A flexible approach to distributed data anonymization

Journal of Biomedical Informatics

Volumn 50, Issue , 2014, Pages 62-76

  Kohlmayer, Florian ^a   Prasser, Fabian ^a   Eckert, Claudia ^a   Kuhn, Klaus A ^a  

^a TECHNICAL UNIVERSITY OF MUNICH   (Germany)

Author keywords

Anonymization; Commutative encryption; Distribution; Personal data protection; Privacy; Secure multi party computing; SMC

Indexed keywords

BIOINFORMATICS; COMPUTER APPLICATIONS;

ANONYMIZATION; COMMUTATIVE ENCRYPTION; DISTRIBUTION; PERSONAL DATA PROTECTIONS; SECURE MULTI-PARTY COMPUTING; SMC;

DATA PRIVACY;

ALGORITHM; ARTICLE; BOOK; CONTROLLED STUDY; DATA ANONYMIZATION; DATA BASE; HUMAN; INTERPERSONAL COMMUNICATION; MEDICAL INFORMATICS; MEDICAL INFORMATION SYSTEM; PRIORITY JOURNAL; PRIVACY; ELECTRONIC MEDICAL RECORD; THEORETICAL MODEL;

ALGORITHMS; MEDICAL RECORDS SYSTEMS, COMPUTERIZED; MODELS, THEORETICAL; PRIVACY;

EID: 84905263847     PISSN: 15320464     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.jbi.2013.12.002     Document Type: Article

References (63)

