Trace Recovery: Attacking and Defending the User Privacy in Smart Meter Data Analytics

Nazim Uddin Sheikh; Zhigang Lu; Hassan Jameel Asghar; Mohamed Ali Kaafar

doi:10.1007/978-3-031-36840-0_14

Trace Recovery: Attacking and Defending the User Privacy in Smart Meter Data Analytics

Nazim Uddin Sheikh
, Zhigang Lu
, Hassan Jameel Asghar
, Mohamed Ali Kaafar

Research output: Chapter in Book / Conference Paper › Conference Paper › peer-review

Abstract

Energy consumption data is collected the service providers and shared with various stakeholders involved in a smart grid ecosystem. The fine-grained energy consumption data is immensely useful for maintaining and operating grid services. Further, these data can be used for future consumption prediction using machine learning and statistical models and market segmentation purposes. However, sharing and releasing fine-grained energy data or releasing predictive models trained on user-specific data induce explicit violations of private information of consumers [34, 41]. Thus, the service providers may share and release aggregated statistics to protect the privacy of users aiming at mitigating the privacy risks of individual users’ consumption traces. In this chapter, we show that an attacker can recover individual users’ traces of energy consumption data by exploiting regularity and uniqueness properties of individual consumption load patterns. We propose an unsupervised attack framework to recover hourly energy consumption time-series of users without any background information. We construct the problem of assigning aggregated energy consumption meter readings to individual users as a mathematical assignment problem and solve it by the Hungarian algorithm [30, 50]. We used two real-world datasets to demonstrate an attacker’s performance in recovering private traits of users. Our results show that an attacker is capable of recovering 70% of users’ energy consumption patterns with over 90% accuracy. Finally, we proposed few defense techniques, such as differential privacy and federated machine learning that may potentially help reduce an attacker’s capability to infer users’ private information.

Original language	English
Title of host publication	E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers
Editors	Pierangela Samarati, Sabrina De Capitani di Vimercati, Marten van Sinderen, Fons Wijnhoven
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	305-333
Number of pages	29
ISBN (Print)	9783031368394
DOIs	https://doi.org/10.1007/978-3-031-36840-0_14
Publication status	Published - 2023
Externally published	Yes
Event	18th International Joint Conference on e-Business and Telecommunications, ICETE 2021 - Virtual, Online Duration: 6 Jul 2021 → 9 Jul 2021

Publication series

Name	Communications in Computer and Information Science
Volume	1795 CCIS
ISSN (Print)	1865-0929
ISSN (Electronic)	1865-0937

Conference

Conference	18th International Joint Conference on e-Business and Telecommunications, ICETE 2021
City	Virtual, Online
Period	6/07/21 → 9/07/21

Bibliographical note

Publisher Copyright:
© 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.

Keywords

Aggregate Statistics
Differential Privacy
Energy Data Privacy
Federated Learning
Inference Attacks
Smart Meter Privacy

Access to Document

10.1007/978-3-031-36840-0_14

Cite this

Sheikh, N. U., Lu, Z., Asghar, H. J., & Kaafar, M. A. (2023). Trace Recovery: Attacking and Defending the User Privacy in Smart Meter Data Analytics. In P. Samarati, S. D. C. D. Vimercati, M. van Sinderen, & F. Wijnhoven (Eds.), E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers (pp. 305-333). (Communications in Computer and Information Science; Vol. 1795 CCIS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-36840-0_14

Sheikh, Nazim Uddin ; Lu, Zhigang ; Asghar, Hassan Jameel et al. / Trace Recovery : Attacking and Defending the User Privacy in Smart Meter Data Analytics. E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers. editor / Pierangela Samarati ; Sabrina De Capitani di Vimercati ; Marten van Sinderen ; Fons Wijnhoven. Springer Science and Business Media Deutschland GmbH, 2023. pp. 305-333 (Communications in Computer and Information Science).

@inproceedings{202fddfeba754779aca3dcf637846167,

title = "Trace Recovery: Attacking and Defending the User Privacy in Smart Meter Data Analytics",

abstract = "Energy consumption data is collected the service providers and shared with various stakeholders involved in a smart grid ecosystem. The fine-grained energy consumption data is immensely useful for maintaining and operating grid services. Further, these data can be used for future consumption prediction using machine learning and statistical models and market segmentation purposes. However, sharing and releasing fine-grained energy data or releasing predictive models trained on user-specific data induce explicit violations of private information of consumers [34, 41]. Thus, the service providers may share and release aggregated statistics to protect the privacy of users aiming at mitigating the privacy risks of individual users{\textquoteright} consumption traces. In this chapter, we show that an attacker can recover individual users{\textquoteright} traces of energy consumption data by exploiting regularity and uniqueness properties of individual consumption load patterns. We propose an unsupervised attack framework to recover hourly energy consumption time-series of users without any background information. We construct the problem of assigning aggregated energy consumption meter readings to individual users as a mathematical assignment problem and solve it by the Hungarian algorithm [30, 50]. We used two real-world datasets to demonstrate an attacker{\textquoteright}s performance in recovering private traits of users. Our results show that an attacker is capable of recovering 70\% of users{\textquoteright} energy consumption patterns with over 90\% accuracy. Finally, we proposed few defense techniques, such as differential privacy and federated machine learning that may potentially help reduce an attacker{\textquoteright}s capability to infer users{\textquoteright} private information.",

keywords = "Aggregate Statistics, Differential Privacy, Energy Data Privacy, Federated Learning, Inference Attacks, Smart Meter Privacy",

author = "Sheikh, \{Nazim Uddin\} and Zhigang Lu and Asghar, \{Hassan Jameel\} and Kaafar, \{Mohamed Ali\}",

