Privacy Preserving OLAP and OLAP Security

The problem of ensuring the privacy and security of OLAP data cubes (Gray et al., 1997) arises in several fields ranging from advanced Data Warehousing (DW) and Business Intelligence (BI) systems to sophisticated Data Mining (DM) tools. In DW and BI systems, decision making analysts aim at avoiding that malicious users access perceptive ranges of multidimensional data in order to infer sensitive knowledge, or attack corporate data cubes via violating user rules, grants and revokes. In DM tools, domain experts aim at avoiding that malicious users infer critical-for-thetask knowledge from authoritative DM results such as frequent item sets, patterns and regularities, clusters, and discovered association rules. In more detail, the former application scenario (i.e., DW and BI systems) deals with both the privacy preservation and the security of data cubes, whereas the latter one (i.e., DM tools) deals with privacy preserving OLAP issues solely. With respect to security issues, although security aspects of information systems include a plethora of topics ranging from cryptography to access control and secure digital signature, in our work we particularly focus on access control techniques for data cubes, and remand the reader to the active literature for the other orthogonal matters. Specifically, privacy preservation of data cubes refers to the problem of ensuring the privacy of data cube cells (and, in turn, that of queries defined over collections of data cube cells), i.e. hiding sensitive information and knowledge during data management activities, according to the general guidelines drawn by Sweeney in her seminar paper (Sweeney, 2002), whereas access control issues refer to the problem of ensuring the security of data cube cells, i.e. restricting the access of unauthorized users to specific sub-domains of the target data cube, according to well-known concepts studied and assessed in the context of DBMS security. Nonetheless, it is quite straightforward foreseeing that these two even distinct aspects should be meaningfully integrated in order to ensure both the privacy and security of complex data cubes, i.e. data cubes built on top of complex data/knowledge bases. During last years, these topics have became of great interest for the Data Warehousing and Databases research communities, due to their exciting theoretical challenges as well as their relevance and practical impact in modern real-life OLAP systems and applications. On a more conceptual plane, theoretical aspects are mainly devoted to study how probability and statistics schemes as well as rule-based models can be applied in order to efficiently solve the above-introduced problems. On a more practical plane, researchers and practitioners aim at integrating convenient privacy preserving and security solutions within the core layers of commercial OLAP server platforms. Basically, to tackle deriving privacy preservation challenges in OLAP, researchers have proposed models and algorithms that can be roughly classified within two main classes: restriction-based techniques, and data perturbation techniques. First ones propose limiting the number of query kinds that can be posed against the target OLAP server. Second ones propose perturbing data cells by means of random noise at various levels, ranging from schemas to queries. On the other hand, access control solutions in OLAP are mainly inspired by the wide literature developed in the context of controlling accesses to DBMS, and try to adapt such schemes in order to control accesses to OLAP systems.

Download Full-text

A Fine-Grained User-Divided Privacy-Preserving Access Control Protocol in Smart Watch

Sensors ◽

10.3390/s19092109 ◽

2019 ◽

Vol 19 (9) ◽

pp. 2109

Author(s):

Liming Fang ◽

Minghui Li ◽

Lu Zhou ◽

Hanyi Zhang ◽

Chunpeng Ge

Keyword(s):

Access Control ◽

Data Privacy ◽

Privacy Preservation ◽

Data Access ◽

Privacy Preserving ◽

Security And Privacy ◽

Fine Grained ◽

Data Access Control ◽

Smart Watch ◽

Performance And Evaluation

A smart watch is a kind of emerging wearable device in the Internet of Things. The security and privacy problems are the main obstacles that hinder the wide deployment of smart watches. Existing security mechanisms do not achieve a balance between the privacy-preserving and data access control. In this paper, we propose a fine-grained privacy-preserving access control architecture for smart watches (FPAS). In FPAS, we leverage the identity-based authentication scheme to protect the devices from malicious connection and policy-based access control for data privacy preservation. The core policy of FPAS is two-fold: (1) utilizing a homomorphic and re-encrypted scheme to ensure that the ciphertext information can be correctly calculated; (2) dividing the data requester by different attributes to avoid unauthorized access. We present a concrete scheme based on the above prototype and analyze the security of the FPAS. The performance and evaluation demonstrate that the FPAS scheme is efficient, practical, and extensible.

