Issue No. 08 - August (2008 vol. 20)
Malicious users can exploit the correlation among data to infer sensitive information from a series of seemingly innocuous data accesses. Thus, we develop an inference violation detection system to protect sensitive data content. Based on data dependency, database schema and semantic knowledge, we con-structed a semantic inference model (SIM) that represents the possible inference channels from any at-tribute to the pre-assigned sensitive attributes. The SIM is then instantiated to a semantic inference graph (SIG) for query-time inference violation detection. For a single user case, when a user poses a query, the detection system will examine his/her past query log and calculate the probability of inferring sensitive information. The query request will be denied if the inference probability exceeds the pre-specified threshold. For multi-user cases, the users may share their query answers to increase the inference prob-ability. Therefore, we develop a model to evaluate collaborative inference based on the query sequences of collaborators and their task-sensitive collaboration levels. Experimental studies reveal that information authoritativeness, communication fidelity and honesty in collaboration are three key factors that affect the level of achievable collaboration. An example is given to illustrate the use of the proposed technique to prevent multiple collaborative users from deriving sensitive information via inference.
Security and Privacy Protection, Inference engines
Wesley W. Chu, Yu Chen, "Protection of Database Security via Collaborative Inference Detection", IEEE Transactions on Knowledge & Data Engineering, vol. 20, no. , pp. 1013-1027, August 2008, doi:10.1109/TKDE.2007.190642