Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by William Yurcik Articles by Clay Woolam Articles by Greg Hellings Articles by Latifur Khan Articles by Bhavani Thuraisingham

2008 Third International Conference on Availability, Reliability and Security

March 04-March 07

ISBN: 978-0-7695-3102-1

	ASCII Text	x
	William Yurcik, Clay Woolam, Greg Hellings, Latifur Khan, Bhavani Thuraisingham, "Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case," Availability, Reliability and Security, International Conference on, pp. 237-244, 2008 Third International Conference on Availability, Reliability and Security, 2008.

	BibTex	x
	@article{ 10.1109/ARES.2008.189, author = {William Yurcik and Clay Woolam and Greg Hellings and Latifur Khan and Bhavani Thuraisingham}, title = {Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case}, journal ={Availability, Reliability and Security, International Conference on}, volume = {0}, year = {2008}, isbn = {978-0-7695-3102-1}, pages = {237-244}, doi = {http://doi.ieeecomputersociety.org/10.1109/ARES.2008.189}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Availability, Reliability and Security, International Conference on TI - Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case SN - 978-0-7695-3102-1 SP237 EP244 A1 - William Yurcik, A1 - Clay Woolam, A1 - Greg Hellings, A1 - Latifur Khan, A1 - Bhavani Thuraisingham, PY - 2008 KW - privacy-enhanced security data sharing VL - 0 JA - Availability, Reliability and Security, International Conference on ER -

Bhavani Thuraisingham

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ARES.2008.189

Network data needs to be shared for distributed security analysis. Anonymization of network data for sharing sets up a fundamental tradeoff between privacy protection versus security analysis capability. This privacy/analysis tradeoff has been acknowledged by many researchers but this is the first paper to provide empirical measurements to characterize the privacy/analysis tradeoff for an enterprise dataset. Specifically we perform anonymization options on single-fields within network packet traces and then make measurements using intrusion detection system alarms as a proxy for security analysis capability. Our results show: (1) two fields have a zero sum tradeoff (more privacy lessens security analysis and vice versa) and (2) eight fields have a more complex tradeoff (that is not zero sum) in which both privacy and analysis can both be simultaneously accomplished.

Index Terms:

privacy-enhanced security data sharing

Citation:

William Yurcik, Clay Woolam, Greg Hellings, Latifur Khan, Bhavani Thuraisingham, "Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case," ares, pp.237-244, 2008 Third International Conference on Availability, Reliability and Security, 2008

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.