The physics arXiv blog noted Netflix claimed to have removed personal details from the dataset before making it available. However, Arvind Narayanan and Vitaly Shmatikov at the the University of Texas at Austin figured out how to de-anonymize that data.
The research paper on how they did it demonstrated the inherent risk in publishing such micro-data, or information about specific individuals.
"Using the Internet Movie Database as the source of background knowledge, we successfully identified the Netflix records of known users, uncovering their apparent political preferences and other potentially sensitive information," the researchers said in the paper's abstract.
Through their algorithmic work, the researchers could tie information in the Netflix dataset with recommendations made on the Internet Movie Database website:
We expect that for Netflix subscribers who use IMDb, there is a strong correlation between their private Netflix ratings and their public IMDb ratings. Note that our attack does not require that all movies rated by the subscriber in the Netflix system be also rated in IMDb, or vice versa. In many cases, even a handful of movies that are rated by the subscriber in both services would be sufficient to identify his or her record in the Netflix Prize dataset...Briefly, people who rated movies publicly around the same time they rated those movies privately gave the researchers enough data to figure out details about one person.
"A natural question to ask is why would someone who rates movies on IMDb - often under his or her real name - care about privacy of his movie ratings?" the researchers asked.
"Consider the information that we have been able to deduce by locating one of these users’ entire movie viewing history in the Netflix dataset and that cannot be deduced from his public IMDb ratings."
Here's where the de-anonymization becomes scary:
First, we can immediately find his political orientation based on his strong opinions about "Power and Terror: Noam Chomsky in Our Times" and "Fahrenheit 9/11.""We extracted from the Netflix Prize dataset non-public information about some subscribers that should be considered sensitive by any reasonable definition," the researchers noted, an accomplishment that should give people reason to be concerned about the true privacy they enjoy online.Strong guesses about his religious views can be made based on his ratings on "Jesus of Nazareth" and "The Gospel of John". He did not like "Super Size Me" at all; perhaps this implies something about his physical size?
Both items that we found with predominantly gay themes, "Bent" and "Queer as folk" were rated one star out of five. He is a cultish follower of "Mystery Science Theater 3000".
This is far from all we found about this one person, but having made our point, we will spare the reader further lurid details.
SEO Step One Of Ten: Keyword ResearchWill Personal Search Turn SEO On Its Ear?Shari Thurow Answers SEO QuestionsGoogle BlogSearch, Ranking Blog Documents PatentAsk to Put You in Control of Privacy with AskEraserYahoo's Openness To SearchGoogle - Soft on Privacy?Ask Privacy LinkSES - TopRank Day 1 Wrap UpGoogle Personalizes Their Search Experience
     |
RSS
Home
Newsletter
Advertising
Comments
Post new comment