# Quantification of De-anonymization Risks in Social Networks

**Authors:** Wei-Han Lee, Changchang Liu, Shouling Ji, Prateek Mittal, Ruby Lee

arXiv: 1703.04873 · 2017-03-16

## TL;DR

This paper provides a theoretical framework to quantify the relationship between data utility and vulnerability to de-anonymization in social networks, supported by real-world experiments on Facebook data.

## Contribution

It introduces the first theoretical analysis linking anonymized data utility to de-anonymization success without assuming specific graph models.

## Key findings

- Theoretical conditions for successful de-anonymization based on data utility.
- Evaluation shows limitations of current de-anonymization attacks on real data.
- Future attacks could be more effective based on the analysis.

## Abstract

The risks of publishing privacy-sensitive data have received considerable attention recently. Several de-anonymization attacks have been proposed to re-identify individuals even if data anonymization techniques were applied. However, there is no theoretical quantification for relating the data utility that is preserved by the anonymization techniques and the data vulnerability against de-anonymization attacks.   In this paper, we theoretically analyze the de-anonymization attacks and provide conditions on the utility of the anonymized data (denoted by anonymized utility) to achieve successful de-anonymization. To the best of our knowledge, this is the first work on quantifying the relationships between anonymized utility and de-anonymization capability. Unlike previous work, our quantification analysis requires no assumptions about the graph model, thus providing a general theoretical guide for developing practical de-anonymization/anonymization techniques.   Furthermore, we evaluate state-of-the-art de-anonymization attacks on a real-world Facebook dataset to show the limitations of previous work. By comparing these experimental results and the theoretically achievable de-anonymization capability derived in our analysis, we further demonstrate the ineffectiveness of previous de-anonymization attacks and the potential of more powerful de-anonymization attacks in the future.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1703.04873/full.md

## Figures

1 figure with captions in the complete paper: https://tomesphere.com/paper/1703.04873/full.md

## References

33 references — full list in the complete paper: https://tomesphere.com/paper/1703.04873/full.md

---
Source: https://tomesphere.com/paper/1703.04873