DOI : https://doi.org/10.32628/CSEIT195519
A Review on Security Techniques for Privacy-Preserving in Data Mining
K. S Chandwani1, Anjali Mishra2, Ayushi Desai3, Priyanka Kushwaha4, Sonal Nikose5,Shivani Wanjari6 1Professor, Department of Computer Technology, KDK College of Engineering, Nagpur, Maharashtra, India
2-6CSE, SMT. Rajshri Mulak College of Engineering for Women, Nagpur, Maharashtra, India
ABSTRACT
As the rise in the data mining algorithm the extraction of knowledge from the large data is getting easy. But due to this new problem of Privacy of the knowledge from the stored data at various servers is introduced. So, it is required to provide privacy of the sensitive data from the data miners. This paper focuses on various approaches implemented by the miners for preserving of information at individual level, class level, etc. A detail description with limitation of different techniques security of privacy preserving is explained.
Keywords : Access Control, Confidentiality, Integrity, Outsourced Databases, Query Authentication, Security mechanisms
I. INTRODUCTION
In information mining "Protection Preservation" implies the confidential information that must be protected by the unauthorized individual or assailant. Privacy Preserving Data Mining (PPDM) is used to extract relevant knowledge from large amount of data and simultaneously it protects the sensitive information from the data miners. The issue of security protecting information mining has turned out to be more vital as of late due to the expanding capacity to store individual information about clients, and corporate information of private establishment with the end goal of outsourcing and a wide range of different purposes. In any case, when the all of information be put in outsourced database administration supplier, the supplier is not trusted, touchy information may have spilled emergency. Amazon Dynamo DB, Hosted MongoDBs are a few cases of database administration suppliers.
Protecting the security of the outsourced databases is an extraordinary test in the current scenario. As the
legitimacy, responsibility, and so forth are considered as the establishment of security administrations. Thusly, actualizing them in an efficient way is critical from the security perspective. Different strategies are utilized for understanding the security as a part of database outsourcing. These systems incorporate encryption, verified information structures, request safeguarding encryption, signature plans, and so forth. In this paper, we have given the complete investigation of security strategies alongside their advantages and disadvantages.
The target of this paper is to concentrate for the most part on different security procedures for outsourced exchange datasets. The rest of the part of the paper is composed like this Section II shows the hypothetical foundation of this paper. Area III presents similar study/investigation of various security strategies and segment IV closes the paper with outline and future heading.
II. RELATED WORK
A. Access Control Based Approach
Information classification, respectability, and security of the customers' data are ensured by this methodology. Among different administrations of distributed computing, empowering secure access to outsourced information establishes a strong framework for data administration and different operations. Be that as it may, more research endeavours are expected to accomplish adaptable access control to vast scale dynamic information. In this environment, the information can be upgraded just by the first proprietor. In the meantime, end clients with various access rights need to peruse the data in a productive and secure way. Both information and client elements must be appropriately taken care of to save the execution and wellbeing of the outsourced stockpiling framework.
In "Secure and Efficient Access to Outsourced Data”, Weichao Wang, Zhiwei Li,Rodney Owens, Bharat Bhargava proposed their methods that incorporate:- (1)The proposed approach gives fine grained access control to outsourced information with adaptable and productive administration. The information proprietor needs to keep up just a couple of privileged insights for key induction. (2)It does not have to get to the capacity server with the exception of information redesigns. They propose complete systems to handle flow in client access rights and redesigns to outsourced information.
Figure 1. Illustration of the application situation
bolster the versatility for procuring extensive number of customers.
