ProfileGuard

Privacy preserving obfuscation for mobile user profiles

Imdad Ullah, Roksana Boreli, Salil S. Kanhere, Sanjay Chawla

Research output: Chapter in Book/Report/Conference proceedingConference contribution

3 Citations (Scopus)

Abstract

Analytics companies have become an integral part of the mobile advertising industry, enabling successful user targeting via user profiles, derived from the mobile apps installed by specific users. This poses a threat to privacy of such users, when apps indicating sensitive information, e.g., a gaming app showing a gambling problem, are the basis for profiling. In this paper, we propose a Profile Guard, novel app-based obfuscation mechanism to remove the dominance (prevalence amongst the interest categories present in a user profile) of selected private user profile interest categories. We show, based on extensive experimental evaluation using 2700 Android apps during a 9 month test campaign, that the best trade-off between the level of effort required by the obfuscating system and the resulting privacy protection can be achieved by choosing the obfuscating apps based on similarity with user's existing apps (while ensuring that the selected apps belong to a non-private category). We implement a POC ProfileGuard app to demonstrate the feasibility of an automated obfuscation mechanism. We also provide insights into the broad Google AdMob profiling rules, showing that there is a deterministic mapping of individual apps to profile interests, that profiles based on multiple apps represent a union of individual app profiles and that there is a minimum level of activity necessary for AdMob to build a stable user profile. Finally, we show the resulting effect of obfuscation on the received ads, demonstrating that modifying user profiles to include a richer set of interests results in correspondingly more diverse received ads.

Original languageEnglish
Title of host publicationProceedings of the ACM Conference on Computer and Communications Security
PublisherAssociation for Computing Machinery
Pages83-92
Number of pages10
ISBN (Print)9781450331487
DOIs
Publication statusPublished - 3 Nov 2014
Externally publishedYes
Event13th Workshop on Privacy in the Electronic Society, WPES 2014, in Conjunction with the ACM Conference on Computer and Communications Security, ACM CCS 2014 - Scottsdale
Duration: 3 Nov 2014 → …

Other

Other13th Workshop on Privacy in the Electronic Society, WPES 2014, in Conjunction with the ACM Conference on Computer and Communications Security, ACM CCS 2014
CityScottsdale
Period3/11/14 → …

Fingerprint

Application programs
Marketing
Industry

Keywords

  • Mobile apps
  • Obfuscation
  • Privacy
  • Targeted ads

ASJC Scopus subject areas

  • Software
  • Computer Networks and Communications

Cite this

Ullah, I., Boreli, R., Kanhere, S. S., & Chawla, S. (2014). ProfileGuard: Privacy preserving obfuscation for mobile user profiles. In Proceedings of the ACM Conference on Computer and Communications Security (pp. 83-92). Association for Computing Machinery. https://doi.org/10.1145/2665943.2665961

ProfileGuard : Privacy preserving obfuscation for mobile user profiles. / Ullah, Imdad; Boreli, Roksana; Kanhere, Salil S.; Chawla, Sanjay.

Proceedings of the ACM Conference on Computer and Communications Security. Association for Computing Machinery, 2014. p. 83-92.

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Ullah, I, Boreli, R, Kanhere, SS & Chawla, S 2014, ProfileGuard: Privacy preserving obfuscation for mobile user profiles. in Proceedings of the ACM Conference on Computer and Communications Security. Association for Computing Machinery, pp. 83-92, 13th Workshop on Privacy in the Electronic Society, WPES 2014, in Conjunction with the ACM Conference on Computer and Communications Security, ACM CCS 2014, Scottsdale, 3/11/14. https://doi.org/10.1145/2665943.2665961
Ullah I, Boreli R, Kanhere SS, Chawla S. ProfileGuard: Privacy preserving obfuscation for mobile user profiles. In Proceedings of the ACM Conference on Computer and Communications Security. Association for Computing Machinery. 2014. p. 83-92 https://doi.org/10.1145/2665943.2665961
Ullah, Imdad ; Boreli, Roksana ; Kanhere, Salil S. ; Chawla, Sanjay. / ProfileGuard : Privacy preserving obfuscation for mobile user profiles. Proceedings of the ACM Conference on Computer and Communications Security. Association for Computing Machinery, 2014. pp. 83-92
@inproceedings{6dac84c6873e48a79e2675fde53c646e,
title = "ProfileGuard: Privacy preserving obfuscation for mobile user profiles",
abstract = "Analytics companies have become an integral part of the mobile advertising industry, enabling successful user targeting via user profiles, derived from the mobile apps installed by specific users. This poses a threat to privacy of such users, when apps indicating sensitive information, e.g., a gaming app showing a gambling problem, are the basis for profiling. In this paper, we propose a Profile Guard, novel app-based obfuscation mechanism to remove the dominance (prevalence amongst the interest categories present in a user profile) of selected private user profile interest categories. We show, based on extensive experimental evaluation using 2700 Android apps during a 9 month test campaign, that the best trade-off between the level of effort required by the obfuscating system and the resulting privacy protection can be achieved by choosing the obfuscating apps based on similarity with user's existing apps (while ensuring that the selected apps belong to a non-private category). We implement a POC ProfileGuard app to demonstrate the feasibility of an automated obfuscation mechanism. We also provide insights into the broad Google AdMob profiling rules, showing that there is a deterministic mapping of individual apps to profile interests, that profiles based on multiple apps represent a union of individual app profiles and that there is a minimum level of activity necessary for AdMob to build a stable user profile. Finally, we show the resulting effect of obfuscation on the received ads, demonstrating that modifying user profiles to include a richer set of interests results in correspondingly more diverse received ads.",
keywords = "Mobile apps, Obfuscation, Privacy, Targeted ads",
author = "Imdad Ullah and Roksana Boreli and Kanhere, {Salil S.} and Sanjay Chawla",
year = "2014",
month = "11",
day = "3",
doi = "10.1145/2665943.2665961",
language = "English",
isbn = "9781450331487",
pages = "83--92",
booktitle = "Proceedings of the ACM Conference on Computer and Communications Security",
publisher = "Association for Computing Machinery",

