Privacy/Analysis Tradeoffs in Sharing Anonymized Packet Traces: Single-Field Case
Barcelona(2008)
摘要
Network data needs to be shared for distributed security analysis. Anonymization of network data for sharing sets up a fundamental tradeoff between privacy protection versus security analysis capability. This privacy/analysis tradeoff has been acknowledged by many researchers but this is the first paper to provide empirical measurements to characterize the privacy/analysis tradeoff for an enterprise dataset. Specifically we perform anonymization options on single-fields within network packet traces and then make measurements using intrusion detection system alarms as a proxy for security analysis capability. Our results show: (1) two fields have a zero sum tradeoff (more privacy lessens security analysis and vice versa) and (2) eight fields have a more complex tradeoff (that is not zero sum) in which both privacy and analysis can both be simultaneously accomplished.
更多查看译文
关键词
zero sum tradeoff,complex tradeoff,security analysis capability,fundamental tradeoff,analysis tradeoffs,privacy protection,security analysis,network data,analysis tradeoff,network packet trace,anonymized packet traces,privacy lessens security analysis,single-field case,pattern analysis,information analysis,access control,risk analysis,automation,collaboration,data security,data privacy,information security,intrusion detection system
AI 理解论文
溯源树
样例
生成溯源树,研究论文发展脉络
Chat Paper
正在生成论文摘要