Data Anonymisation

Question 1

What is Data Anonymisation?

Answer 1

Removing personally identifiable info (PII) from data

Question 2

Why would you do Data Anonymisation?

Answer 2

Preserve privacy on analytical data (e.g. student grades)

Question 3

What are Key Attributes?

Answer 3

Things that identify a user, e.g. name, passport number

Question 4

What are Quasi-identifiers?

Answer 4

Things that, when combined, identify a user (e.g. date of birth and postcode)

Question 5

Name 4 Data Anonymisation techniques?

Answer 5

k-anonymity • l-diversity • t-closeness • differential privacy

Question 6

Where databases have quasi-identifiers, K-Anonymity should be quality. What is K-Anonymity?

Answer 6

Database entries have at least k-1 records that have the same quasi-identifier values. K is a chosen value, the higher the better

Question 7

What are two ways can you achieve K-Anonymity?

Answer 7

Generalisation (e.g. do age brackets instead of exact ages) and Suppression (e.g. hiding part of a student ID)

Question 8

Why may you use Suppression over Generalisation?

Answer 8

Generalisation (e.g. age brackets) may remove important information

Question 9

What are 2 problems with k-anonymity?

Answer 9

1) The attacker has background knowledge of the users and can still tell who is who 2) The sensitive data has no variance (e.g. all 20-29 age people have Heart Disease)

Question 10

What is L-Diversity?

Answer 10

A database has L different values for the quasi-identifier classes. L is a chosen number

Question 11

What are 2 problems with L-Diversity?

Answer 11

Skewness Attacks (one trait is more likely than another, so you can guess) and Similarity Attack (list of different stomach diseases, I don’t know which one the patient has exactly, but it’s one of them) can happen

Question 12

What is T-Closeness?

Answer 12

Distribution of a certain atribute (e.g. heart disease) in groups of data should be as similar to the overall distrubution

Question 13

What is Differential Privacy?

Answer 13

Differential privacy guarantees that the output of a query on a database does not depend on ________

Question 14

K-Anonymity only prevents _____?

Answer 14

K-Anonymity only prevents Identity Disclosure

Question 15

L-Diversity does not protect from ____?

Answer 15

L-Diversity does not protect from Attribute Disclosure

Question 16

T-Closeness protects against _____?

Answer 16

T-Closeness protects against Attribute Disclosure

Question 17

Differential privacy guarantees that the output of a query on a database does not depend on ________

Answer 17

Differential privacy guarantees that the output of a query on a database does not depend on who is in the query