}

TY - GEN

T1 - ProfileGuard

T2 - Privacy preserving obfuscation for mobile user profiles

AU - Ullah, Imdad

AU - Boreli, Roksana

AU - Kanhere, Salil S.

AU - Chawla, Sanjay

PY - 2014/11/3

Y1 - 2014/11/3

N2 - Analytics companies have become an integral part of the mobile advertising industry, enabling successful user targeting via user profiles, derived from the mobile apps installed by specific users. This poses a threat to privacy of such users, when apps indicating sensitive information, e.g., a gaming app showing a gambling problem, are the basis for profiling. In this paper, we propose a Profile Guard, novel app-based obfuscation mechanism to remove the dominance (prevalence amongst the interest categories present in a user profile) of selected private user profile interest categories. We show, based on extensive experimental evaluation using 2700 Android apps during a 9 month test campaign, that the best trade-off between the level of effort required by the obfuscating system and the resulting privacy protection can be achieved by choosing the obfuscating apps based on similarity with user's existing apps (while ensuring that the selected apps belong to a non-private category). We implement a POC ProfileGuard app to demonstrate the feasibility of an automated obfuscation mechanism. We also provide insights into the broad Google AdMob profiling rules, showing that there is a deterministic mapping of individual apps to profile interests, that profiles based on multiple apps represent a union of individual app profiles and that there is a minimum level of activity necessary for AdMob to build a stable user profile. Finally, we show the resulting effect of obfuscation on the received ads, demonstrating that modifying user profiles to include a richer set of interests results in correspondingly more diverse received ads.

AB - Analytics companies have become an integral part of the mobile advertising industry, enabling successful user targeting via user profiles, derived from the mobile apps installed by specific users. This poses a threat to privacy of such users, when apps indicating sensitive information, e.g., a gaming app showing a gambling problem, are the basis for profiling. In this paper, we propose a Profile Guard, novel app-based obfuscation mechanism to remove the dominance (prevalence amongst the interest categories present in a user profile) of selected private user profile interest categories. We show, based on extensive experimental evaluation using 2700 Android apps during a 9 month test campaign, that the best trade-off between the level of effort required by the obfuscating system and the resulting privacy protection can be achieved by choosing the obfuscating apps based on similarity with user's existing apps (while ensuring that the selected apps belong to a non-private category). We implement a POC ProfileGuard app to demonstrate the feasibility of an automated obfuscation mechanism. We also provide insights into the broad Google AdMob profiling rules, showing that there is a deterministic mapping of individual apps to profile interests, that profiles based on multiple apps represent a union of individual app profiles and that there is a minimum level of activity necessary for AdMob to build a stable user profile. Finally, we show the resulting effect of obfuscation on the received ads, demonstrating that modifying user profiles to include a richer set of interests results in correspondingly more diverse received ads.

KW - Mobile apps

KW - Obfuscation

KW - Privacy

KW - Targeted ads

UR - http://www.scopus.com/inward/record.url?scp=84910686514&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84910686514&partnerID=8YFLogxK

U2 - 10.1145/2665943.2665961

DO - 10.1145/2665943.2665961

M3 - Conference contribution

SN - 9781450331487

SP - 83

EP - 92

BT - Proceedings of the ACM Conference on Computer and Communications Security

PB - Association for Computing Machinery

ER -