Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper

Saskia Nuñez von Voigt; Stephan A. Fahrenkrog-Petersen; Dominik Janssen; Agnes Koschmider; Florian Tschorsch; Felix Mannhardt; Olaf Landsiedel; Matthias Weidlich

doi:10.1007/978-3-030-49435-3_16

Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper

Saskia Nuñez von Voigt, Stephan A. Fahrenkrog-Petersen, Dominik Janssen, Agnes Koschmider, Florian Tschorsch, Felix Mannhardt, Olaf Landsiedel, Matthias Weidlich

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

13 Citations (SciVal)

Abstract

Event logs recorded during the execution of business processes constitute a valuable source of information. Applying process mining techniques to them, event logs may reveal the actual process execution and enable reasoning on quantitative or qualitative process properties. However, event logs often contain sensitive information that could be related to individual process stakeholders through background information and cross-correlation. We therefore argue that, when publishing event logs, the risk of such re-identification attacks must be considered. In this paper, we show how to quantify the re-identification risk with measures for the individual uniqueness in event logs. We also report on a large-scale study that explored the individual uniqueness in a collection of publicly available event logs. Our results suggest that potentially up to all of the cases in an event log may be re-identified, which highlights the importance of privacy-preserving techniques in process mining.

Original language	English
Title of host publication	Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings
Editors	Schahram Dustdar, Eric Yu, Vik Pant, Camille Salinesi, Dominique Rieu
Publisher	Springer
Pages	252-267
Number of pages	16
ISBN (Print)	9783030494346
DOIs	https://doi.org/10.1007/978-3-030-49435-3_16
Publication status	Published - 2020
Externally published	Yes
Event	32nd International Conference on Advanced Information Systems Engineering, CAiSE 2020 - Grenoble, France Duration: 8 Jun 2020 → 12 Jun 2020

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	12127 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	32nd International Conference on Advanced Information Systems Engineering, CAiSE 2020
Country/Territory	France
City	Grenoble
Period	8/06/20 → 12/06/20

Access to Document

10.1007/978-3-030-49435-3_16

Cite this

Nuñez von Voigt, S., Fahrenkrog-Petersen, S. A., Janssen, D., Koschmider, A., Tschorsch, F., Mannhardt, F., Landsiedel, O., & Weidlich, M. (2020). Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper. In S. Dustdar, E. Yu, V. Pant, C. Salinesi, & D. Rieu (Eds.), Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings (pp. 252-267). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12127 LNCS). Springer. https://doi.org/10.1007/978-3-030-49435-3_16

Nuñez von Voigt, Saskia ; Fahrenkrog-Petersen, Stephan A. ; Janssen, Dominik et al. / Quantifying the Re-identification Risk of Event Logs for Process Mining : Empiricial Evaluation Paper. Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings. editor / Schahram Dustdar ; Eric Yu ; Vik Pant ; Camille Salinesi ; Dominique Rieu. Springer, 2020. pp. 252-267 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{9deb5e9600334965aad21d86535900ce,

title = "Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper",

abstract = "Event logs recorded during the execution of business processes constitute a valuable source of information. Applying process mining techniques to them, event logs may reveal the actual process execution and enable reasoning on quantitative or qualitative process properties. However, event logs often contain sensitive information that could be related to individual process stakeholders through background information and cross-correlation. We therefore argue that, when publishing event logs, the risk of such re-identification attacks must be considered. In this paper, we show how to quantify the re-identification risk with measures for the individual uniqueness in event logs. We also report on a large-scale study that explored the individual uniqueness in a collection of publicly available event logs. Our results suggest that potentially up to all of the cases in an event log may be re-identified, which highlights the importance of privacy-preserving techniques in process mining.",

author = "{Nu{\~n}ez von Voigt}, Saskia and Fahrenkrog-Petersen, {Stephan A.} and Dominik Janssen and Agnes Koschmider and Florian Tschorsch and Felix Mannhardt and Olaf Landsiedel and Matthias Weidlich",

year = "2020",

doi = "10.1007/978-3-030-49435-3_16",

language = "English",

isbn = "9783030494346",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer",

pages = "252--267",

editor = "Schahram Dustdar and Eric Yu and Vik Pant and Camille Salinesi and Dominique Rieu",

booktitle = "Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings",

address = "Germany",

note = "32nd International Conference on Advanced Information Systems Engineering, CAiSE 2020 ; Conference date: 08-06-2020 Through 12-06-2020",