1. B. Consortium Goals-International Cancer Genome Consortium. http://icgc.org/icgc/goals-structure-policies-guidelines/b-consortium-goals.
2. Perola M, van Ommen G-J. BBMRI-LPC - a four-year project to help scientists to have better access to large European studies on health; 2013. http://www.bbmri-lpc.org/BBMRI-LPC_Press_release.pdf.
3. Sharing research data to improve public health: full joint statement by funders of health research - Wellcome Trust. http://www.wellcome.ac.uk/About-us/Policy/Spotlight-issues/Data-sharing/Public-health-and-epidemiology/WTDV030690.htm.
4. OECD Principles and Guidelines for Access to Research Data from Public Funding. http://www.oecd.org/science/sci-tech/oecdprinciplesandguidelinesforaccesstoresearchdatafrompublicfunding.htm.
5. Payne P., et al. Translational informatics: enabling high-throughput research paradigms. Physiol Genomics 2009, 39(3):131-140.
6. Heeney C., et al. Assessing the privacy risks of data sharing in genomics. Public Health Genomics 2011, 14(1):17-25.
7. Health insurance portability and accountability act of 1996, Public Law Gazette; 1996. p. 1-349.
8. Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data. Off. J. Eur. Communities 38 (L. 281).
9. Kaye J., et al. ELSI 2.0 for genomics and society. Science 2012, 4-5.
10. Cambon-Thomsen A., et al. Trends in ethical and legal frameworks for the use of human biobanks. Eur Respir J 2007, 30(2):373-382.
11. Samarati P, Sweeney L. Protecting privacy when disclosing information: k-anonymity and its enforcement through generalization and suppression. In: Proc IEEE symp on security and privacy; 1998.
12. Dalenius T. Finding a needle in a haystack or identifying anonymous census records. J Off Stat 1986, 2(3):329-336.
13. Rasmussen L., et al. Rethinking the honest broker in the changing face of security and privacy. In: Proc AMIA annu symp; 2012. p. 1554-6.
14. Emam K.E., et al. A globally optimal k-anonymity method for the de-identification of health data. J Am Med Inform Assoc 2009, 16(5):670-682.
15. Goldberger J., Tassa T. Efficient anonymizations with enhanced utility. Trans Data Privacy 2010, 3(2):149-175.
16. Fung B., et al. Introduction to privacy-preserving data publishing: concepts and techniques 2010, Chapman & Hall/CRC. 1st ed.
17. Lefevre KR. Anonymity in data publishing and distribution. PhD thesis, Madison, WI, USA; 2007.
18. Samarati P. Protecting respondents' identities in microdata release. IEEE Trans Knowl Data Eng 2001, 13(6):1010-1027.
19. LeFevre K., et al. Incognito: efficient full-domain k-anonymity. Proc int conf on management of data (SIGMOD) 2005, 49-60. ACM.
20. Kohlmayer F, Prasser F, et al. Flash: efficient, stable and optimal k-anonymity. In: Proc int conf on privacy, security, risk and trust; 2012. p. 708-17.
21. Sweeney L. Achieving k-anonymity privacy protection using generalization and suppression. Int J Uncertain Fuzziness Knowl-Based Syst 2002, 10(5):571-588.
22. Ye H, Chen ES. Attribute utility motivated k-anonymization of datasets to support the heterogeneous needs of biomedical researchers. AMIA ann symp proc; 2011. p. 1573-82.
23. Fung B, et al. Top-down specialization for information and privacy preservation. In: Proc int conf on data engineering 2005. p. 205-16.
24. LeFevre K., et al. Mondrian Multidimensional k-Anonymity. Proc int conf on data engineering 2006, IEEE, p. 25.
25. Byun J.-W., et al. Efficient k-anonymization using clustering techniques. Proc int conf database systems for advanced applications 2007, 188-200. Springer-Verlag.
26. Gionis A., et al. k-Anonymization revisited. Proc int conf on data engineering 2008, 744-753. IEEE.
27. Nergiz M.E., Clifton C. Thoughts on k-anonymization. Data Knowl Eng 2007, 63(3):622-645.
28. Machanavajjhala A, et al. l-Diversity: privacy beyond k-anonymity. ACM Trans Knowl Discovery Data; 2007 1 (1).
29. Li N, et al. t-Closeness: privacy beyond k-anonymity and l-diversity. In: Proc int conf on data engineering 2007. p. 106-15.
30. Mohammed N., Fung B. Centralized and distributed anonymization for high-dimensional healthcare data. ACM Trans Knowl Discovery Data 2010, 4(4):1-33.
31. Nergiz M.E., et al. Hiding the presence of individuals from shared databases. Proc int conf on management of data (SIGMOD) 2007, 665-676. ACM.
32. Wong R.C.-W., et al. (α,k)-anonymity: an enhanced k-anonymity model for privacy preserving data publishing. Proc int conf on knowl disc data min (KDD) 2006, 754-759. ACM.
33. Truta T, Vinay B. Privacy protection: p-sensitive k-anonymity property. In: Proc int conf on data engineering 2006. p. 94.
34. Zhang Q., et al. Aggregate query answering on anonymized tables. Proc int conf on data engineering 2007, 116-125. IEEE.
35. Li J., et al. Preservation of proximity privacy in publishing numerical sensitive data. Proc int conf on management of data (SIGMOD) 2008, 473-486. ACM.
36. Wang T., et al. A general proximity privacy principle. Proc int conf on data engineering 2009, 1279-1282. IEEE.
37. Xiao X., Tao Y. M-invariance: towards privacy preserving re-publication of dynamic datasets. Proc int conf on management of data (SIGMOD) 2007, 689-700. ACM.
38. Jurczyk P, Xiong L. Distributed Anonymization: achieving privacy for both data subjects and data providers. In: Proc ann IFIP WG 11.3 working conf on data and applications security; 2009. p. 191-207.
39. Goldreich O. Foundations of cryptography: basic applications 2009, vol. 2. Cambridge University Press.
40. Jiang W., Clifton C. A secure distributed framework for achieving k-anonymity. VLDB J 2006, 15(4):316.
41. Paillier P. Public-key cryptosystems based on composite degree residuosity classes. In: Proc int conf on the theory and application of cryptographic techniques; 1999. p. 223-38.
42. Mohammed N, et al. Privacy-preserving data mashup. In: Proc int conf on extending database technology; 2009. p. 228.
43. Schneier B. Applied cryptography: protocols, algorithms, and source code in C 1995, John Wiley & Sons. 2nd ed.
44. Tassa T., Gudes E. Secure distributed computation of anonymized views of shared databases. ACM Trans Database Syst 2012, 37(2):11:1-11:43.
45. Zhong S., Yang Z., Wright R.N. Privacy-enhancing k-anonymization of customer data. Proc ACM symp on principles of database systems 2005, 139-147. ACM.
46. Kantarcioglu M., Clifton C. Privacy-preserving distributed mining of association rules on horizontally partitioned data. IEEE Trans Knowl Data Eng 2004, 16(9):1026-1037.
47. Wagstaff S.S. Cryptanalysis of number theoretic ciphers (computational mathematics) 2002, Chapman and Hall/CRC.
48. ANSI, ANSI X9.62:2005 Public Key Cryptography for the Financial Services Industry, The Elliptic Curve Digital Signature Algorithm (ECDSA) (2005).
49. Barker E, et al. Recommendation for key management Part 1: General (revision 3). NIST special publication (July); 2011. p. 1-147.
50. The GNU Multiple Precision Arithmetic Library; August 2013. http://gmplib.org/.
51. ARX - Powerful Data Anonymization; August 2013. http://arx.deidentifier.org/.
52. Suga T, et al. Weakness of provably secure searchable encryption against frequency analysis. In: Proc int conf on communications, computers and applications (MIC-CCA). IEEE; October 2012. p. 142-7.
53. Bellare M., et al. Deterministic and efficiently searchable encryption. Advances in cryptology-CRYPTO 2007 2007, vol. 4622:535-552. Springer.
54. Health Insurance Portability and Accountability Act (HIPAA), Public Law; 1996. p. 1-349.
55. Mohammed N., et al. Anonymity meets game theory: secure data integration with malicious participants. VLDB J 2011, 20(4):567-588.
56. Talukder N, et al. Detecting inconsistencies in private data with secure function evaluation. Tech rep 11-006, Purdue University; 2011.
57. Jagannathan G., Wright R. Privacy-preserving imputation of missing data. Data Knowl Eng 2008, 65(1):40-56.
58. Dierks T, Rescorla E. RFC 5246 - The Transport Layer Security (TLS) protocol version 1.2. Tech rep; August 2008.
59. El Emam K, et al. A systematic review of re-identification attacks on health data. PloS one 2011 6 (12).
60. Malin B., et al. Technical and policy approaches to balancing patient privacy and data sharing in clinical and translational research. J Investig Med 2010, 58(1):11-18.
61. Malin B., et al. and mitigation strategies. Hum Genet 2011, 130(3):383-392.
62. Barrio I., et al. Use of generalised additive models to categorise continuous variables in clinical prediction. BMC Med Res Methodol 2013, 13(1):83.
63. Kissner L., Song D. Privacy-preserving set operations. Lect Notes Comput Sci 2005, 241-257. Springer.