Double Cache Approach with Wireless Technology for Preserving User Privacy

Several methods use cache for decreasing the number of connections to protect privacy of user data and improve performance in Location Based Services (LBS). Many of these methods require users to trust other users or third parties, which could be servers. An intruder could be disguised as a user or a third party. In this article, we propose a new method, known as “Double Cache Approach”, which uses a pair of caches to reduce the vulnerability of trust between users or third party and offers a vast improvement in privacy and security of user data in healthcare and other applications that use LBS. This approach divides the area into many cells and manages the cooperation among users within two caches at the access point with wireless communication. To demonstrate the superiority, we also provide simulation results of user queries, comparing the proposed method with those using only one cache. We believe that our approach would solve the trust problem optimally, achieve a comprehensive protection for users’ data, and enhance the privacy and security levels.

Download Full-text

IoT Notary : Attestable Sensor Data Capture in IoT Environments

ACM Transactions on Internet of Things ◽

10.1145/3478290 ◽

2022 ◽

Vol 3 (1) ◽

pp. 1-30

Author(s):

Nisha Panwar ◽

Shantanu Sharma ◽

Guoxi Wang ◽

Sharad Mehrotra ◽

Nalini Venkatasubramanian ◽

...

Keyword(s):

Real Time ◽

Location Based Services ◽

Third Party ◽

Sensor Data ◽

Published Data ◽

Resource Limited ◽

User Data ◽

Data Capturing ◽

Iot Devices ◽

The University

Contemporary IoT environments, such as smart buildings, require end-users to trust data-capturing rules published by the systems. There are several reasons why such a trust is misplaced—IoT systems may violate the rules deliberately or IoT devices may transfer user data to a malicious third-party due to cyberattacks, leading to the loss of individuals’ privacy or service integrity. To address such concerns, we propose IoT Notary , a framework to ensure trust in IoT systems and applications. IoT Notary provides secure log sealing on live sensor data to produce a verifiable “proof-of-integrity,” based on which a verifier can attest that captured sensor data adhere to the published data-capturing rules. IoT Notary is an integral part of TIPPERS, a smart space system that has been deployed at the University of California, Irvine to provide various real-time location-based services on the campus. We present extensive experiments over real-time WiFi connectivity data to evaluate IoT Notary , and the results show that IoT Notary imposes nominal overheads. The secure logs only take 21% more storage, while users can verify their one day’s data in less than 2 s even using a resource-limited device.

Download Full-text

Improving Privacy and Security of User Data in Location Based Services

International Journal of Ambient Computing and Intelligence ◽

10.4018/ijaci.2018010102 ◽

2018 ◽

Vol 9 (1) ◽

pp. 19-42 ◽

Cited By ~ 52

Author(s):

Mohammad Yamin ◽

Adnan Ahmed Abi Sen

Keyword(s):

Peer To Peer ◽

Location Based Services ◽

Privacy And Security ◽

Open Problems ◽

The Past ◽

Novel Approach ◽

Cache Simulation ◽

User Data ◽

Improved Performance ◽

Accuracy Of Results

Location Based Services (LBS) expose user data to malicious attacks. Approaches, evolved, so far, for preserving privacy and security, suffer from one or more anomalies, and hence the problem of securing LBS data is far from being resolved. In particular, accuracy of results vs. privacy degree, privacy vs. performance, and trust between users are open problems. In this article, we present a novel approach by integration of peer-to-peer (P2P) with the caching technique and dummies from real queries. Our approach increases efficiency, leads to improved performance, and provides solutions to many problems that have existed in the past. In addition, we offer an improved way of managing cache. Simulation demonstrates superiority of our approach over earlier ones dealing with both the ratio of privacy and that of performance.

Download Full-text

An Efficient and Privacy-Preserving Multiuser Cloud-Based LBS Query Scheme

Security and Communication Networks ◽

10.1155/2018/4724815 ◽

2018 ◽

Vol 2018 ◽

pp. 1-11 ◽

Cited By ~ 5

Author(s):

Lu Ou ◽

Hui Yin ◽

Zheng Qin ◽

Sheng Xiao ◽

Guangyi Yang ◽

...

Keyword(s):

Location Privacy ◽

Security Analysis ◽

Privacy Preserving ◽

Location Based Services ◽

Third Party ◽

Location Information ◽

User Privacy ◽

User Revocation ◽

And Performance ◽

Cloud Infrastructures

Location-based services (LBSs) are increasingly popular in today’s society. People reveal their location information to LBS providers to obtain personalized services such as map directions, restaurant recommendations, and taxi reservations. Usually, LBS providers offer user privacy protection statement to assure users that their private location information would not be given away. However, many LBSs run on third-party cloud infrastructures. It is challenging to guarantee user location privacy against curious cloud operators while still permitting users to query their own location information data. In this paper, we propose an efficient privacy-preserving cloud-based LBS query scheme for the multiuser setting. We encrypt LBS data and LBS queries with a hybrid encryption mechanism, which can efficiently implement privacy-preserving search over encrypted LBS data and is very suitable for the multiuser setting with secure and effective user enrollment and user revocation. This paper contains security analysis and performance experiments to demonstrate the privacy-preserving properties and efficiency of our proposed scheme.

