You are AIRing too Much: Assessing the Privacy of Users in Crowdsourcing Environmental Data

Julien Mineraud, Federico Lancerin, Sasitharan Balasubramaniam, Mauro Conti, Sasu Tarkoma

    Research output: Chapter in Book/Report/Conference proceedingConference contributionScientificpeer-review

    13 Citations (Scopus)

    Abstract

    With the availability of inexpensive sensors, the attractiveness of participatory sensing has increased tremendously in the last decade. However, when sensing is performed with devices owned by individuals, it raises several privacy issues with respect to the data producers, and hence reduces the incentive to contribute to the services. In this paper, we evaluate the extent to which a malicious server in a crowdsourcing air quality monitoring service can track the locations of users that contribute to the service. The participants periodically send information, such as temperature, relative humidity, carbon monoxide, and luminosity of their surrounding, using an off-the-shelf sensor connected to their mobile phones. The participants also send their coarse-grain location (i.e., disclosing the ID of the cell tower to which their mobile is coupled) along with the air quality data. We evaluate the precision with which the attacker can track the participants using only air quality data and location of the cell tower. We perform a thorough analysis of the privacy attack and show that it can accurately discover the destination of the users with a precision of more than 85% (up to 97%), if at least five consecutive samples are provided by the participants. We also discovered that the precision drops when the environmental sensors are affected by outside conditions (e.g., exposition to direct sunlight) but remains significant (54.5% for 20 consecutive samples).
    Original languageEnglish
    Title of host publication2015 IEEE Trustcom/BigDataSE/ISPA
    PublisherIEEE
    Pages523 - 530
    Number of pages8
    Volume1
    ISBN (Print)978-1-4673-7952-6
    DOIs
    Publication statusPublished - 20 Aug 2015
    Publication typeA4 Article in conference proceedings
    EventIEEE International Conference on Trust, Security and Privacy in Computing and Communications -
    Duration: 1 Jan 1900 → …

    Conference

    ConferenceIEEE International Conference on Trust, Security and Privacy in Computing and Communications
    Period1/01/00 → …

    Publication forum classification

    • Publication forum level 1

    Fingerprint

    Dive into the research topics of 'You are AIRing too Much: Assessing the Privacy of Users in Crowdsourcing Environmental Data'. Together they form a unique fingerprint.

    Cite this