Integrating Obfuscation and Control for Privacy
成果类型:
Article
署名作者:
Wintenberg, Andrew; Ozay, Necmiye; Lafortune, Stephane
署名单位:
University of Michigan System; University of Michigan
刊物名称:
IEEE TRANSACTIONS ON AUTOMATIC CONTROL
ISSN/ISSBN:
0018-9286
DOI:
10.1109/TAC.2025.3564221
发表日期:
2025
页码:
6545-6560
关键词:
privacy
Automata
network architecture
buildings
Decoding
Servers
sensors
Formal languages
Discrete-event systems
observers
Discrete event systems (DES)
distributed systems
opacity
privacy and security
reactive synthesis
摘要:
Networked systems must often balance privacy in avoiding leaking sensitive information, with utility in communicating the information that is needed by components to operate correctly. We consider the problem of enforcing privacy and utility with both obfuscation (altering communications to mislead eavesdroppers) and control (restricting system behavior to avoid information leakage). We present a formulation of this problem that models components of the networked system as interconnected reactive processes. Tools from distributed reactive synthesis are then used to automatically design obfuscators and controllers, which coordinate to enforce requirements. In particular, we develop formal specifications capturing privacy using the information flow property of opacity and utility ensuring availability of information or imposing constraints on the closed-loop system. This synthesis approach is applicable to a large class of network architectures, which we demonstrate on three representative problems over a building access control system.