Quantitatively measuring privacy in interactive query settings within RDBMS framework
Khan, Muhammad Imran
Foley, Simon N.
Little attention has been paid to the measurement of risk to privacy in Database Management Systems, despite their prevalence as a modality of data access. This paper proposes PriDe, a quantitative privacy metric that provides a measure (privacy score) of privacy risk when executing queries in relational database management systems. PriDe measures the degree to which attribute values, retrieved by a principal (user) engaging in an interactive query session, represent a reduction of privacy with respect to the attribute values previously retrieved by the principal. It can be deployed in interactive query settings where the user sends SQL queries to the database and gets results at run-time and provides privacy-conscious organizations with a way to monitor the usage of the application data made available to third parties in terms of privacy. The proposed approach, without loss of generality, is applicable to BigSQL-style technologies. Additionally, the paper proposes a privacy equivalence relation that facilitates the computation of the privacy score.
Electronic privacy , Data analytics , Relational Database Management Systems (RDMS) , Privacy score , N-gram , GDPR - General Data Protection Regulation
Khan, M. I., Foley, S. N. and O'Sullivan, B. (2020) 'Quantitatively Measuring Privacy in Interactive Query Settings Within RDBMS Framework', Frontiers in Big Data, 3 (11), (14 pp). doi: 10.3389/fdata.2020.00011
© 2020 Khan, Foley and O'Sullivan. This is an open-access article distributed under the terms of the Creative Commons Attribution License (CC BY). The use, distribution or reproduction in other forums is permitted, provided the original author(s) and the copyright owner(s) are credited and that the original publication in this journal is cited, in accordance with accepted academic practice. No use, distribution or reproduction is permitted which does not comply with these terms.