• No results found

DYNAMIC GRID SYSTEM FOR CONTINUOUS LOCATION BASED SERVICES (LBS)

N/A
N/A
Info
Download
Protected

Academic year: 2022

Share "DYNAMIC GRID SYSTEM FOR CONTINUOUS LOCATION BASED SERVICES (LBS)"

Copied!
7
0
0

Loading.... (view fulltext now)

Download now ( 7 Page )

Full text

(1)

372 | P a g e

DYNAMIC GRID SYSTEM FOR CONTINUOUS LOCATION BASED SERVICES (LBS)

Neeharika.R

1

, Abraar.S

2

1BE-CSE, Dhanalakshmi College of Engineering (India)

2Assistant Professor, CSE, Dhanalakshmi College of Engineering (India)

ABSTRACT

Location-based services (LBS) requires the users to report their location to a server for obtain services related to their location, which can lead them to privacy risks. Existing privacy-preserving techniques for LBS contains certain limitations. It uses a fully-trusted third party, which gives a limited privacy guarantee and incurring high communication overhead for a query. In this paper, we propose a user-defined privacy grid system called as dynamic grid system (DGS); the first system that satisfies four essential requirements for privacy-preserving snapshot and continuous LBS. (1) The system uses a semi-trusted third party, responsible for carrying out appropriate matching operations. This semi-trusted third party does not contain any information regarding user’s location. (2) Secure snapshot and continuous location privacy is guaranteed in the proposed system. (3) The communication cost for particular user does not depend on the user’s desired privacy level; it only depends on the number of relevant Point Of Interest i.e the vicinity of the user. (4) We use range and k-nearest-neighbor queries in this work, our system can be used to support other spatial queries along with attribute based key encryption algorithm that can be run by the semi-trusted third party and the database server, provided the required search area of a spatial query can be divided into spatial regions. From the results of proposed system we can show that our Dynamic grid system is more effective than the existing privacy-preserving technique for continuous LBS.

Keywords: Cryptography, Dynamic grid systems, LBS, Location privacy ,Spatial-temporal-query processing.

I. INTRODUCTION

In the present world of mobility and ever- Internet connectivity, a huge number of people use location-based services (LBS) to obtain information related to their current locations from different types of service providers.

This can be made as the search for nearest points of interest (POIs) (e.g., hotels, malls, etc), location-aware made by companies, traffic information proposed to the highway and providing direction to the user who is traveling and so on. The use of LBS can provide more details about a person to potentially untrustworthy service providers behind which people might obtain it. They can track the request made by the person it is possible to make a movement profile which can give information about a user's work space , health related record , political events (attending political events, conferences), etc.

(2)

373 | P a g e Nevertheless, LBS can be very valuable and users should be able to make use of the services given by them, without giving up their location privacy. A number of techniques have recently been proposed for preserving the location privacy of uses in LBS the techniques can be divided into two main categories. (1) Fully-trusted third party (TTP). The most popularly used privacy-preserving techniques require a TTP to be placed between the user and the service provider where to hide the user's location information from it. The main idea of the third party is blurring a user's location into a cloaked area and keeping track of the exact location of all users that includes k − 1 other users to achieve k-anonymity. The TTP model has three disadvantages. (a) All users have to continuously report their exact location to the third party, though they do not tell to any LBS. (b) As the third party knows the exact location of every user, it becomes an impressive target for attackers. (c) The k-anonymity- based techniques only achieve low regional location privacy areas. (2) Private information retrieval (PIR)/

oblivious transfer (OT): Although PIR or OT techniques do not require a third party, they obtain greater communication overhead between the user and the service provider, requiring the transmission of many details than the user actually needs only a few privacy-preserving techniques have been proposed for continuous LBS.

These techniques rely on a TTP to continuously expand a cloaked area to include the initially assigned k users.

They also have other limitations. (1) In-efficiency. Continuously expanding cloaked areas which mainly increase the query processing overhead. (2) Privacy leakage, it is because the database server receives a set of sequential cloaked areas of a user at differential timestamps, the correlation among the cloaked areas would provide useful details for inferring the user's location identity. (3) Service termination. A user has to terminate the service when users initially assigned to nearby cloaked area to leave the system.

