Report
Miminum Exposure in Classification Scenarios
| العنوان: | Miminum Exposure in Classification Scenarios |
|---|---|
| المؤلفون: | Anciaux, Nicolas, Nguyen, Benjamin, Vazirgiannis, Michalis |
| المساهمون: | Parallélisme, Réseaux, Systèmes, Modélisation (PRISM), Université de Versailles Saint-Quentin-en-Yvelines (UVSQ)-Centre National de la Recherche Scientifique (CNRS), Secured and Mobile Information Systems (SMIS), Université de Versailles Saint-Quentin-en-Yvelines (UVSQ)-Centre National de la Recherche Scientifique (CNRS)-Université de Versailles Saint-Quentin-en-Yvelines (UVSQ)-Centre National de la Recherche Scientifique (CNRS)-Université de Versailles Saint-Quentin-en-Yvelines (UVSQ)-Inria Paris-Rocquencourt, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria), Athens University of Economics and Business (AUEB), Laboratoire d'informatique de l'École polytechnique Palaiseau (LIX), École polytechnique (X), Institut Polytechnique de Paris (IP Paris)-Institut Polytechnique de Paris (IP Paris)-Centre National de la Recherche Scientifique (CNRS) |
| المصدر: | https://inria.hal.science/hal-00681357 ; [Research Report] 2011, pp.26. |
| بيانات النشر: | HAL CCSD |
| سنة النشر: | 2011 |
| المجموعة: | Université de Versailles Saint-Quentin-en-Yvelines: HAL-UVSQ |
| مصطلحات موضوعية: | Privacy principle, Limited data collection, Minimum exposure, [INFO.INFO-DB]Computer Science [cs]/Databases [cs.DB] |
| الوصف: | Personal information about applicants is often requested by service providers to be used as an input of a classification process establishing the specific situation of each applicant. This is a prerequisite for the service provider to make an appropriate offer to the applicant. For example, the rate and duration of personal loans are usually adapted depending on the risk based on the income, the assets or past lines of credits of the borrower. In the eyes of privacy laws and directives, the set of exposed documents collected to achieve a service must be restricted to the minimum necessary. This Limited Data Collection principle reduces the impact of data breaches both in the interest of service providers and customers. In this article, we show that in practice, the data collected traditionally is excessive. We propose a new approach that we call Minimum Exposure, where the minimum set of documents required can be computed on the user's side. We formalize the underlying problem and show it is NP hard. We propose algorithms to compute a solution and validate them with experiments. The Minimum Exposure approach leads to a very significant reduction of the quantity of personal information exposed, therefore leading to important privacy gains for the applicant and large scale savings for service providers in the event of data breaches. |
| نوع الوثيقة: | report |
| اللغة: | English |
| Relation: | hal-00681357; https://inria.hal.science/hal-00681357; https://inria.hal.science/hal-00681357/document; https://inria.hal.science/hal-00681357/file/inria-rt-hal.pdf |
| الاتاحة: | https://inria.hal.science/hal-00681357 https://inria.hal.science/hal-00681357/document https://inria.hal.science/hal-00681357/file/inria-rt-hal.pdf |
| Rights: | info:eu-repo/semantics/OpenAccess |
| رقم الانضمام: | edsbas.25D93986 |
| قاعدة البيانات: | BASE |
| الوصف غير متاح. |