Skip to main content

A scanner darkly: Protecting user privacy from perceptual applications

Author(s): Jana, S; Narayanan, Avind; Shmatikov, V

Download
To refer to this page use: http://arks.princeton.edu/ark:/88435/pr1gx0s
Abstract: Perceptual, "context-aware" applications that observe their environment and interact with users via cameras and other sensors are becoming ubiquitous on personal computers, mobile phones, gaming platforms, household robots, and augmented-reality devices. This raises new privacy risks. We describe the design and implementation of DARKLY, a practical privacy protection system for the increasingly common scenario where an untrusted, third-party perceptual application is running on a trusted device. DARKLY is integrated with OpenCV, a popular computer vision library used by such applications to access visual inputs. It deploys multiple privacy protection mechanisms, including access control, algorithmic privacy transforms, and user audit. We evaluate DARKLY on 20 perceptual applications that perform diverse tasks such as image recognition, object tracking, security surveillance, and face detection. These applications run on DARKLY unmodified or with very few modifications and minimal performance overheads vs. native OpenCV. In most cases, privacy enforcement does not reduce the applications' functionality or accuracy. For the rest, we quantify the tradeoff between privacy and utility and demonstrate that utility remains acceptable even with strong privacy protection.
Publication Date: 19-May-2013
Electronic Publication Date: 25-Jun-2013
Citation: Jana, S, Narayanan, A, Shmatikov, V. (2013). A scanner darkly: Protecting user privacy from perceptual applications. 349 - 363. doi:10.1109/SP.2013.31
DOI: doi:10.1109/SP.2013.31
Pages: 349 - 363
Type of Material: Conference Article
Journal/Proceeding Title: Proceedings - IEEE Symposium on Security and Privacy
Version: Final published version. This is an open access article.



Items in OAR@Princeton are protected by copyright, with all rights reserved, unless otherwise indicated.