De-anonymization of health data: a survey of practical attacks, vulnerabilities and challenges
| dc.contributor.author | Aguelal , Hamza | en |
| dc.contributor.author | Palmieri, Paolo | en |
| dc.contributor.funder | Research Ireland | en |
| dc.date.accessioned | 2025-05-22T13:26:59Z | |
| dc.date.available | 2025-05-22T13:26:59Z | |
| dc.date.issued | 2025 | en |
| dc.description.abstract | Health data ranks among the most sensitive personal information disclosing serious details about individuals. Although anonymization is used, vulnerabilities persist, leading to de-anonymization and privacy risks highlighted by regulations like the General Data Protection Regulation (GDPR). This survey examines de-anonymization attacks on health datasets, focusing on methodologies employed, data targeted, and the effectiveness of current anonymization practices. Unlike previous surveys that lack consensus on essential empirical questions, we provide a comprehensive summary of practical attacks, offering a more logical perspective on real-world risk. Our investigation systematically categorizes these practical attacks, revealing insights into suc cess rates, generality and reproducibility, new analytics used, and the specific vulnerabilities they exploit. The study covers health-related datasets, including medical records, genomic data, electrocardiograms (ECGs), and neuroimaging, highlighting the need for more robust anonymization. Significant challenges remain in the literature despite existing reviews. We advocate for stronger data safeness by improving anonymization methods and advancing research on de-anonymization and assessment within healthcare. | en |
| dc.description.status | Peer reviewed | en |
| dc.description.version | Published Version | en |
| dc.format.mimetype | application/pdf | en |
| dc.identifier.citation | Aguelal, H. and Palmieri, P. (2025) 'De-anonymization of health data: a survey of practical attacks, vulnerabilities and challenges', Proceedings of the 11th International Conference on Information Systems Security and Privacy (ICISSP 2025), Porto, Portugal, 20-22 February, Volume 2, pp. 595-606. https://doi.org/10.5220/0013274200003899 | en |
| dc.identifier.doi | 10.5220/0013274200003899 | en |
| dc.identifier.endpage | 606 | en |
| dc.identifier.isbn | 978-989-758-735-1 | en |
| dc.identifier.issn | 2184-4356 | en |
| dc.identifier.startpage | 595 | en |
| dc.identifier.uri | https://hdl.handle.net/10468/17565 | |
| dc.identifier.volume | 2 | en |
| dc.language.iso | en | en |
| dc.publisher | SCITEPRESS | en |
| dc.relation.ispartof | 11th International Conference on Information Systems Security and Privacy (ICISSP 2025), Porto, Portugal, 20-22 February 2025. | en |
| dc.relation.project | info:eu-repo/grantAgreement/SFI/Centres for Research Training (CRT) Programme/18/CRT/6222/IE/SFI Centre for Research Training in Advanced Networks for Sustainable Societies/ | en |
| dc.rights | © 2025, the Authors. Published under CC license (CC BY-NC-ND 4.0). Proceedings © 2025 by SCITEPRESS – Science and Technology Publications, Lda. | en |
| dc.rights.uri | https://creativecommons.org/licenses/by-nc-nd/4.0/ | en |
| dc.subject | Health data | en |
| dc.subject | Anonymization | en |
| dc.subject | De-anonymization attacks | en |
| dc.title | De-anonymization of health data: a survey of practical attacks, vulnerabilities and challenges | en |
| dc.type | Conference item | en |