Download Full-text

View Selection in DW and OLAP

Encyclopedia of Data Warehousing and Mining, Second Edition ◽

10.4018/978-1-60566-010-3.ch313 ◽

2011 ◽

pp. 2048-2055

Author(s):

Alfredo Cuzzocrea

Keyword(s):

Knowledge Discovery ◽

Data Warehousing ◽

Data Cube ◽

Data Exploration ◽

Multidimensional Data ◽

Data Cubes ◽

View Selection ◽

Materialized View ◽

Data Source ◽

Time Required

Data Warehousing (DW) systems store materialized views, data marts and data cubes, and provide nicely data exploration and analysis interfaces via OnLine Analytical Processing (OLAP) (Gray et al., 1997) and Data Mining (DM) tools and algorithms. Also, OnLine Analytical Mining (OLAM) (Han, 1997) integrates the previous knowledge discovery methodologies and offers a meaningfully convergence between OLAP and DM, thus contributing to significantly augment the power of data exploration and analysis capabilities of knowledge workers. At the storage layer, the mentioned knowledge discovery methodologies share the problem of efficiently accessing, querying and processing multidimensional data, which in turn heavily affect the performance of knowledge discovery processes at the application layer. Due to the fact that OLAP and OLAM directly process data cubes/marts, and DM is more and more encompassing methodologies that are interested to multidimensional data, the problem of efficiently representing data cubes by means of a meaningfully selected view set is become of relevant interest for the Data Warehousing and OLAP research community. This problem is directly related to the analogous problem of efficiently computing the data cube from a given relational data source (Harinarayan et al., 1996; Agarwal et al., 1996; Sarawagi et al., 1996; Zhao et al., 1997). Given a relational data source R and a target data cube schema W, the view selection problem in OLAP deals with how to select and materialize views from R in order to compute the data cube A defined by the schema W by optimizing both the query processing time, denoted by TQ, which models the amount of time required to answer a reference query-workload on the materialized view set, and the view maintenance time, denoted by TM, which models the amount of time required to maintain the materialized view set when updates occur, under a given set of constraints I that, without any loss of generality, can be represented by a space bound constraint B limiting the overall occupancy of the views to be materialized (i.e., I = ). It has been demonstrated (Gupta, 1997; Gupta & Mumick, 2005) that this problem is NP-hard, thus heuristic schemes are necessary. Heuristics are, in turn, implemented in the vest of greedy algorithms (Yang et al., 1997; Kalnis et al., 2002). In this article, we focus the attention on state-ofthe- art methods for the view selection problem in Data Warehousing and OLAP, and complete our analytical contribution with a theoretical analysis of these proposals under different selected properties that nicely model spatial and temporal complexity aspects of the investigated problem.

Download Full-text

Secure Data Sharing Platform for Portable Social Networks with Power Saving Operation

Journal of ISMAC - June 2019 ◽

10.36548/jismac.2021.3.006 ◽

2021 ◽

Vol 3 (3) ◽

pp. 250-262

Author(s):

Jennifer S. Raj

Keyword(s):

Social Networks ◽

Access Control ◽

Privacy Preservation ◽

Keyword Search ◽

Power Saving ◽

Privacy Preserving ◽

Mobile Social Networks ◽

User Privacy ◽

Attribute Based Encryption ◽

Ciphertext Policy

Several subscribing and content sharing services are largely personalized with the growing use of mobile social media technology. The end user privacy in terms of social relationships, interests and identities as well as shared content confidentiality are some of the privacy concerns in such services. The content is provided with fine-grained access control with the help of attribute-based encryption (ABE) in existing work. Decryption of privacy preserving content suffers high consumption of energy and data leakage to unauthorized people is faced when mobile social networks share privacy preserving data. In the mobile social networks, a secure proxy decryption model with enhanced publishing and subscribing scheme is presented in this paper as a solution to the aforementioned issues. The user credentials and data confidentiality are protected by access control techniques that work on privacy preserving in a self-contained manner. Keyword search based public-key encryption with ciphertext policy attribute-based encryption is used in this model. At the end users, ciphertext decryption is performed to reduce the energy consumption by the secure proxy decryption scheme. The effectiveness and efficiency of the privacy preservation model is observed from the experimental results.

Download Full-text

Dynamic and semantic-aware access-control model for privacy preservation in multiple data center environments

International Journal of Distributed Sensor Networks ◽

10.1177/1550147720921778 ◽

2020 ◽

Vol 16 (5) ◽

pp. 155014772092177

Author(s):

Aiguo Chen ◽

Guoming Lu ◽

Hanwen Xing ◽

Yuan Xie ◽

Shunwei Yuan

Keyword(s):

Access Control ◽

Data Center ◽

High Performance ◽

Large Scale ◽

Privacy Preservation ◽

Rapid Development ◽

Control Model ◽

Access Control Model ◽

Privacy And Security ◽

Multiple Data

With the rapid development of intelligent perception and other data acquisition technologies in the Internet of things, large-scale scientific workflows have been widely used in geographically distributed multiple data centers to realize high performance in business model construction and computational processing. However, insider threats pose very significant privacy and security risks to systems. Traditional access-control models can no longer satisfy the reasonable authorization of resources in these new cross-domain environments. Therefore, a dynamic and semantic-aware access-control model is proposed for privacy preservation in multiple data center environments, which implements a semantic dynamic authorization strategy based on an anomaly assessment of users’ behavior sequences. The experimental results demonstrate that this dynamic and semantic-aware access-control model is highly dynamic and flexible and can improve the security of the application system.

