Privacy Preserving Friend Matching Protocol in Social Networks

DOI : 10.17577/IJERTCONV3IS15048

Download Full-Text PDF Cite this Publication

Text Only Version

Privacy Preserving Friend Matching Protocol in Social Networks

,

,

Saranya S [1] ,Manojkumar M [2] Saravanakumar M[3]

1Assistant Professor, [2] [3]UG Scholar, Department of

C.S.E SNS College of Engineering, Coimbatore.

Abstract- Social networks connects nodes within a local physical proximity by using wireless communication. It sophisticates the user face to face social interactions. Users may face the risk of leaking their personal information and their location privacy. In existing system novel blind vector protocol, which blindly compare the user profile without ensure the information leakage. By introducing Fine-Grain protocol, information leakage will be protected by private interaction. Based on it, we propose our privacy-preserving and interest friend matching protocol, which allows one party to match its interest with the profile of another, without revealing its real interest and profile.

Index TermsPrivacy Preserving, Friend Discovery, Mobile Social Networks

I INTRODUCTION

Social network grows tremendous among the environment nowadays in both computer and mobile devices available in Network Service. In social network, nodes within physical proximity where connected using wireless communication. Users may share the locations in real time using wireless localization techniques. Location aware social network represents promising Cyber-Physical System (CPS), which allow user to experience face to face social interaction. Profile matching is more than important for fostering the wide use of social networks because finding the nearby individuals of the similar interests is always the first step for any social networking.

[1]The existing social network systems pay little heed to the security and privacy concerns associated with revealing ones personal social networking preferences and friendship information to the ubiquitous computing environment. In particular, in mobile social networks, the mobile users may face the risk of leaking of their personal information and their location privacy. Under this circumstance, the attackers can directly associate the personal profiles with real persons nearby and then launch more advanced attacks. Existing researches show that loss of privacy can expose users to unwanted advertisement and spams/scams, cause social

reputation or economic damage, and make them victims of blackmail or even physical violence.

Recently, there are quite a few proposals for Friend- Interest Matching, which allow two users to compare their personal profiles without revealing private information to each other. In a typical private profile matching scheme, the personal profile of a user consists of multiple attributes chosen from a public set of attributes. The private profile matching problem could then be converted into Private Set Intersection (PSI) or Private Set Intersection Cardinality. In particular, two mobile users, each of whom holds a private data set respectively, could jointly compute the intersection or the intersection cardinality of the two sets without leaking any additional information to either side.However, there are quite a few challenges which make the existing private profile matching solutions less practical in applications.

For example, similar to most of the online social network applications. A mobile social networking user is expected to freely search its potential common-interest friends by matching his interest with the personal profiles of the searching targets rather than making the profile matching directly.

Alices InterestProfile

Age 20-30

Gender Boy

sonal

sonal

Profile

Profile

20-30

er

Girl

ite

Movie

20-30

er

Girl

ite

Movie

Per

Favorite Movie

Match

Match

nterestProfile

Personal

Personal

Profile

Profile

s Age

20 -30

Gender

Boy

Favorite

Movie

s Age

20 -30

Gender

Boy

Favorite

Movie

Bob

20-30

er Girl

ite Movie

Fig. 1, Alice has her personal profile, which includes three attributes: age, girl and movie. She is interested in

finding a boy with similar age and hobbies. Conversely, Bob also has his own profile and interests. A successful matching could be achieved in case that Alices profile matches Bobs interest while, at the same time, Bobs profile matches Alices interest. Such a mapping process could be well supported by the existing online dating social networks, in which a member may seek another member satisfying some particular requirements. Further, the existing proposals are one-way only and profile matching requires running a protocol twice, with reversed roles in the second run. This two-pass protocol may be exploited by the dishonest user or even a malicious attacker to launch the runaway attack, in which a malicious one that wants to learn another users interests but is unwilling to reveal his own interests can simply abort the protocol in the second round. This runaway attack incurs a serious unfairness issue. The runaway attack may be more challenging in the case of separating users profile from his interest since matching the users profile and the interest could only be achieved in two steps.

To solve the above mentioned challenges and thus further enhance the usability of mobile social networks, [2] we present a Fine Grained Privacy Preserving and Fairness- aware Friend Matching Protocol. In the designed protocol, a successful matching only happens in case that the interests of both of the participants could match the profiles of the others. In other words, no one can learn any extra information from the protocol unless another participant is exactly what he is looking for and vice versa. Our work is motivated from a simple observation that if two vectors match, they will still match no matter whether they are transformed in the same way (e.g., add or remove a randomly generated vector) or shuffled with the same order.

2. PROPOSED PRIVACY-PRESERVING AND FRIEND INTEREST MATCHING PROTOCOL:

In this section, we introduce about the protocols:

    1. PROTOCOL OVERVIEW:

      The proposed protocol comprised of two different protocols, includes Protocol I:Friend-Interest matching protocol; Protocol II: Blind Vector Transformation Protocol. The basic idea of the Friend Interest Matching Protocol which allows two different user to compare their profiles based on their common interest without reveal their personal interest by following the series of privacy.

      E.g. Adding Random vector by their interest and expectations.

      The major challenge of this profile comparison is cllision attack and privacy risk. Also how blind vector will hide the personal information.

    2. SYSTEM INITIALIZATION PHASE:

      In system initializing phase, third party will generate private and public key sets denoted as (ak0,bk0) and (ak1,ak1) respectively.

