HipStream: A Privacy-Preserving System for Managing Mobility Data Streams

Personal mobile data are being extensively collected by various service providers, in the form of data stream. Most service providers promise their customers for not misusing their data by paper-based agreement. However, the customers have no way to know whether the agreements are strictly followed or not, unless any scandals of private data misuse are revealed. To guarantee the correct use of customers' personal data and assure them of the service safety, system-level data privacy control between the data owners (i.e., Customers) and the data users (i.e., Service providers) is in compelling need. Inspired by the concept of Hippocratic data management, we design and implement a system, Hip Stream to systemically enforce different Hippocratic principles to preserve data providers' privacy when they send their data stream for services. In this paper, we describe the architecture of the Hip Stream system and demonstrate how it meets those privacy principles.

[1]  Marco Gruteser,et al.  USENIX Association , 1992 .

[2]  Ramakrishnan Srikant,et al.  Hippocratic Databases , 2002, VLDB.

[3]  Elisa Bertino,et al.  StreamShield: a stream-centric approach towards security and privacy in data stream environments , 2009, SIGMOD Conference.

[4]  Jennifer Widom,et al.  Continuous queries over data streams , 2001, SGMD.

[5]  Frederick Reiss,et al.  TelegraphCQ: continuous dataflow processing , 2003, SIGMOD '03.

[6]  Elisa Bertino,et al.  Hippocratic Data Streams-Concepts, Architectures and Issues , 2005 .

[7]  Elisa Bertino,et al.  FENCE: Continuous access control enforcement in dynamic data stream environments , 2010, 2010 IEEE 26th International Conference on Data Engineering (ICDE 2010).

[8]  Tony Fountain,et al.  The Ring Buffer Network Bus (RBNB) DataTurbine Streaming Data Middleware for Environmental Observing Systems , 2007, Third IEEE International Conference on e-Science and Grid Computing (e-Science 2007).

[9]  Jörg Meier,et al.  Securing the Borealis Data Stream Engine , 2006, 2006 10th International Database Engineering and Applications Symposium (IDEAS'06).

[10]  Wei Wu,et al.  Privacy Preservation in Streaming Data Collection , 2012, 2012 IEEE 18th International Conference on Parallel and Distributed Systems.

[11]  Kian-Lee Tan,et al.  A framework to enforce access control over data streams , 2010, TSEC.

[12]  Elisa Bertino,et al.  A Security Punctuation Framework for Enforcing Access Control on Streaming Data , 2008, 2008 IEEE 24th International Conference on Data Engineering.