Download Full-text

Data mining techniques application for prediction in OLAP cube

International Journal of Electrical and Computer Engineering (IJECE) ◽

10.11591/ijece.v9i3.pp2094-2102 ◽

2019 ◽

Vol 9 (3) ◽

pp. 2094

Author(s):

Asma Lamani ◽

Brahim Erraha ◽

Malika Elkyal ◽

Abdallah Sair

Keyword(s):

Data Mining ◽

Decision Support ◽

Initial Data ◽

Data Cube ◽

The Other ◽

Data Warehouses ◽

Automatic Learning ◽

Data Cubes ◽

A Cell ◽

Learning Set

Data warehouses represent collections of data organized to support a process of decision support, and provide an appropriate solution for managing large volumes of data. OLAP online analytics is a technology that complements data warehouses to make data usable and understandable by users, by providing tools for visualization, exploration, and navigation of data-cubes. On the other hand, data mining allows the extraction of knowledge from data with different methods of description, classification, explanation and prediction. As part of this work, we propose new ways to improve existing approaches in the process of decision support. In the continuity of the work treating the coupling between the online analysis and data mining to integrate prediction into OLAP, an approach based on automatic learning with Clustering is proposed in order to partition an initial data cube into dense sub-cubes that could serve as a learning set to build a prediction model. The technique of data mining by regression trees is then applied for each sub-cube to predict the value of a cell.

Download Full-text

Preserving Privacy in Multimedia Social Networks Using Machine Learning Anomaly Detection

Security and Communication Networks ◽

10.1155/2020/5874935 ◽

2020 ◽

Vol 2020 ◽

pp. 1-14 ◽

Cited By ~ 1

Author(s):

Randa Aljably ◽

Yuan Tian ◽

Mznah Al-Rodhaan

Keyword(s):

Machine Learning ◽

Social Networks ◽

Access Control ◽

Anomaly Detection ◽

Privacy Preservation ◽

Support Vector ◽

Detection Techniques ◽

Access Control Models ◽

Control Models ◽

Multimedia Social Networks

Nowadays, user’s privacy is a critical matter in multimedia social networks. However, traditional machine learning anomaly detection techniques that rely on user’s log files and behavioral patterns are not sufficient to preserve it. Hence, the social network security should have multiple security measures to take into account additional information to protect user’s data. More precisely, access control models could complement machine learning algorithms in the process of privacy preservation. The models could use further information derived from the user’s profiles to detect anomalous users. In this paper, we implement a privacy preservation algorithm that incorporates supervised and unsupervised machine learning anomaly detection techniques with access control models. Due to the rich and fine-grained policies, our control model continuously updates the list of attributes used to classify users. It has been successfully tested on real datasets, with over 95% accuracy using Bayesian classifier, and 95.53% on receiver operating characteristic curve using deep neural networks and long short-term memory recurrent neural network classifiers. Experimental results show that this approach outperforms other detection techniques such as support vector machine, isolation forest, principal component analysis, and Kolmogorov–Smirnov test.

Download Full-text

Rise, Fall, and Recovery of Blockchains in the Maritime Technology Space

Journal of Marine Science and Engineering ◽

10.3390/jmse9030266 ◽

2021 ◽

Vol 9 (3) ◽

pp. 266

Author(s):

Ziaul Haque Munim ◽

Okan Duru ◽

Enna Hirata

Keyword(s):

Systematic Approach ◽

The Other ◽

Privacy Management ◽

Maritime Industry ◽

Privacy And Security ◽

Maritime Literature ◽

Blockchain Technology ◽

Other Hand ◽

Antitrust Laws ◽

Maritime Technology

Blockchain technology, since its introduction, has been expected to be implemented in many areas. Cryptocurrency is one unique example that established a functioning application. On the other hand, blockchain technology is not immune to various challenges related to the nature of itself, privacy management, and antitrust laws, among others. This study lays out the nature of blockchain and applications in the maritime industry, while highlighting the bottlenecks. Potential resolutions and anticipated developments are proposed. To do this, we adopt a systematic approach and present an overview of blockchain in maritime literature. In addition, the fundamental problems with blockchain are investigated, beginning from their essentials to the pain points that are claimed to need improvement. For establishing a legitimate and practically meaningful blockchain platform, stakeholders need to achieve pluralism (consensus validation), privacy, and security of the system.

Download Full-text