B. Quality Based Access Control Approach
To accomplish Confidentiality, Accountability, Access Control Attribute based access control methodology is utilized as a part of which the entrance structure is identified with the arrangement of qualities of the client. In "Achieving Secure, Scalable, and Fine-grained Data Access Control in Cloud Computing”, Shucheng Yu, Cong Wang, KuiRen, and Wenjing Louaddress the open issue and propose a protected and adaptable fine-grained information access control plan for distributed computing. They proposed plan in which every information record can be connected with an arrangement of qualities which are important with regards to intrigue. The entrance structure of every client can therefore be characterized as an interesting coherent expression over these credits to mirror the extent of information records that the client is permitted to get to. As the legitimate expression can speak to any coveted information document set, fine-graininess of information access control is accomplished. To uphold these entrance structures, they characterize an open key part for every trait. Information documents are encoded utilizing open key parts relating to their traits. Client mystery keys are characterized to mirror their entrance structures so that a client can decode a figure content if and just if the information document properties fulfil his entrance structure. Here accomplished these all Security prerequisite:
1. Fine-graininess of Access Control 2. Client Access Privilege Confidentiality 3. Client Secret Key Accountability 4. Information Confidentiality
The advantage of this strategy is that calculation and correspondence cost brought about for denial is less. It experiences one shortcoming. The characteristics connected with the clients are put in Attribute
Authority. The denied client can degenerate this power by overhauling their own particular mystery key likewise the mystery key of non-repudiated clients.
C. Fake Tuple Insertion Based Approach
kept up which causes additional capacity overhead on customer and it is against the idea of outsourcing. Freshness is ensured by utilizing the fake redesign operation. The customer erases and embeds the fake tuples and break down the outcomes got by the server and assesses the freshness.
III. CONCLUSIONS
In this paper, we study different level all security techniques The Database as a Service is a late database administration arrangement which is developing famous step by step because of its usefulness. In this paper, we have talked about the idea of DBaaS, its engineering and its benefits. The careful examination of general security necessities for the outsourced databases is done in this paper. We have basically centered around how the security connected in outsourced databases and broke down the systems with their handiness for the same. The nitty gritty discourse of accomplishing the secrecy, trustworthiness, completeness, Correctness, access control and responsibility in single and multi-client environment is given. The summed up security framework can be produced to such an extent that it underpins a wide range of databases and every one of the sorts of inquiries. Here outlined all the distinctive security strategies with their advantages and disadvantages in table. The future improvement can likewise centered around giving security to outsourced exchange database alongside diminishing the correspondence, calculation expense and streamlining of inquiry preparing time.
Table I : Comparison of All Security Techniques
3. Fake Tuple Insertion Based Approach
Integrity Privacy
Due to
complex structure, attacker may become confused to find real support of item.
This approach does not provide correctne ss guarantee s to the user.
IV.REFERENCES
[1] Yung-Wang Lin, Li-Cheng Yang, Luon-Chang Lin, and Yeong-Chin Chen, Preserving Privacy in Outsourced Database, International Journal of Computer and Communication Engineering, Vol. 3, No. 5, September 2015.
[2] Sumeet Bajaj, RaduSion, TrustedDB: A Trusted Hardware based Database with Privacy and Data Confidentiality, In Proc. of IEEE Transactions on Knowledge and Data Engineering, 2013.
[3] FoscaGiannotti, Laks V. S. Lakshmanan, Anna Monreale, Dino Pedreschi, and Hui (Wendy) Wang, Privacy-Preserving Mining of Association Rules From Outsourced Transaction. Databases, IEEE SYSTEMS JOURNAL, VOL. 7, NO. 3, SEPTEMBER 2012.
[4] Lena Wiese,Horizontal Fragmentation for Data Outsourcing with Formula-Based Confidentiality Constraints, Advance in information and computer security, Springer 2010.
[5] HweeHwa Pang Jilian Zhang
KyriakosMouratidis,Scalable Verification for Outsourced Dynamic Databases, ACM.VLDB „09, August 2428, 2009, Lyon, France Copyright 2009. [6] Brian Thompson, Stuart Haber, William G. Horne,
Tomas Sander, Danfeng Yao, Privacy-Preserving Computation and Verification of Aggregate Queries on Outsourced Databases, HP Laboratories HPL-2009-119, published by Springer Aug-2009.
Cite this article as :
K. S Chandwani, Anjali Mishra, Ayushi Desai, Priyanka Kushwaha, Sonal Nikose, Shivani Wanjari, "A Review on Security Techniques for Privacy-Preserving in Data Mining", International Journal of Scientific Research in Computer Science, Engineering and Information Technology (IJSRCSEIT), ISSN : 2456-3307, Volume 5 Issue 5, pp. 118-122, September-October 2019. Available at doi : https://doi.org/10.32628/CSEIT195519
