Write attack for Uber differential privacy anonymization

[yoid2000]

We're going to use this to attack the Uber anonymization system. I'm not sure what queries that system allows, but @rbh-93 is working on it, so he can answer questions about that or give you access to an implementation.

In our attack, we want to make a query that has exactly one user in the answer with some reasonable probability. In the attack, we find out if that is the case or not. If it is the case, then we make a singling-out claim for that user. If not, then we don't make a claim.

The first step is to find sets of column values or value ranges that have a good chance of identifying a single user. If you know the number of distinct users associated with any given column value, and you know the number of users in the table, then prob_user1 = col_val_users1/total_users is the probability that any given user has that column value. Then you want to find cases where:

total_users * prob_user1 * prob_user2 * ... = 1 (roughly)

In other words, the expected number of users with column/value 1 and column/value 2 and ... is one.

You can learn the total users with:

select count(distinct uid)
from table

To learn these probabilities for any given column, you can query the raw database with this query:

select column, count(distinct uid)
from table
order by 2 desc
limit 200

Use the askExplore() call on the raw database (rawDb) to do these.

Once you have a set of columns and values where this is the case, you can make a query like this:

select count(distinct uid)
from table
where col1 = val1 and col2 = val2 and ...

For the Uber system, each time you repeat the query, you get a new noise value with mean zero. So if you take X answers and take the average, you'll get the true answer with some probability.

After X queries, we predict that the true answer is 1 if the averaged answer is between 0.5 and 1.5.

We repeat the above X times and make a guess. For this query, use the askAttack() call, so that the system records it as an attack query. Once you have a guess, use the askClaim() call to record the guess. You can see examples of how these are used for other attacks in code/attacks.

[AnirbanGhosh1512]

Started Working on it.

[AnirbanGhosh1512]

Hello Prof. Paul,

It takes much time for me to understand the exact requirements. Please tell me that whatever I understood is right or not.

1. I need to use the rest API which is build by @rbh-93 to learn the probabilities.
2. Once I get the set of columns, I can use askAttack() and askClaim() to predict the true answer from the attack script.

Regards,
Anirban Ghosh

[yoid2000]

We will incorporate Rohan's REST interface into gdaScore, so you won't use his interface directly. Rather, you'll use askExplore() to make the preliminary queries, askAttack() to make the attack queries (to establish an average value), and askClaim() to make a claim about your guessed answer.

Until we have incorporated Rohan's REST interface, you can test your code against rawDb. I'm out of town right now, but will be back on Friday if you want to chat about it.

[AnirbanGhosh1512]

Hello Prof. Paul, Friday I was in your office but there was nobody. Perhaps you were there I saw people doing some get together downstairs. I will be available on Monday for the chat. Regards, Anirban Ghosh

…

On Wed, Nov 28, 2018 at 7:35 AM Paul Francis ***@***.***> wrote: We will incorporate Rohan's REST interface into gdaScore, so you won't use his interface directly. Rather, you'll use askExplore() to make the preliminary queries, askAttack() to make the attack queries (to establish an average value), and askClaim() to make a claim about your guessed answer. Until we have incorporated Rohan's REST interface, you can test your code against rawDb. I'm out of town right now, but will be back on Friday if you want to chat about it. — You are receiving this because you were assigned. Reply to this email directly, view it on GitHub <#29 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/Afke4_lFChoFNjVvYQcvIzToHnrnTonjks5uzi6WgaJpZM4Yqg1B> .

[yoid2000]

Indeed I was downstairs chatting. But you could have interrupted me ... it would have been fine. Anyway, see you Monday. PF On Fri, Nov 30, 2018 at 3:21 PM AnirbanGhosh1512 <notifications@github.com> wrote:

…

Hello Prof. Paul, Friday I was in your office but there was nobody. Perhaps you were there I saw people doing some get together downstairs. I will be available on Monday for the chat. Regards, Anirban Ghosh On Wed, Nov 28, 2018 at 7:35 AM Paul Francis ***@***.***> wrote: > We will incorporate Rohan's REST interface into gdaScore, so you won't > use his interface directly. Rather, you'll use askExplore() to make the > preliminary queries, askAttack() to make the attack queries (to establish > an average value), and askClaim() to make a claim about your guessed > answer. > > Until we have incorporated Rohan's REST interface, you can test your code > against rawDb. I'm out of town right now, but will be back on Friday if > you want to chat about it. > > — > You are receiving this because you were assigned. > Reply to this email directly, view it on GitHub > <#29 (comment)>, or mute > the thread > < https://github.com/notifications/unsubscribe-auth/Afke4_lFChoFNjVvYQcvIzToHnrnTonjks5uzi6WgaJpZM4Yqg1B > > . > — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub <#29 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/ACD-qUfRzOeEJWWIAy0Rw5cE6oeRJKqDks5u0T7FgaJpZM4Yqg1B> .

[yoid2000]

@AnirbanGhosh1512

As a step in this attack, you make a query like

select count(distinct uid)
from table
where col1 = val1 and col2 = val2 and ...