}

Nuñez von Voigt, S, Fahrenkrog-Petersen, SA, Janssen, D, Koschmider, A, Tschorsch, F, Mannhardt, F, Landsiedel, O & Weidlich, M 2020, Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper. in S Dustdar, E Yu, V Pant, C Salinesi & D Rieu (eds), Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 12127 LNCS, Springer, pp. 252-267, 32nd International Conference on Advanced Information Systems Engineering, CAiSE 2020, Grenoble, France, 8/06/20. https://doi.org/10.1007/978-3-030-49435-3_16

Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper. / Nuñez von Voigt, Saskia; Fahrenkrog-Petersen, Stephan A.; Janssen, Dominik et al.
Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings. ed. / Schahram Dustdar; Eric Yu; Vik Pant; Camille Salinesi; Dominique Rieu. Springer, 2020. p. 252-267 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 12127 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - Quantifying the Re-identification Risk of Event Logs for Process Mining

T2 - 32nd International Conference on Advanced Information Systems Engineering, CAiSE 2020

AU - Nuñez von Voigt, Saskia

AU - Fahrenkrog-Petersen, Stephan A.

AU - Janssen, Dominik

AU - Koschmider, Agnes

AU - Tschorsch, Florian

AU - Mannhardt, Felix

AU - Landsiedel, Olaf

AU - Weidlich, Matthias

PY - 2020

Y1 - 2020

N2 - Event logs recorded during the execution of business processes constitute a valuable source of information. Applying process mining techniques to them, event logs may reveal the actual process execution and enable reasoning on quantitative or qualitative process properties. However, event logs often contain sensitive information that could be related to individual process stakeholders through background information and cross-correlation. We therefore argue that, when publishing event logs, the risk of such re-identification attacks must be considered. In this paper, we show how to quantify the re-identification risk with measures for the individual uniqueness in event logs. We also report on a large-scale study that explored the individual uniqueness in a collection of publicly available event logs. Our results suggest that potentially up to all of the cases in an event log may be re-identified, which highlights the importance of privacy-preserving techniques in process mining.

AB - Event logs recorded during the execution of business processes constitute a valuable source of information. Applying process mining techniques to them, event logs may reveal the actual process execution and enable reasoning on quantitative or qualitative process properties. However, event logs often contain sensitive information that could be related to individual process stakeholders through background information and cross-correlation. We therefore argue that, when publishing event logs, the risk of such re-identification attacks must be considered. In this paper, we show how to quantify the re-identification risk with measures for the individual uniqueness in event logs. We also report on a large-scale study that explored the individual uniqueness in a collection of publicly available event logs. Our results suggest that potentially up to all of the cases in an event log may be re-identified, which highlights the importance of privacy-preserving techniques in process mining.

UR - http://www.scopus.com/inward/record.url?scp=85086228997&partnerID=8YFLogxK

U2 - 10.1007/978-3-030-49435-3_16

DO - 10.1007/978-3-030-49435-3_16

M3 - Conference contribution

AN - SCOPUS:85086228997

SN - 9783030494346

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 252

EP - 267

BT - Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings

A2 - Dustdar, Schahram

A2 - Yu, Eric

A2 - Pant, Vik

A2 - Salinesi, Camille

A2 - Rieu, Dominique

PB - Springer

Y2 - 8 June 2020 through 12 June 2020

ER -

Nuñez von Voigt S, Fahrenkrog-Petersen SA, Janssen D, Koschmider A, Tschorsch F, Mannhardt F et al. Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper. In Dustdar S, Yu E, Pant V, Salinesi C, Rieu D, editors, Advanced Information Systems Engineering - 32nd International Conference, CAiSE 2020, Proceedings. Springer. 2020. p. 252-267. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-49435-3_16

Quantifying the Re-identification Risk of Event Logs for Process Mining: Empiricial Evaluation Paper

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this