Issue No.03 - March (2010 vol.22)
Slava Kisilevich , University of Konstanz, Konstanz
Lior Rokach , Ben-Gurion University, Be'er-Sheva
Yuval Elovici , Ben-Gurion University, Be'er-Sheva
Bracha Shapira , Ben-Gurion University, Be'er-Sheva
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/TKDE.2009.91
Many applications that employ data mining techniques involve mining data that include private and sensitive information about the subjects. One way to enable effective data mining while preserving privacy is to anonymize the data set that includes private information about subjects before being released for data mining. One way to anonymize data set is to manipulate its content so that the records adhere to k-anonymity. Two common manipulation techniques used to achieve k-anonymity of a data set are generalization and suppression. Generalization refers to replacing a value with a less specific but semantically consistent value, while suppression refers to not releasing a value at all. Generalization is more commonly applied in this domain since suppression may dramatically reduce the quality of the data mining results if not properly used. However, generalization presents a major drawback as it requires a manually generated domain hierarchy taxonomy for every quasi-identifier in the data set on which k-anonymity has to be performed. In this paper, we propose a new method for achieving k-anonymity named K-anonymity of Classification Trees Using Suppression (kACTUS). In kACTUS, efficient multidimensional suppression is performed, i.e., values are suppressed only on certain records depending on other attribute values, without the need for manually produced domain hierarchy trees. Thus, in kACTUS, we identify attributes that have less influence on the classification of the data records and suppress them if needed in order to comply with k-anonymity. The kACTUS method was evaluated on 10 separate data sets to evaluate its accuracy as compared to other k-anonymity generalization- and suppression-based methods. Encouraging results suggest that kACTUS' predictive performance is better than that of existing k-anonymity algorithms. Specifically, on average, the accuracies of TDS, TDR, and kADET are lower than kACTUS in 3.5, 3.3, and 1.9 percent, respectively, despite their usage of manually defined domain trees. The accuracy gap is increased to 5.3, 4.3, and 3.1 percent, respectively, when no domain trees are used.
Privacy-preserving data mining, k-anonymity, deindentified data, decision trees.
Slava Kisilevich, Lior Rokach, Yuval Elovici, Bracha Shapira, "Efficient Multidimensional Suppression for K-Anonymity", IEEE Transactions on Knowledge & Data Engineering, vol.22, no. 3, pp. 334-347, March 2010, doi:10.1109/TKDE.2009.91