyze the trade-offs that can be achieved by these methods among various auditing objectives: inference security, database usability, and auditing complexity.

Keywords

Audit, Usability, Feasibility, Mathematical programming, Database

Discipline

Information Security

Research Areas

Information Security and Trust

Publication

Advanced Information Systems Engineering: 14th International Conference, CAiSE 2002 Toronto, Canada, May 27-31: Proceedings

Volume

2348

First Page

553

Last Page

568

ISBN

9783540479611

Identifier

10.1007/3-540-47961-9_38

Publisher

Springer Verlag

City or Country

Toronto, Canada

Additional URL

http://dx.doi.org/10.1007/3-540-47961-9_38