note = "Publisher Copyright: {\textcopyright} 2023, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 18th International Joint Conference on e-Business and Telecommunications, ICETE 2021 ; Conference date: 06-07-2021 Through 09-07-2021",

year = "2023",

doi = "10.1007/978-3-031-36840-0\_14",

language = "English",

isbn = "9783031368394",

series = "Communications in Computer and Information Science",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "305--333",

editor = "Pierangela Samarati and Vimercati, \{Sabrina De Capitani di\} and \{van Sinderen\}, Marten and Fons Wijnhoven",

booktitle = "E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers",

}

Sheikh, NU, Lu, Z, Asghar, HJ & Kaafar, MA 2023, Trace Recovery: Attacking and Defending the User Privacy in Smart Meter Data Analytics. in P Samarati, SDCD Vimercati, M van Sinderen & F Wijnhoven (eds), E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers. Communications in Computer and Information Science, vol. 1795 CCIS, Springer Science and Business Media Deutschland GmbH, pp. 305-333, 18th International Joint Conference on e-Business and Telecommunications, ICETE 2021, Virtual, Online, 6/07/21. https://doi.org/10.1007/978-3-031-36840-0_14

Trace Recovery: Attacking and Defending the User Privacy in Smart Meter Data Analytics. / Sheikh, Nazim Uddin; Lu, Zhigang; Asghar, Hassan Jameel et al.
E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers. ed. / Pierangela Samarati; Sabrina De Capitani di Vimercati; Marten van Sinderen; Fons Wijnhoven. Springer Science and Business Media Deutschland GmbH, 2023. p. 305-333 (Communications in Computer and Information Science; Vol. 1795 CCIS).

Research output: Chapter in Book / Conference Paper › Conference Paper › peer-review

TY - GEN

T1 - Trace Recovery

T2 - 18th International Joint Conference on e-Business and Telecommunications, ICETE 2021

AU - Sheikh, Nazim Uddin

AU - Lu, Zhigang

AU - Asghar, Hassan Jameel

AU - Kaafar, Mohamed Ali

PY - 2023

Y1 - 2023

N2 - Energy consumption data is collected the service providers and shared with various stakeholders involved in a smart grid ecosystem. The fine-grained energy consumption data is immensely useful for maintaining and operating grid services. Further, these data can be used for future consumption prediction using machine learning and statistical models and market segmentation purposes. However, sharing and releasing fine-grained energy data or releasing predictive models trained on user-specific data induce explicit violations of private information of consumers [34, 41]. Thus, the service providers may share and release aggregated statistics to protect the privacy of users aiming at mitigating the privacy risks of individual users’ consumption traces. In this chapter, we show that an attacker can recover individual users’ traces of energy consumption data by exploiting regularity and uniqueness properties of individual consumption load patterns. We propose an unsupervised attack framework to recover hourly energy consumption time-series of users without any background information. We construct the problem of assigning aggregated energy consumption meter readings to individual users as a mathematical assignment problem and solve it by the Hungarian algorithm [30, 50]. We used two real-world datasets to demonstrate an attacker’s performance in recovering private traits of users. Our results show that an attacker is capable of recovering 70% of users’ energy consumption patterns with over 90% accuracy. Finally, we proposed few defense techniques, such as differential privacy and federated machine learning that may potentially help reduce an attacker’s capability to infer users’ private information.

AB - Energy consumption data is collected the service providers and shared with various stakeholders involved in a smart grid ecosystem. The fine-grained energy consumption data is immensely useful for maintaining and operating grid services. Further, these data can be used for future consumption prediction using machine learning and statistical models and market segmentation purposes. However, sharing and releasing fine-grained energy data or releasing predictive models trained on user-specific data induce explicit violations of private information of consumers [34, 41]. Thus, the service providers may share and release aggregated statistics to protect the privacy of users aiming at mitigating the privacy risks of individual users’ consumption traces. In this chapter, we show that an attacker can recover individual users’ traces of energy consumption data by exploiting regularity and uniqueness properties of individual consumption load patterns. We propose an unsupervised attack framework to recover hourly energy consumption time-series of users without any background information. We construct the problem of assigning aggregated energy consumption meter readings to individual users as a mathematical assignment problem and solve it by the Hungarian algorithm [30, 50]. We used two real-world datasets to demonstrate an attacker’s performance in recovering private traits of users. Our results show that an attacker is capable of recovering 70% of users’ energy consumption patterns with over 90% accuracy. Finally, we proposed few defense techniques, such as differential privacy and federated machine learning that may potentially help reduce an attacker’s capability to infer users’ private information.

KW - Aggregate Statistics

KW - Differential Privacy

KW - Energy Data Privacy

KW - Federated Learning

KW - Inference Attacks

KW - Smart Meter Privacy

UR - https://www.scopus.com/pages/publications/85172413671

U2 - 10.1007/978-3-031-36840-0_14

DO - 10.1007/978-3-031-36840-0_14

M3 - Conference Paper

AN - SCOPUS:85172413671

SN - 9783031368394

T3 - Communications in Computer and Information Science

SP - 305

EP - 333

BT - E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers

A2 - Samarati, Pierangela

A2 - Vimercati, Sabrina De Capitani di

A2 - van Sinderen, Marten

A2 - Wijnhoven, Fons

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 6 July 2021 through 9 July 2021

ER -

Sheikh NU, Lu Z, Asghar HJ, Kaafar MA. Trace Recovery: Attacking and Defending the User Privacy in Smart Meter Data Analytics. In Samarati P, Vimercati SDCD, van Sinderen M, Wijnhoven F, editors, E-Business and Telecommunications - 18th International Conference, ICETE 2021, Revised Selected Papers. Springer Science and Business Media Deutschland GmbH. 2023. p. 305-333. (Communications in Computer and Information Science). doi: 10.1007/978-3-031-36840-0_14