Abstract
Moving objects databases have become an enabling technology for location-based applications. They mostly focus on the storing and processing of data about moving objects. Privacy protection is one of the most important concerns related to such databases. In recent years, some mechanisms have been proposed to answer statistical queries over moving objects databases, while satisfying differential privacy. However, none of them consider the case where a moving objects database contains non-spatiotemporal sensitive attributes other than spatiotemporal attributes. Besides, most of them do not support the personalized privacy protection requirements of different moving objects. In this paper, we address these problems by presenting PDP-SAG, a differentially private mechanism that combines the sensitive attribute generalization with personalized privacy in a unified manner. By this combination, we aim to provide different levels of differential privacy protection for moving objects that have non-spatiotemporal sensitive attributes as well. In this regard, we generalize the sensitive attribute values of trajectory data records based on their privacy descriptor and define a new personalized differentially private tree structure to keep different noisy frequencies for each trajectory according to the generalized sensitive attribute values of trajectory data records passing through that trajectory. We also propose intra- and inter-consistency constraints enforcements to make noisy frequencies consistent with each other. The extensive experiments on synthetic and real datasets verify that PDP-SAG significantly improves the utility of sensitive query answers and provides the required level of privacy protection for each moving object, in comparison to the case when no personalization and generalization are permitted.
Highlights
A moving objects database is a multiset of trajectories, each representing the movement history of a moving object during a period of time
We propose Personalized differential privacy (PDP)-SAG, a novel differentially private mechanism that uses a new tree structure, known as noisy personalized sensitive attribute generalization tree (PSAGT), to keep different noisy frequencies for each trajectory according to the generalized sensitive attribute values of trajectory data records
We have presented a novel mechanism, called PDP-SAG, that addresses this issue in the contexts of personalization and the strong privacy model of differential privacy
Summary
A moving objects database is a multiset of trajectories, each representing the movement history of a moving object during a period of time. Moving objects databases have become very important in recent years because of their applications in many domains such as location-based services, municipal transportation, and traffic management. Moving objects databases often contain sensitive information and, improper use of them may lead to privacy breaches. There is a growing concern about breaching the privacy of moving objects whose locations are monitored and tracked. Differential privacy (DP) [1], [2] has recently emerged as a de facto standard for private statistics publishing due to its strong provable privacy guarantees. It ensures that the probability that a statistical query will produce a given result is (nearly) the same as when one data record is added or removed from the database
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
