# De-Health: All Your Online Health Information Are Belong to Us

**Authors:** Shouling Ji, Qinchen Gu, Haiqin Weng, Qianjun Liu, Qinming He, Raheem, Beyah, Ting Wang

arXiv: 1902.00717 · 2019-06-04

## TL;DR

This paper introduces De-Health, a framework for de-anonymizing online health data, demonstrating its effectiveness through real-world datasets and analytical modeling, exposing privacy vulnerabilities.

## Contribution

De-Health is the first comprehensive framework combining candidate selection, de-anonymization, and analytical modeling for online health data de-anonymization.

## Key findings

- De-Health significantly reduces de-anonymization space with high accuracy.
- It successfully de-anonymizes large portions of users even with limited training data.
- A linkage attack linked 347 WebMD users to real identities, revealing sensitive information.

## Abstract

In this paper, we study the privacy of online health data. We present a novel online health data De-Anonymization (DA) framework, named De-Health. De-Health consists of two phases: Top-K DA, which identifies a candidate set for each anonymized user, and refined DA, which de-anonymizes an anonymized user to a user in its candidate set. By employing both candidate selection and DA verification schemes, De-Health significantly reduces the DA space by several orders of magnitude while achieving promising DA accuracy. Leveraging two real world online health datasets WebMD (89,393 users, 506K posts) and HealthBoards (388,398 users, 4.7M posts), we validate the efficacy of De-Health. Further, when the training data are insufficient, De-Health can still successfully de-anonymize a large portion of anonymized users.   We develop the first analytical framework on the soundness and effectiveness of online health data DA. By analyzing the impact of various data features on the anonymity, we derive the conditions and probabilities for successfully de-anonymizing one user or a group of users in exact DA and Top-K DA. Our analysis is meaningful to both researchers and policy makers in facilitating the development of more effective anonymization techniques and proper privacy polices.   We present a linkage attack framework which can link online health/medical information to real world people. Through a proof-of-concept attack, we link 347 out of 2805 WebMD users to real world people, and find the full names, medical/health information, birthdates, phone numbers, and other sensitive information for most of the re-identified users. This clearly illustrates the fragility of the notion of privacy of those who use online health forums.

## Full text

_Full body text omitted from this summary view._ Fetch the complete paper as Markdown: https://tomesphere.com/paper/1902.00717/full.md

## Figures

10 figures with captions in the complete paper: https://tomesphere.com/paper/1902.00717/full.md

## References

52 references — full list in the complete paper: https://tomesphere.com/paper/1902.00717/full.md

---
Source: https://tomesphere.com/paper/1902.00717