Design and Implementation of a Location Privacy System supporting Privacy Self Controls

프라이버시 자기제어를 지원하는 위치정보 프라이버시 시스템의 설계 및 구현

  • 이응재 (한국인터넷진흥원 인터넷기반진흥단) ;
  • 주용완 (한국인터넷진흥원 인터넷기반진흥단) ;
  • 남광우 (군산대학교 컴퓨터정보공학과)
  • Received : 2010.01.07
  • Accepted : 2010.05.13
  • Published : 2010.08.15

Abstract

As the mobile device and broadband wireless internet such as WiBro, HSDPA is widely spreading, various types of advertisement and services based on personal location information can be provided. However, with convenience supported by these services, it is possible to be increased an invasion of privacy such as personal location and moving pattern. In this paper, we analysis an essential element for protection of privacy related on location information in mobile environment and propose location privacy protocol for managing location privacy self-control. And we design and implementation prototype of location privacy self-control system which is able to manage user's location privacy condition oneself using the proposed location privacy protocol.

모바일 기기 및 와이브로, HSDPA 등의 초고속무선인터넷 보급/확산으로 개인의 위치 정보에 기반을 둔 다양한 광고 및 서비스가 가능해졌다. 그러나 이러한 편리성과 함께 실시간으로 개인의 위치 및 이동 행태 등 개인 프라이버시가 타인에게 노출될 가능성이 커졌고, 또한 개인 프라이버시가 유출될 경우 생명 및 재산 등에 큰 피해를 줄 수 있어 사회적인 문제가 되고 있다. 이 논문에서는 모바일 환경에서 이용자들의 위치정보와 관련된 프라이버시 보호를 위한 필요한 요소들을 분석하고 이를 기반으로 자신의 위치정보 프라이버시를 직접 제어하고 관리하도록 하기 위한 위치정보 프라이버시 프로토콜을 제안한다. 그리고 제안된 위치정보 프라이버시 프로토콜을 이용하여 이용자 스스로가 자신의 위치정보 프라이버시를 관리할 수 있는 개인위치정보 프라이버시 자기제어 시스템의 프로토타입을 설계하고 구현하였다.

Keywords

References

  1. J. Hightower and G. Borriello, "Location Systems for Ubiquitous Computing," Computer, vol.34, no.8, pp.57-66, IEEE Computer Society Press, Aug. 2001. https://doi.org/10.1109/2.940014
  2. J. S. Lee and S. K. Kim, "Technology Trends and World-wide Industry Market Analysis of Location- Based Services(LBS)," IITA, vol.5, no.2, 2003.
  3. Q. Jones et al., "Putting Systems into Place: A Qualitative Study of Design Requirements for Location-Aware Community Systems," Proc. ACM Conf. Computer Supported Cooperative Work (CSCW 04), ACM Press, pp.202-211, 2004.
  4. S. H. Lee, K. W. Min, J. C. Kim, J. W. Kim, and J. H. Park, "LBS Technology Trends," Electronics and Communication Trends Analysis, vol.20, no.3, pp.33-42, 2005.
  5. SERI, Rasing LBS, CEO Information, vol.615, 2007.
  6. J. Warrior, E. McHenry, and K. McGee, "They Know Where You Are," IEEE Spectrum, vol.40 no.7, pp.20-25, 2003.
  7. J. Kwak, K. W. Lee, S. J. Kim, and D. H. Won, "RFID System based Missing Child Location Tracking System with Fairness," 5th RFID/USN Research Paper Awards, 2005.
  8. D. Anthony, D. Kotz, and T. Henderson, "Privacy in Location-Aware Computing Environment," Pervacive Computing, pp.64-72, October 2007.
  9. N. H. Lee, J. H. Park, and B. I. Ahn, "LBS Standard Reference System supporting Locationbased Application Services," Proceedings of Korea Spatial Information System Society Conference, pp.33-38, 2004.
  10. Open Mobile Alliance, Mobile Location Service V1.1 : Privacy Checking Protocol, Open Mobile Alliance Enabler Standard, 2006.
  11. IETF Georaphic Location/Privacy Charter, Geopriv Requirements, IETF RFC Document 3693, 2004.
  12. H. Tschofenig, H. Schulzrinne, A. Newton, and J. Peterson, "The IETF Geopriv and Presence Architecture Focusing on Location Privacy," W3C Workshop on Languages for Privacy Policy Negotiation and Sematics-Driven Enforcement, October 2006.
  13. K. Tang, J. Fogarty, P. Keyani, and J. Hong, "An Anonymous and Privacy-Sensitive Approach to Collecting Sensed Data in Location-Based Applications," Proc. SIGCHI Conf. Human Factors in Computing Systems(CHI 06), ACM Press, pp.93-102, 2006.
  14. M. Gruteser and D. Grunwald, "Anonymous Usage of Location-Based Services Through Spatial and Temporal Cloaking," MobiSys, pp.31-42, 2003.
  15. T. Xu and Y. Cai, "Location Anonymity in Continuous Location-based Services," ACMGIS, pp.221- 238, 2007.
  16. R. Cheng, Y. Zhang, E. Bertino, and S. Prabhakar, "Preserving User Location Privacy in Mobile Data Management Infrastructures," Privacy Enhancing Technology Workshop, vol.4258, pp.393-412, 2006.
  17. J. H. Kim, A. R. Lee, Y. K. Kim, J. H. Um, and J. W. Chang, "Cloaking Method supporting Kanonymity and L-diversity for Privacy Protection in Location-Based Services," Journal of Korea Spatial Information Society, vol.10, no.4, pp.1-10, 2008.
  18. B. Gedik and L. Liu, "Location Privacy in Mobile Systems: A Personalized Anonymization Model," ICDCS, pp.620-629, 2005.
  19. M. Gruteser and X. Liu, "Protecting Privacy in Continuous Location-Tracking Applications," IEEE Security and Privacy, vol.2, no.2, 2004. https://doi.org/10.1109/MSP.2004.49
  20. M.F. Mokbel, C.Y. Chow, and W.G. Aref, "The New Casper: Query Processing for Location Services without Compromising Privacy," VLDB, pp.763-774, 2006.
  21. Z. Xiao, X. Meng, and J. Xu, "Quality Aware Privacy Protection for Location-based Services," Database Systems for Advanced Applications, vol.4443, pp.434-446, 2007.
  22. S. Patil and J. Lai, "Who Gets to Know What When: Configuring Privacy Permissions in an Awareness Application," Proc. SIGCHI Conf. Human Factors in Computing Systems (CHI 05), ACM Press, pp.101-110, 2005.
  23. D.V. Oheimb and J. Cuellar, "Designing and Verifying Core Protocols for Location Privacy," Proc. 9th Information Security Conf., pp.502-516, 2006.
  24. A. Gupta, M. Saini, and A. Mathuria, "Security Analysis of The Louis Protocol for Location Privacy," Proc. 1st Int. Conf. on COMmunicaiton Systems and NETworks, pp.200-207, 2009.
  25. Q. He, D. Wu, and P. Khosla, "A Mechanism for Personal Control over Mobile Location Privacy," BroadWISE2004, 2004.
  26. L. Kang, "Protecting Location Privacy in Large- Scale Wireless Sensor Networks," Proc. IEEE Int. Conf. on Communications(ICC2009), pp.1-6, 2009.