Here we propose a user-defined privacy grid system called DGS (Dynamic Grid System) to provide privacy- preserving and continuous LBS. The purpose is to place a semi-trusted third party, named as query server (QS), is placed between the user and the service provider (SP). QS Only needs to be semi-trusted because it will not store/gather or even have access to any user location information. Untrusted QS would mainly alter and delete messages as well as insert fake messages, so this is why our system depends on semi-trusted QS.

II. SYSTEM ARCHITECTURE

It depicts the system architecture of our DGS designed to provide privacy-preserving continuous location based services for the mobile users. Our system consists of three main entities query servers, mobile users, service providers. We will give the important entities and their interactions, and then prove the two spatial queries, i.e., range and k-NN (K-Nearest Neighbor) queries, supported by our system.

Overall System Architecture

(3)

374 | P a g e Adversarial Models

We now discuss in detail about adversarial models regarding QS and SP, and then current formal security proof of our DGS. A malicious QS or SP will try to breakthrough a user's privacy by dealing with the data available to them within the given described protocol. We do not consider QS or SP with access to external information and not directly related to the particular protocol.

User Anonymity

As given above, both QS and SP will try to cross-reference a user by using the information stored in the protocol. While QS does not have any information about a user that would allow it to list down the no of users that would move inside a specific query, SP has a clear access to the plaintext query of a user.

This query only contains the query region and the grid parameters, and with the information available, QS can therefore do no better process than to establish that the user is somewhere present within the query region.

The other trouble related to the deanonymization of users is that if for example the services of SP are paid services, then SP might be able to link a query with a present record and at least establish the presence of a user in a query area. we consider it acceptable that a user can be located to be within a query region by QS, after all, the user can choose the query area freely and hence choose it such that her personal privacy requirements are met, there are other kinds of research which would allow to prevent the linking of a query area to a specific user through records. So if the SP needs the authentication of users to provide a paid service, the service can be provided even when it can be done protecting the anonymity of the user. However, no matter in which way they provide the service, the privacy guarantees will always be more desirable than TTP, as a TTP always knows the exact location of the users, while in our system neither QS nor SP know the exact location. Regarding paid services and QS, in such a case QS does not have any information to list the geographic location of a user, even if it is being used as a paid service and can link queries to records. Regarding the deanonymization of users, we also note that the type of POI in a query sent to SP even the density of POIs per unit cell in the QA, do not provide QS with any useful information that could be used to reduce the anonymity of a user. Here, there is no correlation between the density of POIs in a cell and the actual location of a user, as the user forwards a query without a-prior knowledge of the density of POIs, and hence the density of POIs in a cell cannot be used to make stoppage about the possible location of a user in the query area. A natural choice for the role of QS is to act as the network service provider of a user. Even though the network service provider can exactly locate a user to an individual cellular network cell, by taking on the role of QS does not provide it with any more information about the user, such as the actual QA. There is also no requirement for the queries of a user to corresponding to the user's actual location, and thereby network service provider does not have any details or information available that would allow it to infer either case. To outline above details, a network service provider readily knows the location of its users, and serving as a Query Server does not give it with any extra information about its users. Alternatively, QS services could also be given by volunteers (e.g., like many of the nodes in the Tor network), by ad-supported services and even by services that charges with a modest fee.

Attacks:

Timing attacks: One more kind of attacks might use timing information if QS can observe the traffic close to the originating user. However, if QS can observe such traffic, the location privacy of the user is very already compromised, without the timing attacks. Furthermore, we consider this to be out of the scope of our work.

(4)

375 | P a g e Query server as client: QS may try to also act as a client in an attempt to get some information which could help to locate a user. QS Has no information to hurl such an attack, however, not even an approximate location of the user. Also, the number of POIs returned to a client does not allow QS to make any intrusion, because it knows neither the QA nor the grid parameters. A large number of POIs could either make a dense region or a large QA, depending on the grid parameters, which are unknown to Query Server.

Network traffic fingerprinting: An encrypted network connection is not applicable to our system. The attack as described is identical to deciding which QS a user is using. This information does not need to be confidential and communication with QS is highly constant across different query servers (unlike website traffic), very likely making them for all practical purposes indistinguishable.

