{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:22:06Z","timestamp":1750306926389,"version":"3.41.0"},"reference-count":24,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2013,4,29]],"date-time":"2013-04-29T00:00:00Z","timestamp":1367193600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["SIGMETRICS Perform. Eval. Rev."],"published-print":{"date-parts":[[2013,4,29]]},"abstract":"<jats:p>Private data is leaked more and more in our society. Wikileaks, Facebook, and identity theft are just three examples. So, modeling privacy is important. Cryptographers do not provide methods to address whether data should remain private or not. The use of entropy does not reflect the cost associated with the loss of private data.<\/jats:p>\n          <jats:p>In this paper we provide two economic models for privacy. Our first model is a lattice structured extension of attack graphs. Our second model is a stochastic almost combinatorial game, where two or more players can make stochastic moves in an almost combinatorial setup. In both models, a user can decide attempting transitions between states, representing a user's private information, based on multiple criterion including the cost of an attempt, the probability of success, the number of earlier attempts to obtain this private information and (possibly) the available budget.<\/jats:p>\n          <jats:p>In a variant of our models we use multigraphs. We use this when a transition between two states could be performed in different ways. To reduce the increase in complexity, we introduce a technique converting the multigraph to a simple directed graph. We discuss the advantages and disadvantages of this conversion. We also briefly discuss potential uses of our privacy models.<\/jats:p>","DOI":"10.1145\/2479942.2479953","type":"journal-article","created":{"date-parts":[[2013,5,1]],"date-time":"2013-05-01T19:47:09Z","timestamp":1367437629000},"page":"84-89","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["Two new economic models for privacy"],"prefix":"10.1145","volume":"40","author":[{"given":"Shah","family":"Mahmood","sequence":"first","affiliation":[{"name":"University College London, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yvo","family":"Desmedt","sequence":"additional","affiliation":[{"name":"University College London, United Kingdom"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2013,4,29]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1007\/s00779-004-0305-8"},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.22"},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.2307\/1879431"},{"volume-title":"12th Int. Symp. on Dynamic Games and Applications","year":"2006","author":"Alpcan T.","key":"e_1_2_1_4_1"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/2076732.2076746"},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1145\/358549.358563"},{"key":"e_1_2_1_7_1","unstructured":"The underground credit card blackmarket. http:\/\/www.stopthehacker.com\/2010\/03\/03\/the-underground-credit-card-blackmarket\/.  The underground credit card blackmarket. http:\/\/www.stopthehacker.com\/2010\/03\/03\/the-underground-credit-card-blackmarket\/."},{"key":"e_1_2_1_8_1","unstructured":"M. Ehrgott. Multicriteria Optimization (2. ed.). Springer 2005.   M. Ehrgott. Multicriteria Optimization (2. ed.). Springer 2005."},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1137\/S0097539795290477"},{"key":"e_1_2_1_10_1","unstructured":"Facebook statistics. http:\/\/www.facebook.com\/statistics.  Facebook statistics. http:\/\/www.facebook.com\/statistics."},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1109\/SFCS.1984.715934"},{"volume-title":"MIT Press","year":"1991","author":"Fudenberg D.","key":"e_1_2_1_12_1"},{"volume-title":"Legal Risks of Social Networking Sites","year":"2011","author":"Henderson M.","key":"e_1_2_1_13_1"},{"key":"e_1_2_1_14_1","doi-asserted-by":"crossref","unstructured":"N. Hotler and M. Seganish. Using identity theft to teach enterprise risk management - make it personal! Journal of Business Case Studies 4(6) 2008.  N. Hotler and M. Seganish. Using identity theft to teach enterprise risk management - make it personal! Journal of Business Case Studies 4(6) 2008.","DOI":"10.19030\/jbcs.v4i6.4787"},{"volume-title":"New York Times","year":"2011","author":"Jolly D.","key":"e_1_2_1_15_1"},{"key":"e_1_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.2307\/1914185"},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1017\/CBO9780511803475"},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1109\/PerComW.2012.6197512"},{"volume-title":"New York Times","year":"2011","author":"Markoff J.","key":"e_1_2_1_19_1"},{"key":"e_1_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/310889.310919"},{"volume-title":"Washington Post","year":"2011","author":"Schneider H.","key":"e_1_2_1_21_1"},{"key":"e_1_2_1_22_1","first-page":"1095","volume-title":"Proceedings fo the National Academy of Sciences of the USA","volume":"39","author":"Shapley L.","year":"1953"},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/948005.948057"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-004-0060-x"}],"container-title":["ACM SIGMETRICS Performance Evaluation Review"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2479942.2479953","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2479942.2479953","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T08:35:28Z","timestamp":1750235728000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2479942.2479953"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013,4,29]]},"references-count":24,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2013,4,29]]}},"alternative-id":["10.1145\/2479942.2479953"],"URL":"https:\/\/doi.org\/10.1145\/2479942.2479953","relation":{},"ISSN":["0163-5999"],"issn-type":[{"type":"print","value":"0163-5999"}],"subject":[],"published":{"date-parts":[[2013,4,29]]},"assertion":[{"value":"2013-04-29","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}