Download Full-text

Humans and Technology for Inclusive Privacy and Security

Proceedings of the Human Factors and Ergonomics Society Annual Meeting ◽

10.1177/1071181320641104 ◽

2020 ◽

Vol 64 (1) ◽

pp. 461-464

Author(s):

Sanchari Das ◽

Robert S. Gutzwiller ◽

Rod D. Roscoe ◽

Prashanth Rajivan ◽

Yang Wang ◽

...

Keyword(s):

Computer Security ◽

Risk Perceptions ◽

Security And Privacy ◽

User Privacy ◽

Privacy And Security ◽

Persons With Disabilities ◽

Software Bugs ◽

Digital Era ◽

Critical Issues ◽

User Data

Computer security and user privacy are critical issues and concerns in the digital era due to both increasing users and threats to their data. Separate issues arise between generic cybersecurity guidance (i.e., protect all user data from malicious threats) and the individualistic approach of privacy (i.e., specific to users and dependent on user needs and risk perceptions). Research has shown that several security- and privacy-focused vulnerabilities are technological (e.g., software bugs (Streiff, Kenny, Das, Leeth, & Camp, 2018), insecure authentication (Das, Wang, Tingle, & Camp, 2019)), or behavioral (e.g., sharing passwords (Das, Dingman, & Camp, 2018); and compliance (Das, Dev, & Srinivasan, 2018) (Dev, Das, Rashidi, & Camp, 2019)). This panel proposal addresses a third category of sociotechnical vulnerabilities that can and sometimes do arise from non-inclusive design of security and privacy. In this panel, we will address users’ needs and desires for privacy. The panel will engage in in-depth discussions about value-sensitive design while focusing on potentially vulnerable populations, such as older adults, teens, persons with disabilities, and others who are not typically emphasized in general security and privacy concerns. Human factors have a stake in and ability to facilitate improvements in these areas.

Download Full-text

An Innovative Method for Preserving Privacy in Internet of Things

Sensors ◽

10.3390/s19153355 ◽

2019 ◽

Vol 19 (15) ◽

pp. 3355 ◽

Cited By ~ 16

Author(s):

Mohammad Yamin ◽

Yazed Alsaawy ◽

Ahmad B. Alkhodre ◽

Adnan Ahmed Abi Sen

Keyword(s):

Internet Of Things ◽

Personal Data ◽

Critical Issue ◽

Location Based Services ◽

The Other ◽

Third Party ◽

Smart Transportation ◽

Existing Problems ◽

Simulation Results ◽

A Minor

Preservation of privacy of users’ personal data has always been a critical issue to deal with. This issue in the Internet of Things (IoT), which facilitates millions of applications, has become even more challenging. Currently, several approaches and methods are available to safeguard privacy but each of them suffers from one or more anomalies. In particular, Trusted Third-Party approach relies on the trust of a third-party server, Cooperation needs the trust of other peers, Obfuscation is known to return inaccurate results, and Dummy generates too much overhead. Moreover, these and most of the other well-known approaches deal only with specific types of applications linked to the location-based services. In this paper, we present two new methods, namely: Blind Third Party (BTP) and Blind Peers ( B L P ), and combine them to form a new one to be known as the Blind Approach ( B L A ). With the help of simulation results we shall demonstrate the effectiveness and superiority of B L A over the other available methods. The simulation results also exhibit that B L A is free from all the existing problems of the other approaches. However, B L A causes a slight increase in the average (response) time, which we consider to be a minor issue. We shall also discuss the capability and superiority of the Blind Approach in the cases of E-health, Smart Transportation, and Smart Home systems.

Download Full-text

Privacy Preserving Data Access to Cloud

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

10.35940/ijitee.i8663.078919 ◽

2019 ◽

Vol 8 (9) ◽

pp. 2612-2617

Keyword(s):

Service Provider ◽

File Systems ◽

Cloud Service ◽

Data Access ◽

Data Encryption ◽

Third Party ◽

Distributed File Systems ◽

User Privacy ◽

Cloud Service Provider ◽

User Data

The current systems stress on protection of data stored in the cloud servers without giving much thought and consideration to the protection of data during user access. Encryption of data is a technique that is popularly used to protect stored data. Encryption essentially scrambles the data and stores it in a form which makes no sense unless decrypted with the suitable key. Every cloud service provider ensures data is stored in an encrypted form in its servers. Encryption of data is not sufficient to protect user data as acquiring the appropriate key can result in decrypting of the data. Encrypting the data before uploading the data to the cloud can help to an extent to preserve data. To access the data it would need to be encrypted twice- once by the cloud service provider and then by the user. Cloud service provider is prevented from accessing user data and also other third-party individuals. However, this approach too is not efficient and sufficient to protect user data. ORAM algorithm is used to enable access to user data stored on distributed file systems that comprises of multiple servers stored either at a single location or multiple locations across the globe in a manner which ensures the user privacy is protected when accessing the data. Reshuffle of data blocks stored in third party servers ensures the access pattern of the user remains hidden. ORAM algorithm does not cause any hindrance to the data access and does not lead to any major drop in data access rate. To ensure security, we propose a load balancing technique to guarantee smooth and safe approach for data access.

