Statistical Database Auditing Without Query Denial Threat
Statistical database auditing is the process of checking aggregate queries that are submitted in a continuous manner, to prevent inference disclosure. Compared to other data protection mechanisms, auditing has the features of flexibility and maximum information. Auditing is typically accomplished by examining responses to past queries to determine whether a new query can be answered. It has been recognized that query denials release information and can cause data disclosure. This paper proposes an auditing mechanism that is free of query denial threat and applicable to mixed types of aggregate queries, including sum, max, min, deviation, etc. The core ideas are (i) deriving the complete information leakage from each query denial and (ii) carrying the complete leaked information derived from past answered and denied queries to audit each new query. The information leakage deriving problem can be formulated as a set of parametric optimization programs, and the whole auditing process can be modeled as a series of convex optimization problems.
statistical database, privacy, auditing, query denial, optimization
Computer Sciences | Numerical Analysis and Scientific Computing
INFORMS Journal of Computing
LU, Haibing; VAIDYA, Jaideep; ATLURI, Vijay; and LI, Yingjiu.
Statistical Database Auditing Without Query Denial Threat. (2014). INFORMS Journal of Computing. 27, (1), 20-34. Research Collection School Of Information Systems.
Available at: http://ink.library.smu.edu.sg/sis_research/2550