Abstract
This research defines the degree of the threat caused by the leakage of personal information in a quantitative way. The proposed definition classifies the individual items in a personal data, then assigns a risk value to each item. The proposed method considers the increase of the risk by the composition of the multiple items. We also deals with various attack scenarios, where the attackers seek different types of personal information. The concept of entropy applies to associate the degree of the personal information exposed with the total risk value. In our experiment, we measured the risk value of the Facebook users with their public profiles. The result of the experiment demonstrates that they are most vulnerable against stalker attacks among four possible attacks with the personal information.
| Translated title of the contribution | A method for quantitative measuring the degree of damage by personal information leakage |
|---|---|
| Original language | Korean |
| Pages (from-to) | 395-410 |
| Number of pages | 16 |
| Journal | 정보보호학회논문지 |
| Volume | 25 |
| Issue number | 2 |
| DOIs | |
| State | Published - 2015 |