Download Full-text

Improving Privacy and Security of User Data in Location Based Services

Research Anthology on Privatizing and Securing Data ◽

10.4018/978-1-7998-8954-0.ch067 ◽

2021 ◽

pp. 1411-1437

Author(s):

Mohammad Yamin ◽

Adnan Ahmed Abi Sen

Keyword(s):

Peer To Peer ◽

Location Based Services ◽

Privacy And Security ◽

Open Problems ◽

The Past ◽

Novel Approach ◽

Cache Simulation ◽

User Data ◽

Improved Performance ◽

Accuracy Of Results

Download Full-text

Securing Heterogeneous Privacy Protection in Social Network Records based Encryption Scheme

International Journal on Recent and Innovation Trends in Computing and Communication ◽

10.17762/ijritcc.v7i3.5249 ◽

2019 ◽

Vol 7 (3) ◽

pp. 10-13

Author(s):

Balamurugan. R ◽

Dhivakar. M ◽

Muruganantham. G ◽

Ramprakash. S

Keyword(s):

Social Networks ◽

Social Network ◽

Social Networking ◽

Online Social Networks ◽

Social Networking Sites ◽

Network Inference ◽

Third Party ◽

Sensitive Information ◽

Privacy And Security ◽

User Data

This survey places of interest the major issues concerning privacy and security in online social networks. Firstly, we discuss investigate that aims to protect user data from the an assortment of attack vantage points together with other users, advertisers, third party request developers, and the online social arrangement provider itself. Next we cover social network supposition of user attributes, locate hubs, and link prediction. Because online social networks are so saturated with sensitive information, network inference plays a major privacy role. Social Networking sites go upwards since of all these reasons. In recent years indicates that for many people they are now the mainstream communication knowledge. Social networking sites come under few of the most frequently browsed categories websites in the world. Nevertheless Social Networking sites are also vulnerable to various problems threats and attacks such as revelation of information, identity thefts etc. Privacy practice in social networking sites often appear convoluted as in sequence sharing stands in discord with the need to reduce disclosure-related abuses. Facebook is one such most popular and widely used Social Networking sites which have its own healthy set of Privacy policy.

Download Full-text

A Novel Location Privacy-Preserving Approach Based on Blockchain

Sensors ◽

10.3390/s20123519 ◽

2020 ◽

Vol 20 (12) ◽

pp. 3519 ◽

Cited By ~ 2

Author(s):

Ying Qiu ◽

Yi Liu ◽

Xuan Li ◽

Jiahui Chen

Keyword(s):

Privacy Protection ◽

Location Privacy ◽

User Participation ◽

Location Based Services ◽

Third Party ◽

User Privacy ◽

Protection Method ◽

Location Privacy Protection ◽

Reward Mechanism

Location-based services (LBS) bring convenience to people’s lives but are also accompanied with privacy leakages. To protect the privacy of LBS users, many location privacy protection algorithms were proposed. However, these algorithms often have difficulty to maintain a balance between service quality and user privacy. In this paper, we first overview the shortcomings of the existing two privacy protection architectures and privacy protection technologies, then we propose a location privacy protection method based on blockchain. Our method satisfies the principle of k-anonymity privacy protection and does not need the help of trusted third-party anonymizing servers. The combination of multiple private blockchains can disperse the user’s transaction records, which can provide users with stronger location privacy protection and will not reduce the quality of service. We also propose a reward mechanism to encourage user participation. Finally, we implement our approach in the Remix blockchain to show the efficiency, which further indicates the potential application prospect for the distributed network environment.

Download Full-text

Provable Data Possession (PDP) and Proofs of Retrievability (POR) of Current Big User Data

SN Computer Science ◽

10.1007/s42979-021-00968-z ◽

2021 ◽

Vol 3 (1) ◽

Author(s):

Ieuan Walker ◽

Chaminda Hewage ◽

Ambikesh Jayal

Keyword(s):

Conceptual Framework ◽

Data Storage ◽

Third Party ◽

Privacy And Security ◽

Provable Data Possession ◽

Security Issues ◽

Outsourced Data ◽

Storage Solutions ◽

User Data ◽

Proofs Of Retrievability

AbstractA growing trend over the last few years is storage outsourcing, where the concept of third-party data warehousing has become more popular. This trend prompts several interesting privacy and security issues. One of the biggest concerns with third-party data storage providers is accountability. This article, critically reviews two schemas/algorithms that allow users to check the integrity and availability of their outsourced data on untrusted data stores (i.e., third-party data storages). The reviewed schemas are provable data possession (PDP) and proofs of retrievability (POR). Both are cryptographic protocols designed to provide clients the assurance that their data are secure on the untrusted data storages. Furthermore, a conceptual framework is proposed to mitigate the weaknesses of the current storage solutions.

Download Full-text