I have written a class method called getPublicColValues() which is meant to return a set of column values that may reasonably be publicly know. You can read about this interface at https://gda-score.github.io/gdaScore.m.html

When you write the part that looks for appropriate values, please limit yourself to values discovered by getPublicColValues()

Let me know if you have questions

[AnirbanGhosh1512]

Hello Prof. Paul,

Below .json is currently my configuration.
{
"localBankingRaw": {
"host": "db001.gda-score.org",
"port": 5432,
"dbname": "banking",
"user": "anirbanghosh1512@gmail.com",
"password": "Aic0phuLoo0i",
"type": "postgres"
},
"cloakBankingAnon": {
"host": "attack.aircloak.com",
"port": 8432,
"dbname": "banking",
"user": "george@gda-score.org",
"password": "secret",
"type": "aircloak"
}
}

First one localBankingRaw as a config string working fine for me but the second one cloakBankingAnon seems like consist unauthorized parameters to get access to the db. As I tried with the settings of my colleague Ali Reza, its working fine. Perhaps I need an access in attack.airclock.com.

Regards,
Anirban

[AnirbanGhosh1512]

Hello Prof. Paul,

Thanks, now It is working with my newly created login.

Regards,
Anirban

[yoid2000]

Hi Anirban, You need to change the "user" and "password" to match that of the account I just gave you. And set "host" to demo.aircloak.com. PF

…

On Tue, Dec 11, 2018 at 2:36 PM AnirbanGhosh1512 ***@***.***> wrote: Hello Prof. Paul, Below .json is currently my configuration. { "localBankingRaw": { "host": "db001.gda-score.org", "port": 5432, "dbname": "banking", "user": ***@***.***", "password": "Aic0phuLoo0i", "type": "postgres" }, "cloakBankingAnon": { "host": "attack.aircloak.com", "port": 8432, "dbname": "banking", "user": ***@***.***", "password": "secret", "type": "aircloak" } } First one localBankingRaw as a config string working fine for me but the second one cloakBankingAnon seems like consist unauthorized parameters to get access to the db. As I tried with the settings of my colleague Ali Reza, its working fine. Perhaps I need an access in attack.airclock.com. Regards, Anirban — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub <#29 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/ACD-qfs3UuT57I2kC_qBzYFjlIpaySuxks5u37TOgaJpZM4Yqg1B> .

[AnirbanGhosh1512]

@AnirbanGhosh1512

As a step in this attack, you make a query like

select count(distinct uid)
from table
where col1 = val1 and col2 = val2 and ...

I have written a class method called getPublicColValues() which is meant to return a set of column values that may reasonably be publicly know. You can read about this interface at https://gda-score.github.io/gdaScore.m.html

When you write the part that looks for appropriate values, please limit yourself to values discovered by getPublicColValues()

Let me know if you have questions

Hello Prof. Paul,

As per the stated issue, you asked me to use below:
To learn these probabilities for any given column, you can query the raw database with this query:

select column, count(distinct uid)
from table
order by 2 desc
limit 200
Use the askExplore() call on the raw database (rawDb) to do these.

as per my findings askExplore is nothing but a queue to hold queries. But getPublicColValues() already have the query written dynamically. Just I need to send column names using a loop. Then based on the result I can calculate the probabilities and generate attack query.

Am I right? Please let me know if I misunderstood.

Regards,
Anirban Ghosh

[yoid2000]

Yes, your understanding is correct. You can loop through the column names and learn a set of values

By the way, there is also a method in class gdaAttack() called getTableCharacteristics that returns various statistics about each of the columns, including the number of distinct UIDs, the number of distinct values, the average number of UIDs per value, and things like that. You can read more about it at:

https://gda-score.github.io/gdaScore.m.html#gdaScore.gdaAttack.getTableCharacteristics

[AnirbanGhosh1512]

Hello Prof. Paul,

The method getPublicColValues() rejected those values which are less than 100 as per the written code.
So is it ok to use this method or Should I write something new to fetch all the records even if the value is less than 100.

Regards,
Anirban

[yoid2000]

Hi Anirban, You should use getPublicColValues(), because as an attacker we are assuming that you know these (they are public knowledge), but I don't want to assume that you know all values. PF

…

On Sat, Dec 15, 2018 at 8:19 PM AnirbanGhosh1512 ***@***.***> wrote: Hello Prof. Paul, The method getPublicColValues() rejected those values which are less than 100 as per the written code. So is it ok to use this method or Should I write something new to fetch all the records even if the value is less than 100. Regards, Anirban — You are receiving this because you authored the thread. Reply to this email directly, view it on GitHub <#29 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/ACD-qUMIMsOs3z1jWEc59__xVkotEX5Lks5u5UsdgaJpZM4Yqg1B> .

[AnirbanGhosh1512]

Hello Prof. Paul,

If I have a frequency column as an example giving the output using this query:
{select frequency, count(distinct account_id) from accounts group by frequency order by 2 desc limit 200}
frequency count
"POPLATEK MESICNE" "4167"
"POPLATEK TYDNE" "240"
"POPLATEK PO OBRATU" "93"

So for the next query as per the issue stated:
{select count(distinct uid) from table where col1 = val1 and col2 = val2 and ...}

would it be like this:
{select count(distinct account_id)
from accounts where frequency = 'POPLATEK MESICNE' and frequency = 'POPLATEK TYDNE' and frequency = 'POPLATEK PO OBRATU'}

Please reply about my understanding:

Regards,
Anirban