Browse Definitions :
Definition

de-anonymization (deanonymization)

De-anonymization is a data mining strategy in which anonymous data is cross-referenced with other data sources to re-identify the anonymous data source. 

Any information that distinguishes one data source from another can be used for de-anonymization. Although the concept of de-anonymization goes back several decades, the term made headlines in 2006 when Arvind Narayanan and Vitaly Shmatikov entered a contest hosted by Netflix, a popular movie-rental service. Narayanan and Shmatikov applied their de-anonymization methodology to a data set that contained the anonymous movie ratings of 500,000 members and were able to successfully identify Netflix data for a number of specific members. According to Narayanan and Shmatik, de-anonymization requires data that is abundant, granular and fairly stable across time and context.

As the United States government and other nations move forward with open government initiatives, more data is becoming publicly available over the Internet. Much of this data has been scrubbed to create what the government calls “limited data sets.”  Personally identifiable information (PII) such as names, addresses and social security numbers are removed from limited data sets or obfuscated through a data anonymization process so that the specific source of the data remains anonymous. This assurance of anonymity protects the source's privacy and allows the government to legally share limited data sets with third parties without requiring written permission. Such data has proved to be very valuable for researchers, particularly in health care. Privacy advocates, however, are concerned that even though the data has been scrubbed, so much of it is available that a specific individual’s identity could be re-discovered.

See also: association rules, business intelligence, opinion mining, OLAP, fuzzy logic

 

This was last updated in May 2015

Continue Reading About de-anonymization (deanonymization)

Start the conversation

Send me notifications when other members comment.

Please create a username to comment.

SearchCompliance

  • risk assessment

    Risk assessment is the identification of hazards that could negatively impact an organization's ability to conduct business.

  • PCI DSS (Payment Card Industry Data Security Standard)

    The Payment Card Industry Data Security Standard (PCI DSS) is a widely accepted set of policies and procedures intended to ...

  • risk management

    Risk management is the process of identifying, assessing and controlling threats to an organization's capital and earnings.

SearchSecurity

SearchHealthIT

SearchDisasterRecovery

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

  • cloud disaster recovery (cloud DR)

    Cloud disaster recovery (cloud DR) is a combination of strategies and services intended to back up data, applications and other ...

SearchStorage

Close