"You might also like:" Privacy risks of collaborative filtering

Joseph A. Calandrino; Ann Kilzer; Arvind Narayanan; Edward W. Felten; Vitaly Shmatikov

doi:10.1109/SP.2011.40

"You might also like:" Privacy risks of collaborative filtering

Joseph A. Calandrino, Ann Kilzer, Arvind Narayanan, Edward W. Felten, Vitaly Shmatikov

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

265 Scopus citations

Abstract

Many commercial websites use recommender systems to help customers locate products and content. Modern recommenders are based on collaborative filtering: they use patterns learned from users' behavior to make recommendations, usually in the form of related-items lists. The scale and complexity of these systems, along with the fact that their outputs reveal only relationships between items (as opposed to information about users), may suggest that they pose no meaningful privacy risk. In this paper, we develop algorithms which take a moderate amount of auxiliary information about a customer and infer this customer's transactions from temporal changes in the public outputs of a recommender system. Our inference attacks are passive and can be carried out by any Internet user. We evaluate their feasibility using public data from popular websites Hunch, Last.fm, LibraryThing, and Amazon.

Original language	English (US)
Title of host publication	Proceedings - 2011 IEEE Symposium on Security and Privacy, SP 2011
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	231-246
Number of pages	16
ISBN (Print)	9780769544021
DOIs	https://doi.org/10.1109/SP.2011.40
State	Published - 2011

Publication series

Name	Proceedings - IEEE Symposium on Security and Privacy
ISSN (Print)	1081-6011

All Science Journal Classification (ASJC) codes

Safety, Risk, Reliability and Quality
Software
Computer Networks and Communications

Access to Document

10.1109/SP.2011.40

Cite this

Calandrino, J. A., Kilzer, A., Narayanan, A., Felten, E. W., & Shmatikov, V. (2011). "You might also like:" Privacy risks of collaborative filtering. In Proceedings - 2011 IEEE Symposium on Security and Privacy, SP 2011 (pp. 231-246). Article 5958032 (Proceedings - IEEE Symposium on Security and Privacy). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/SP.2011.40

@inproceedings{110a2e26b02d4307b0da361b6b05f886,

title = "{"}You might also like:{"} Privacy risks of collaborative filtering",

abstract = "Many commercial websites use recommender systems to help customers locate products and content. Modern recommenders are based on collaborative filtering: they use patterns learned from users' behavior to make recommendations, usually in the form of related-items lists. The scale and complexity of these systems, along with the fact that their outputs reveal only relationships between items (as opposed to information about users), may suggest that they pose no meaningful privacy risk. In this paper, we develop algorithms which take a moderate amount of auxiliary information about a customer and infer this customer's transactions from temporal changes in the public outputs of a recommender system. Our inference attacks are passive and can be carried out by any Internet user. We evaluate their feasibility using public data from popular websites Hunch, Last.fm, LibraryThing, and Amazon.",

author = "Calandrino, {Joseph A.} and Ann Kilzer and Arvind Narayanan and Felten, {Edward W.} and Vitaly Shmatikov",

year = "2011",

doi = "10.1109/SP.2011.40",

language = "English (US)",

isbn = "9780769544021",

series = "Proceedings - IEEE Symposium on Security and Privacy",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "231--246",

booktitle = "Proceedings - 2011 IEEE Symposium on Security and Privacy, SP 2011",

address = "United States",

}

Calandrino, JA, Kilzer, A, Narayanan, A, Felten, EW & Shmatikov, V 2011, "You might also like:" Privacy risks of collaborative filtering. in Proceedings - 2011 IEEE Symposium on Security and Privacy, SP 2011., 5958032, Proceedings - IEEE Symposium on Security and Privacy, Institute of Electrical and Electronics Engineers Inc., pp. 231-246. https://doi.org/10.1109/SP.2011.40

"You might also like:" Privacy risks of collaborative filtering. / Calandrino, Joseph A.; Kilzer, Ann; Narayanan, Arvind et al.
Proceedings - 2011 IEEE Symposium on Security and Privacy, SP 2011. Institute of Electrical and Electronics Engineers Inc., 2011. p. 231-246 5958032 (Proceedings - IEEE Symposium on Security and Privacy).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - "You might also like:" Privacy risks of collaborative filtering

AU - Calandrino, Joseph A.

AU - Kilzer, Ann

AU - Narayanan, Arvind

AU - Felten, Edward W.

AU - Shmatikov, Vitaly

PY - 2011

Y1 - 2011

N2 - Many commercial websites use recommender systems to help customers locate products and content. Modern recommenders are based on collaborative filtering: they use patterns learned from users' behavior to make recommendations, usually in the form of related-items lists. The scale and complexity of these systems, along with the fact that their outputs reveal only relationships between items (as opposed to information about users), may suggest that they pose no meaningful privacy risk. In this paper, we develop algorithms which take a moderate amount of auxiliary information about a customer and infer this customer's transactions from temporal changes in the public outputs of a recommender system. Our inference attacks are passive and can be carried out by any Internet user. We evaluate their feasibility using public data from popular websites Hunch, Last.fm, LibraryThing, and Amazon.

AB - Many commercial websites use recommender systems to help customers locate products and content. Modern recommenders are based on collaborative filtering: they use patterns learned from users' behavior to make recommendations, usually in the form of related-items lists. The scale and complexity of these systems, along with the fact that their outputs reveal only relationships between items (as opposed to information about users), may suggest that they pose no meaningful privacy risk. In this paper, we develop algorithms which take a moderate amount of auxiliary information about a customer and infer this customer's transactions from temporal changes in the public outputs of a recommender system. Our inference attacks are passive and can be carried out by any Internet user. We evaluate their feasibility using public data from popular websites Hunch, Last.fm, LibraryThing, and Amazon.

UR - http://www.scopus.com/inward/record.url?scp=80051990341&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=80051990341&partnerID=8YFLogxK

U2 - 10.1109/SP.2011.40

DO - 10.1109/SP.2011.40

M3 - Conference contribution

AN - SCOPUS:80051990341

SN - 9780769544021

T3 - Proceedings - IEEE Symposium on Security and Privacy

SP - 231

EP - 246

BT - Proceedings - 2011 IEEE Symposium on Security and Privacy, SP 2011

PB - Institute of Electrical and Electronics Engineers Inc.

ER -

"You might also like:" Privacy risks of collaborative filtering

Abstract

Publication series

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this