The ubiquity of mobile devices has led to the proliferation of mobile services that provide personalized and context-aware content to their users. Modern mobile services are distributed between end-devices, such as smartphones, and remote servers that reside in the cloud. Such services thrive on their ability to predict future contexts to pre-fetch content of make context-specific recommendations. An increasingly common method to predict future contexts, such as location, is via machine learning (ML) models. Recent work in context prediction has focused on ML model personalization where a personalized model is learned for each individual user in order to tailor predictions or recommendations to a user's mobile behavior. While the use of personalized models increases efficacy of the mobile service, we argue that it increases privacy risk since a personalized model encodes contextual behavior unique to each user. To demonstrate these privacy risks, we present several attribute inference-based privacy attacks and show that such attacks can leak privacy with up to 78% efficacy for top-3 predictions. We present Pelican, a privacy-preserving personalization system for context-aware mobile services that leverages both device and cloud resources to personalize ML models while minimizing the risk of privacy leakage for users. We evaluate Pelican using real world traces for location-aware mobile services and show that Pelican can substantially reduce privacy leakage by up to 75%.
翻译:移动设备随处可见,导致移动设备向用户提供个性化和符合背景内容的移动服务扩散。现代移动服务分布在终端设备(如智能手机)和云中远程服务器之间。这类服务由于能够预测未来环境,以预先获取内容,从而产生符合具体情况的建议,因而兴盛。一种越来越常见的预测未来环境的方法,例如定位,是通过机器学习模型(ML)预测。最近的背景预测工作侧重于ML模型个人化,为每个用户学习一个个性化模型,以便根据用户的移动行为做出预测或提出建议。使用个性化模型可以提高移动服务的效率,而使用个性化模型则能增加隐私风险,因为个人化模型可以将每个用户特有的背景行为编码成一种独特的背景行为。为了展示这些隐私风险,我们提出了几种基于隐私攻击的属性,例如定位(ML)模型,并表明这种攻击可以泄漏隐私,最高3级预测达到78%的功效。我们介绍了Pelican,一个用于背景认知移动服务的隐私保护个人化系统,可以使75个性移动用户利用真实的设备和移动数据定位定位数据库,同时将个人存储空间资源用于个人存储空间风险,我们可以将75的存储空间定位数据库数据库,同时对个人定位数据库进行实时定位数据库数据库数据库进行实时定位数据库数据库进行微微微缩进行评估。
相关内容
微信扫码咨询专知VIP会员