Preserving location privacy in geosocial applications

Krishna P N Puttaswamy, Shiyuan Wang, Troy Steinbauer, Divyakant Agrawal, Amr El Abbadi, Christopher Kruegel, Ben Y. Zhao

Research output: Contribution to journalArticle

49 Citations (Scopus)

Abstract

Using geosocial applications, such as FourSquare, millions of people interact with their surroundings through their friends and their recommendations. Without adequate privacy protection, however, these systems can be easily misused, for example, to track users or target them for home invasion. In this paper, we introduce LocX, a novel alternative that provides significantly improved location privacy without adding uncertainty into query results or relying on strong assumptions about server security. Our key insight is to apply secure user-specific, distance-preserving coordinate transformations to all location data shared with the server. The friends of a user share this user's secrets so they can apply the same transformation. This allows all location queries to be evaluated correctly by the server, but our privacy mechanisms guarantee that servers are unable to see or infer the actual location data from the transformed data or from the data access. We show that LocX provides privacy even against a powerful adversary model, and we use prototype measurements to show that it provides privacy with very little performance overhead, making it suitable for today's mobile devices.

Original languageEnglish
Article number6365638
Pages (from-to)159-173
Number of pages15
JournalIEEE Transactions on Mobile Computing
Volume13
Issue number1
DOIs
Publication statusPublished - 1 Jan 2014
Externally publishedYes

Fingerprint

Servers
Mobile devices

Keywords

  • Efficiency
  • Location privacy
  • Location transformation
  • Location-based social applications
  • Security

ASJC Scopus subject areas

  • Electrical and Electronic Engineering
  • Computer Networks and Communications
  • Software

Cite this

Puttaswamy, K. P. N., Wang, S., Steinbauer, T., Agrawal, D., El Abbadi, A., Kruegel, C., & Zhao, B. Y. (2014). Preserving location privacy in geosocial applications. IEEE Transactions on Mobile Computing, 13(1), 159-173. [6365638]. https://doi.org/10.1109/TMC.2012.247

Preserving location privacy in geosocial applications. / Puttaswamy, Krishna P N; Wang, Shiyuan; Steinbauer, Troy; Agrawal, Divyakant; El Abbadi, Amr; Kruegel, Christopher; Zhao, Ben Y.

In: IEEE Transactions on Mobile Computing, Vol. 13, No. 1, 6365638, 01.01.2014, p. 159-173.

Research output: Contribution to journalArticle

Puttaswamy, KPN, Wang, S, Steinbauer, T, Agrawal, D, El Abbadi, A, Kruegel, C & Zhao, BY 2014, 'Preserving location privacy in geosocial applications', IEEE Transactions on Mobile Computing, vol. 13, no. 1, 6365638, pp. 159-173. https://doi.org/10.1109/TMC.2012.247
Puttaswamy KPN, Wang S, Steinbauer T, Agrawal D, El Abbadi A, Kruegel C et al. Preserving location privacy in geosocial applications. IEEE Transactions on Mobile Computing. 2014 Jan 1;13(1):159-173. 6365638. https://doi.org/10.1109/TMC.2012.247
Puttaswamy, Krishna P N ; Wang, Shiyuan ; Steinbauer, Troy ; Agrawal, Divyakant ; El Abbadi, Amr ; Kruegel, Christopher ; Zhao, Ben Y. / Preserving location privacy in geosocial applications. In: IEEE Transactions on Mobile Computing. 2014 ; Vol. 13, No. 1. pp. 159-173.
@article{b5a3cbe9b15e467ab240bf00889c7885,
title = "Preserving location privacy in geosocial applications",
abstract = "Using geosocial applications, such as FourSquare, millions of people interact with their surroundings through their friends and their recommendations. Without adequate privacy protection, however, these systems can be easily misused, for example, to track users or target them for home invasion. In this paper, we introduce LocX, a novel alternative that provides significantly improved location privacy without adding uncertainty into query results or relying on strong assumptions about server security. Our key insight is to apply secure user-specific, distance-preserving coordinate transformations to all location data shared with the server. The friends of a user share this user's secrets so they can apply the same transformation. This allows all location queries to be evaluated correctly by the server, but our privacy mechanisms guarantee that servers are unable to see or infer the actual location data from the transformed data or from the data access. We show that LocX provides privacy even against a powerful adversary model, and we use prototype measurements to show that it provides privacy with very little performance overhead, making it suitable for today's mobile devices.",
keywords = "Efficiency, Location privacy, Location transformation, Location-based social applications, Security",
author = "Puttaswamy, {Krishna P N} and Shiyuan Wang and Troy Steinbauer and Divyakant Agrawal and {El Abbadi}, Amr and Christopher Kruegel and Zhao, {Ben Y.}",
year = "2014",
month = "1",
day = "1",
doi = "10.1109/TMC.2012.247",
language = "English",
volume = "13",
pages = "159--173",
journal = "IEEE Transactions on Mobile Computing",
issn = "1536-1233",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
number = "1",

}

TY - JOUR

T1 - Preserving location privacy in geosocial applications

AU - Puttaswamy, Krishna P N

AU - Wang, Shiyuan

AU - Steinbauer, Troy

AU - Agrawal, Divyakant

AU - El Abbadi, Amr

AU - Kruegel, Christopher

AU - Zhao, Ben Y.

PY - 2014/1/1

Y1 - 2014/1/1

N2 - Using geosocial applications, such as FourSquare, millions of people interact with their surroundings through their friends and their recommendations. Without adequate privacy protection, however, these systems can be easily misused, for example, to track users or target them for home invasion. In this paper, we introduce LocX, a novel alternative that provides significantly improved location privacy without adding uncertainty into query results or relying on strong assumptions about server security. Our key insight is to apply secure user-specific, distance-preserving coordinate transformations to all location data shared with the server. The friends of a user share this user's secrets so they can apply the same transformation. This allows all location queries to be evaluated correctly by the server, but our privacy mechanisms guarantee that servers are unable to see or infer the actual location data from the transformed data or from the data access. We show that LocX provides privacy even against a powerful adversary model, and we use prototype measurements to show that it provides privacy with very little performance overhead, making it suitable for today's mobile devices.

AB - Using geosocial applications, such as FourSquare, millions of people interact with their surroundings through their friends and their recommendations. Without adequate privacy protection, however, these systems can be easily misused, for example, to track users or target them for home invasion. In this paper, we introduce LocX, a novel alternative that provides significantly improved location privacy without adding uncertainty into query results or relying on strong assumptions about server security. Our key insight is to apply secure user-specific, distance-preserving coordinate transformations to all location data shared with the server. The friends of a user share this user's secrets so they can apply the same transformation. This allows all location queries to be evaluated correctly by the server, but our privacy mechanisms guarantee that servers are unable to see or infer the actual location data from the transformed data or from the data access. We show that LocX provides privacy even against a powerful adversary model, and we use prototype measurements to show that it provides privacy with very little performance overhead, making it suitable for today's mobile devices.

KW - Efficiency

KW - Location privacy

KW - Location transformation

KW - Location-based social applications

KW - Security

UR - http://www.scopus.com/inward/record.url?scp=84894464853&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84894464853&partnerID=8YFLogxK

U2 - 10.1109/TMC.2012.247

DO - 10.1109/TMC.2012.247

M3 - Article

VL - 13

SP - 159

EP - 173

JO - IEEE Transactions on Mobile Computing

JF - IEEE Transactions on Mobile Computing

SN - 1536-1233

IS - 1

M1 - 6365638

ER -