    3. PROPOSED FRIEND-INTEREST MATCHING PROTOCOL

      In this protocol, two different profiles v1 and v2 has their own interest and privacy features. A third party will handle the key features to manage the privacy of the profiles. Using fine-grain protocol, each profile consist of their own information and interest. Since in existing system, profiles will be matched randomly. But in this protocol, profile-matching achieved through based on interest and their matching expectations. Multiple vectors v(n1,n2. Nm) will be compared at the same time for the better result.

      Security measures are very well improved in the proposed systems. Private-set interaction has keep the profile information hidden.

      • Profile information default as private for the unknown profiles.

      • Collision attack will be carried through.

    4. BLIND TRANSFORMATION PROTOCOL

In the blind transformation phase, each participant will encrypt his profile by using his public key and provide it to his partner for blind transformation. In the follows, [1] we introduce the blind transformation process by taking Ub transforming Uas profile and his own interest as an example. It is similar for Ua to blind transform Ub s profile. Ua performs Encrypt (Pa, pka) to encrypt his profile Pa, which is denoted as Pa. Ua sends Pa and pka to Ub. Then, Ub performs the following blind transformation operations:

  • Blind Add: Ub generates a random vector rb, and then performs Encrypt(rb,pka). After VecAdd(Ib,rb) by adding f rb and rb to Pa and eIb, that, Ub calculates Pa = VecAdd(Pa,rb) respectively.

  • Blind Append: Ub generates a random vector yb of length lb, where lb is a predetermined security parameter, then performs yb = Encrypt (yb,pka) to get VecExt .

  • Blind Reverse: Ub randomly selects kb {1,2,, l2} and performs VecRev(yb,kb), then obtains Ib=

    VecExt(Ib,yb).

  • Blind Shuffle: Ub performs Ieb= VecShuffle andPa=VecShuffle(Pfa) with the same order.

After performing this process, Ub finishes theblindtransformation of Pa and Ib. In the same time, UbalsoencryptshisprofileandUafollowsthesamestrategyto make a blind transformation towards Pb andIa.

Note that, among the above four operations, VecAddandVecShuffle are used to conceal the original value of Paandprevent Ub from obtaining the transformation ways ofUaby linking Pa and P1. Ua (or Ub) can still obtainthecorrect number of matched interests and profiles since Pa

and Ib(or Pb and Ia) follow the same transformation

pattern.

However, if only with VecAdd and VecShuffle, adishonestparticipant could still infer another partysprofileinformation without reveal his own profile informationbystopping the protocol as long as he receives thematchinginformation between his interest and

Paillier scheme as proposed in [10]. We evaluatedtherunning time of our protocol in NovelBlindTransformation, Friend Interest Matching andBlindLinear Trans- formation phase. The algorithm usedinBlind Shufe is Knuth Shufe. We use it in ordertoguarantee the randomness inpermutation.

l=n l=2n l=3n

l=n l=2n l=3n

8000

7000

6000

Ti 5000

m

e( 4000

m

3000

2000

1000

0

20 30 40 50 60 70 80 90 100

Number ofAttributes(n)

Fig: 3.1 Execution Time on Blind TransformationforDifferent Number of Attributes(ms)

l=n l=2n l=3n

l=n l=2n l=3n

2500

2000

anotherpartysprofile, which is called as runaway attack. Runaway attackwillleadtoseriousunfairnessissue.Toachieve

fairness of the proposed protocol, we furtherintroduceVecExt and VecRev, which are used to hide theexactinterest/profile matching numbers. In particular, onUaside, VecExt introduces extra lb ones to originalmatchingresult while VecRev introduces kb mismatching.Therefore,the actual matching result is updated to sb= eb+ lb kb for

Ub andsa=ea+la ka forUa.Theblindtransformation

Ti

m 1500

e( m

1000

500

0

20 30 40 50 60 70 80 90 100

Number ofAttributes(n)

phase is summarized in Algorithm1.

The proposed blind transformation phase by usingasimple example, in which Uas profile Pa and UbsinterestIb are compared. To prevent the privacy leaking of PaandIb, Pa and Ib are encrypted firstly and then are added witha randomly generated vector ra. Since both of Pa and Ibareencrypted with Paillier cryptosystem, thehomomorphicproperty guarantees that the comparison result will notbechanged after adding the same ra. After that, Pa and Ibareextended and shuffled by following the same way. Itisobvious that, such a transformation will not changethematchingresults.

  1. EVALUTION

    We implemented our protocol in Java for portabilityandevaluated it on a laptop with Intel Core i3-

    330m(2.1GHz)and 2GB RAM. The Paillier encryption library wasbasedupon[10].WemodieditandusedthefastvariantofFi g:3.2 Execution Time on Fair Matching phaseforDifferent Number of Attributes(ms)

  2. CONCLUSION

In this work we have includes how to providefine-grained, Friend -interest/profile matching protocolandprivacy issues and also collision and Run-Awayattackcan overcome in socialnetwork.

REFERENCES

  1. Haojin Zhu and Suguo Du, Muyuan Li Fairness- aware and Privacy- Preserving Friend Matching Protocol in Mobile Social Network, in IEEE TETC, VOL:1 NO:1,Dec 2013.

  2. Z. Yang, B. Zhang, J. Dai, A. C. Champion, D. Xuan, and D. Li, ESmallTalker: A Distributed Mobile System for Social Networking in Physical Proximity, in Proc. of IEEE ICDCS10, Jun. 2010, pp. 468-477.

Leave a Reply