Commuter problem: Additional attack that can identify the home and the office location of a user through location traces. This attack is not applicable to our system, since no plaintext locations are ever inscribed in our system and no inferences can be made.

We deny side-channel attacks in general from the security analysis as being out of the scope of this paper. Many of the side-channel attacks quoted above are fundamental to network communications, and as neither such neither limited to nor a consequence of the design of our proposed protocol

III. ALGORITHM

The algorithm used here is Key Policy - Attribute Based Encryption (KP-ABE) which provides a better security when compared with others. Cipher texts are labeled with sets of attributes. A private key can only break a cipher text whose attributes set is same as the set of the private key's access structure. It can be used for log encryption and in broadcast encryption .It is a type of public-key encryption.

Here we use two techniques:

1. Range query processing 2. k-nearest-neighbor queries RANGE QUERY PROCESSING:

The mobile user registers a continuous range query with our system to keep track of the POI Range, of the user’s current location for a certain time period.

(5)

376 | P a g e K-NEAREST-NEIGHBHOUR QUERIES:

A continuous k-NN query is defined as keeping track of the k-nearest POIs to a user's location (xu, yu) for a certain time period.

IV. METHODOLOGY

Existing system

• Spatial cloaking techniques have been usually used to preserve user location privacy in LBS.

In a system regional location privacy it is hard for the user to illustrate privacy requirements

• Spatial cloaking techniques can be exercised to peer-to-peer environment.

• Incremental nearest neighbor queries are used where a query starts at an “anchor” (starting point) location is used.

Proposed System:

• For each selected POI sent from QS, the SP encrypts its information, using the dynamic grid structure stated by the user.

• QS Stores the obtained set of encrypted POIs and only returns to the user a subset of POIs whose corresponding identifiers match any one of the encrypted identifiers originally sent by the user.

• After the user obtains the encrypted POIs, they decrypt them to get their definite locations and figures out the query answer.

V. MODULES

Service providers:

As depicted in our system architecture, SP does not communicate with mobile users directly, but it provides services for them indirectly through the query server (QS).

Mobile users:

Each mobile user is furnished with a GPS-enabled device that resolves the user’s location in the form. The user can obtain continuous LBS from our system by announcing a spatial query to a particular SP through QS. Our system aids the user select a query area for the spatial query, such that the user is willing to confess to SP the case that the user is habituated in the given area.

Query servers:

QS is a semi-trusted party fixed between the Mobile user and SP. Corresponding to the most famous infrastructure in privacy-preserving techniques for LBS, QS can be managed by a telecom operator. They are

(6)

377 | P a g e 1) The mobile user sends a request that consists (a) the identification of a user-specified SP, (b) an encrypted query (which includes information related to the user-defined dynamic grid structure), and (c) a set of encrypted identifiers (which are computed based on the user-defined dynamic grid structure) to QS.

2) QS store the encrypted identifiers and pass the encrypted query to the user-specified SP.

3) SP decrypts the query and finds correct sets of POIs from its database. It then encrypts the POIs and their related identifiers based on the dynamic grid structure given by the user and transmit them to QS.

4) QS send to the user every encrypted POI whose encrypted identifier matches with one of the encrypted identifiers previously sent by the user. The user decrypts the received POIs.

Supported spatial queries

DGS supports the two types of spatial queries, i.e., range and k-NN queries, while preserving the user’s location privacy. The mobile user schedules a continuous range query with our system to keep track of the POIs within a user-specified distance, Range, of the user’s current location for a certain time period, e.g.,

“Continuously send me the theatres within one mile of my current location for the next two hour”. The mobile user can also issue a continuous k-NN query to find the k-nearest POIs to the user’s current location for a specific time period, e.g., “Continuously send me the five nearest restaurants to my current location for the next 30 minutes”.

VI. CONCLUSION

Overall, the DGS uses Semi-trusted third party and it provides better privacy guarantees than the TTP scheme, and the experimental results show that DGS has a order of magnitude in terms of communication cost which is more efficient than the TTP scheme. In case of computation cost, DGS also always outperforms the TTP scheme for NN queries; it is comparable or slightly more expensive than the TTP scheme for range queries.

