Department of Computer Science
Assuring Spatio -Temporal Integrity on Mobile Devices with Minimum Location Disclosure
Since the boom of smartphones and location-based services, spatio-temporal data (i.e., user locations with timestamps) have become increasingly essential in many real-life applications. To ensure these data are faithfully extracted from the underlying location tracking hardware and not altered by any malicious party or the user himself/herself, integrity assurance schemes such as digital signatures or message authentication codes (MAC) must be adopted. However, these conventional schemes disclose to the verifier the complete plaintext location and thus jeopardize users' privacy. In this paper, we propose an integrity assurance scheme with minimum location disclosure. That is, the granule of the disclosed location is just small enough to prove the user is/has been to a certain place, and the verifier cannot learn anything beyond it. To this end, we propose a new MAC scheme called Prefix-verifiable MAC (PMAC), based on which we design indexes and protocols to authenticate both spatial and spatio-temporal predicates. Security analysis and experimental results show our scheme is both secure and efficient for practical use.
Integrity assurance, spatio-temporal data, privacy protection
Source Publication Title
IEEE Transactions on Mobile Computing
Link to Publisher's Edition
Hu, H., Chen, Q., Xu, J., & Choi, B. (2017). Assuring Spatio -Temporal Integrity on Mobile Devices with Minimum Location Disclosure. IEEE Transactions on Mobile Computing, 16 (11), 3000-3013. https://doi.org/10.1109/TMC.2017.2683492