Resilient collaborative privacy for Location-Based services
2015 (English)In: 20th Nordic Conference on Secure IT Systems, NordSec 2015, Springer, 2015, 47-63 p.Conference paper (Refereed)Text
Location-based Services (LBSs) provide valuable services, with convenient features for users. However, the information disclosed through each request harms user privacy. This is a concern particularly with honest-but-curious LBS servers, which could, by collecting requests, track users and infer additional sensitive user data. This is the motivation of both centralized and decentralized location privacy protection schemes for LBSs: anonymizing and obfuscating LBS queries to not disclose exact information, while still getting useful responses. Decentralized schemes overcome the disadvantages of centralized schemes, eliminating anonymizers and enhancing users’ control over sensitive information. However, an insecure decentralized system could pose even more serious security threats than privacy leakage. We address exactly this problem, by proposing security enhancements for mobile data sharing systems. We protect user privacy while preserving accountability of user activities, leveraging pseudonymous authentication with mainstream cryptography. Our design leverages architectures proposed for large scale mobile systems, while it incurs minimal changes to LBS servers as it can be deployed in parallel to the LBS servers. This further motivates the adoption of our design, in order to cater to the needs of privacy-sensitive users. We provide an analysis of security and privacy concerns and countermeasures, as well as a performance evaluation of basic protocol operations showing the practicality of our design.
Place, publisher, year, edition, pages
Springer, 2015. 47-63 p.
Lecture Notes in Computer Science, ISSN 0302-9743 ; 9417
Location-based service, Pseudonymous authentication, Security and privacy, Authentication, Data privacy, Encoding (symbols), Error analysis, Knowledge based systems, Location, Mobile devices, Telecommunication services, Basic protocols, Decentralized system, Location privacy protection, Privacy leakages, Security enhancements, Security threats, Sensitive informations, Location based services
Human Computer Interaction Computer Science Communication Systems
IdentifiersURN: urn:nbn:se:kth:diva-181644DOI: 10.1007/978-3-319-26502-5_4ScopusID: 2-s2.0-84951871619ISBN: 9783319265018OAI: oai:DiVA.org:kth-181644DiVA: diva2:909470
19 October 2015 through 21 October 2015
QC 201603072016-03-072016-02-022016-06-10Bibliographically approved