REFERENCES

[1] B. Bamba, L. Liu, P. Pesti, and T. Wang, “Supporting anony mous location queries in mobile environments with PrivacyGrid,” in WWW, 2008.

[2] C.-Y. Chow and M. F. Mokbel, “Enabling private continuou s queries for revealed user locations,” in SSTD, 2007.

[3] B. Gedik and L. Liu, “Protecting location privacy with pe rsonalized kanonymity: Architecture and algorithms,” IEEE TMC, vol. 7, no. 1, pp. 1–18, 2008. [4] M. Gruteser and D. Grunwald, “Anonymous Usage of Locatio n-Based Services Through Spatial and Temporal Cloaking,” in ACM MobiSys, 2003.

[5] P. Kalnis, G. Ghinita, K. Mouratidis, and D. Papadias, “P reventing location-based identity inference in anonymous spatial queries,” IEEE TKDE, vol. 19, no. 12, pp. 1719–1733, 2007.

[6] M. F. Mokbel, C.-Y. Chow, and W. G. Aref, “The new casper: Query processing for location services without compromising privacy,” in VLDB, 2006.

[7] T. Xu and Y. Cai, “Location anonymity in continuous location-based services,” in ACM GIS, 2007.

[8] “Exploring historical location data for anonymity p reservation inlocation-based services,” in IEEE INFOCOM, 2008.

(7)

378 | P a g e [9] G. Ghinita, P. Kalnis, A. Khoshgozaran, C. Shahabi, and K.-L. Tan,“Private queries in location based

services: Anonymizers are notnecessary,” in ACM SIGMOD, 2008.

[10] M. Kohlweiss, S. Faust, L. Fritsch, B. Gedrojc, and B. Preneel, “Efficient oblivious augmented maps:

Location-based services with a payment broker,” in PET, 2007.

[11] R. Vishwanathan and Y. Huang, “A two-level protocol to answer private location-based queries,” in ISI, 2009.

[12] J. M. Kang, M. F. Mokbel, S. Shekhar, T. Xia, and D. Zhang, “Continuous evaluation of monochromatic and bichromatic reversenearest neighbors,” in IEEE ICDE, 2007.

[13] C. S. Jensen, D. Lin, B. C. Ooi, and R. Zhang, “Effective d ensity queries of continuously moving objects,” in IEEE ICDE, 2006.

[14] S. Wang and X. S. Wang, “AnonTwist: Nearest neighbor que rying with both location privacy and k- anonymity for mobile users,” in MDM, 2009.

References

Download now ( PDF - 7 Page - 522.31 KB )

Related documents

The META-SHARE Language Resources Sharing Infrastructure: Principles, Challenges, Solutions

Design and Characterization of Square Patch Salisbury Screen Microwave Absorber

The comparison clearly brings out the fact that by using the proposed simple square patch design the bandwidth of SSMA can be improved without increasing the thickness of

Genetic Data from Nearly 63,000 Women of European Descent Predicts DNA Methylation Biomarkers and Epithelial Ovarian Cancer Risk.

Association analyses of genetically predicted DNA methylation levels with EOC risk using OCAC data. Correlation between methylation and gene expression using

One-step colorimetric genotyping of single nucleotide polymorphism using probe-enhanced loop-mediated isothermal amplification (PE-LAMP)

In summary, this method comprises several merits: (i) the whole assay is based on the PE-LAMP, which is competent to genotype a real-life sample in an isothermal manner; (ii) the

Mostert

Access to the information sources stored within the majority of South African Libraries can be obtained via the interlibrary loan system available in South Africa, a system in which

Experimental Investigation on Mechanical Properties of Self Compacting Concrete by Partial Replacement of Fly Ash and GGBS

In this investigation to study the mechanical properties such as compressive strength, split tensile strength, flexural strength, young’s modulus and Non- destructive test 7,

Correlation of GSTP1 Polymorphism with Severity of Prostate Cancer in an Eastern Indian Population

Hence, from our study we can conclude that GSTP1 polymorphism in the form of Ile105Val is not only significantly associated with risk of prostate cancer but